Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/210fbb-aa6e-49c9-918b-5558a8b53e3d/1/Rz639_ViYPudO7M3BLpSpI4_zHk.roa
File: Rz639_ViYPudO7M3BLpSpI4_zHk.roa (raw, json)
Hash identifier: Y9BBubRrJxFcgvRHNnKdu/m/MaqS3dHGtdPPtJexHTE=
Subject key identifier: 47:3E:B7:F7:F5:62:60:FB:9D:3B:B3:37:04:BA:52:A4:8E:3F:CC:79
Certificate issuer: /CN=4da84d247ce37cdccf06e1571d226a2b85677bcd
Certificate serial: 0186C5A72DED12EE5270BD2CEE60F030E1CF
Authority key identifier: 4D:A8:4D:24:7C:E3:7C:DC:CF:06:E1:57:1D:22:6A:2B:85:67:7B:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TahNJHzjfNzPBuFXHSJqK4Vne80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/210fbb-aa6e-49c9-918b-5558a8b53e3d/1/Rz639_ViYPudO7M3BLpSpI4_zHk.roa
Signing time: Thu 09 Mar 2023 09:15:13 +0000
ROA not before: Thu 09 Mar 2023 09:15:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213301
IP address blocks: 185.174.70.0/24 maxlen: 24
185.174.68.0/24 maxlen: 24
185.78.85.0/24 maxlen: 24
185.78.84.0/24 maxlen: 24
185.78.87.0/24 maxlen: 24
185.78.86.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c5:a7:2d:ed:12:ee:52:70:bd:2c:ee:60:f0:30:e1:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4da84d247ce37cdccf06e1571d226a2b85677bcd
Validity
Not Before: Mar 9 09:15:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=473eb7f7f56260fb9d3bb33704ba52a48e3fcc79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:cc:ce:c3:64:c9:34:41:5d:e0:1c:5d:67:78:
96:49:06:86:a5:44:5b:07:75:ab:67:9c:a7:10:b8:
96:fb:e4:99:69:33:d9:d1:c4:3f:84:b4:0b:91:d0:
dd:60:79:3e:12:a9:25:41:b9:66:d2:2b:3a:f4:50:
af:a3:1f:a7:d0:3b:9c:03:c2:a6:4d:79:c3:82:1a:
d5:28:67:8d:f5:18:05:d3:b8:d7:9b:ae:ee:a8:44:
2a:85:8e:f4:6b:40:ee:b0:70:22:15:bf:8b:a6:10:
42:f8:f6:b7:cd:ad:3a:0c:12:83:5d:89:66:ad:65:
7c:4e:4d:f9:f6:52:d6:51:58:b2:0f:b1:b0:6c:43:
28:0e:5e:f2:ae:73:be:83:f3:2f:2b:f9:e1:5b:ec:
7d:ec:6f:a0:d4:57:03:21:c3:ef:ef:e2:40:f7:bb:
c7:d1:d0:5f:9b:20:d6:68:1f:07:9d:b5:94:31:56:
3a:fd:c8:98:f7:09:aa:db:9c:0e:76:61:9a:d6:44:
88:08:1e:b4:fa:79:99:04:03:14:ff:af:60:35:af:
28:12:02:c2:2f:a4:7b:90:fe:70:de:40:9f:a9:0c:
ec:4a:16:16:df:29:11:3b:b2:c8:58:f5:6c:d5:11:
4e:f9:df:f4:31:17:f4:35:ec:a2:e7:6a:28:02:60:
2a:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:3E:B7:F7:F5:62:60:FB:9D:3B:B3:37:04:BA:52:A4:8E:3F:CC:79
X509v3 Authority Key Identifier:
keyid:4D:A8:4D:24:7C:E3:7C:DC:CF:06:E1:57:1D:22:6A:2B:85:67:7B:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TahNJHzjfNzPBuFXHSJqK4Vne80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/210fbb-aa6e-49c9-918b-5558a8b53e3d/1/Rz639_ViYPudO7M3BLpSpI4_zHk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/210fbb-aa6e-49c9-918b-5558a8b53e3d/1/TahNJHzjfNzPBuFXHSJqK4Vne80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.78.84.0/22
185.174.68.0/24
185.174.70.0/24
Signature Algorithm: sha256WithRSAEncryption
80:7d:c7:2c:a2:54:7c:7d:f4:d9:bf:41:d2:cc:87:21:f4:55:
ba:fa:95:dc:b2:57:c4:88:30:cb:eb:d2:e3:4b:56:c7:1e:91:
a2:68:31:05:db:49:ec:b6:45:a1:a3:33:dc:62:c0:32:f7:18:
e7:ab:5d:bc:96:5b:11:0e:39:70:ec:53:d2:94:4b:ba:71:33:
a1:ba:62:f1:45:87:ac:6e:f2:3f:da:66:3c:94:58:b2:bb:06:
72:54:c1:03:85:21:00:01:b0:4e:69:55:b1:08:20:35:73:68:
68:35:c2:44:1f:42:d7:ee:9b:00:c0:2e:8b:cc:6e:f9:43:a8:
d5:e5:4f:ac:a5:14:a1:e7:35:bf:f6:3d:17:2f:eb:78:f8:2d:
9e:12:1d:50:bc:03:38:9f:b9:04:62:a7:06:f4:14:88:27:94:
49:90:ae:e2:e9:9d:a9:92:c7:50:97:e7:ad:dc:79:ea:bb:b4:
80:27:d7:5c:94:67:af:a2:c4:5d:4d:45:c1:18:1c:75:71:12:
2c:1e:60:78:14:cd:09:05:99:65:78:8f:dd:82:a8:46:3f:dd:
30:2e:f4:77:e5:3b:98:0f:b4:5a:4c:76:23:a9:b1:27:4e:8c:
a6:f9:06:aa:c4:df:3c:3f:04:3d:61:55:d1:cc:26:de:78:57:
88:5b:40:10
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYbFpy3tEu5ScL0s7mDwMOHPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkYTg0ZDI0N2NlMzdjZGNjZjA2ZTE1NzFkMjI2YTJiODU2
NzdiY2QwHhcNMjMwMzA5MDkxNTEzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NzNlYjdmN2Y1NjI2MGZiOWQzYmIzMzcwNGJhNTJhNDhlM2ZjYzc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmszOw2TJNEFd4BxdZ3iWSQaGpURb
B3WrZ5ynELiW++SZaTPZ0cQ/hLQLkdDdYHk+EqklQblm0is69FCvox+n0DucA8Km
TXnDghrVKGeN9RgF07jXm67uqEQqhY70a0DusHAiFb+LphBC+Pa3za06DBKDXYlm
rWV8Tk359lLWUViyD7GwbEMoDl7yrnO+g/MvK/nhW+x97G+g1FcDIcPv7+JA97vH
0dBfmyDWaB8HnbWUMVY6/ciY9wmq25wOdmGa1kSICB60+nmZBAMU/69gNa8oEgLC
L6R7kP5w3kCfqQzsShYW3ykRO7LIWPVs1RFO+d/0MRf0Neyi52ooAmAqZQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFEc+t/f1YmD7nTuzNwS6UqSOP8x5MB8GA1UdIwQY
MBaAFE2oTSR843zczwbhVx0iaiuFZ3vNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVGFoTkpIempmTnpQQnVGWEhTSnFLNFZuZTgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC8yMTBmYmItYWE2ZS00OWM5LTkxOGIt
NTU1OGE4YjUzZTNkLzEvUno2MzlfVmlZUHVkTzdNM0JMcFNwSTRfekhrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC8yMTBmYmItYWE2ZS00OWM5LTkxOGItNTU1OGE4YjUzZTNk
LzEvVGFoTkpIempmTnpQQnVGWEhTSnFLNFZuZTgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCuU5UAwQA
ua5EAwQAua5GMA0GCSqGSIb3DQEBCwUAA4IBAQCAfccsolR8ffTZv0HSzIch9FW6
+pXcslfEiDDL69LjS1bHHpGiaDEF20nstkWhozPcYsAy9xjnq128llsRDjlw7FPS
lEu6cTOhumLxRYesbvI/2mY8lFiyuwZyVMEDhSEAAbBOaVWxCCA1c2hoNcJEH0LX
7psAwC6LzG75Q6jV5U+spRSh5zW/9j0XL+t4+C2eEh1QvAM4n7kEYqcG9BSIJ5RJ
kK7i6Z2pksdQl+et3Hnqu7SAJ9dclGevosRdTUXBGBx1cRIsHmB4FM0JBZlleI/d
gqhGP90wLvR35TuYD7RaTHYjqbEnToym+QaqxN88PwQ9YVXRzCbeeFeIW0AQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:33 2024 by rpki-client on console-fra.rpki-client.org