Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/ZmJI7BNEna5DuT4QALGNxG0SW0Q.roa
File: ZmJI7BNEna5DuT4QALGNxG0SW0Q.roa (raw, json)
Hash identifier: XA098/8lAsSvfZ4ZnS0AY0FClrqRmYg1H5r9ETVpxYc=
Subject key identifier: 66:62:48:EC:13:44:9D:AE:43:B9:3E:10:00:B1:8D:C4:6D:12:5B:44
Certificate issuer: /CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Certificate serial: 01892551E38B52C12F1AAE51199854DEDE30
Authority key identifier: 62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/ZmJI7BNEna5DuT4QALGNxG0SW0Q.roa
Signing time: Wed 05 Jul 2023 09:11:10 +0000
ROA not before: Wed 05 Jul 2023 09:11:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398343
IP address blocks: 93.89.220.0/24 maxlen: 24
93.89.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 27 Jul 2023 21:34:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:25:51:e3:8b:52:c1:2f:1a:ae:51:19:98:54:de:de:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Validity
Not Before: Jul 5 09:11:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=666248ec13449dae43b93e1000b18dc46d125b44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b7:89:e1:36:e4:73:85:78:fb:9f:85:63:30:
63:41:04:79:f4:8e:f7:ec:0b:88:66:7c:74:e0:e3:
b6:1d:e9:95:1f:08:8f:ff:c1:4c:83:84:f1:04:aa:
f8:55:ff:af:51:9f:60:4b:82:f6:9e:0a:19:73:30:
1d:21:2c:31:b8:0a:c7:1a:79:ac:a2:1c:5e:71:cc:
65:88:a8:6c:1d:12:f9:6e:a6:84:31:f7:48:20:01:
fc:00:d0:96:bf:a7:36:b0:66:82:bd:c4:ba:86:e9:
48:30:d5:81:cf:e3:0a:c9:48:e9:5c:ee:12:80:87:
5a:b3:b9:65:00:98:0b:d8:da:96:cb:c4:e3:79:6d:
62:96:5b:42:c7:7f:20:82:0a:0f:d4:91:e6:ac:c9:
0d:70:74:c5:77:2e:de:fc:64:47:7d:d4:33:8c:f4:
ef:f4:d3:1f:71:26:3b:48:ae:dd:74:06:08:ee:3a:
4f:2b:88:3f:a7:9e:10:06:c3:c2:b6:49:ed:6e:04:
98:20:35:39:b1:ed:67:7e:03:da:b3:5d:16:3b:4d:
60:ce:29:73:2a:92:2e:41:af:d6:25:f4:6c:48:44:
41:96:92:fa:63:f5:a9:0e:81:a0:bc:a2:8e:c3:94:
26:f9:01:dd:76:79:1e:cc:d4:82:a0:07:c5:45:88:
47:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:62:48:EC:13:44:9D:AE:43:B9:3E:10:00:B1:8D:C4:6D:12:5B:44
X509v3 Authority Key Identifier:
keyid:62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/ZmJI7BNEna5DuT4QALGNxG0SW0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.89.220.0/24
93.89.223.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:ea:89:7b:69:b3:4a:ef:cf:08:67:f8:94:44:8c:bc:63:6a:
f7:3b:8c:9a:c0:dd:14:dd:b3:9c:3a:46:f8:f5:8d:fd:67:cf:
68:8d:ef:54:81:da:dd:df:fc:0c:41:62:ec:ab:15:28:69:83:
a7:02:f9:48:c9:75:75:c2:a0:65:a6:14:6e:b4:5b:5b:06:16:
ba:70:86:d7:8f:63:e1:e2:75:25:a9:90:36:64:c0:a8:2e:3b:
6b:97:ac:ae:a9:c7:b7:8e:1e:12:1d:2b:7d:62:15:d7:12:f7:
0a:09:66:85:bf:a3:9f:3e:82:00:dc:05:aa:50:43:49:fa:c5:
64:57:55:c5:d7:91:06:1f:30:77:e7:db:2a:ad:d0:28:f0:0d:
14:cf:b5:54:20:85:ef:18:90:14:41:90:5f:db:6e:62:df:8a:
ed:84:32:79:e7:60:6f:51:94:48:99:61:68:c7:e5:6a:d6:eb:
fc:af:7b:45:d2:70:11:7d:7f:b1:ea:3a:31:11:a2:79:79:58:
d4:5d:b9:2b:f6:28:aa:0d:aa:fd:a4:e4:55:23:42:fc:64:b9:
d6:01:73:ee:4e:e2:b1:c0:20:6b:e7:b8:20:6f:7e:e7:4f:13:
80:2a:6f:c4:65:5f:99:5e:79:a5:f5:79:0b:0e:df:1c:cd:da:
d7:93:7b:2b
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYklUeOLUsEvGq5RGZhU3t4wMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyYTE1Y2M4ODY1OWY1NzhjYzE1OWM1MmIzYTdlOWVjNTgx
OWZiMjAwHhcNMjMwNzA1MDkxMTEwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NjYyNDhlYzEzNDQ5ZGFlNDNiOTNlMTAwMGIxOGRjNDZkMTI1YjQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAureJ4Tbkc4V4+5+FYzBjQQR59I73
7AuIZnx04OO2HemVHwiP/8FMg4TxBKr4Vf+vUZ9gS4L2ngoZczAdISwxuArHGnms
ohxeccxliKhsHRL5bqaEMfdIIAH8ANCWv6c2sGaCvcS6hulIMNWBz+MKyUjpXO4S
gIdas7llAJgL2NqWy8TjeW1illtCx38gggoP1JHmrMkNcHTFdy7e/GRHfdQzjPTv
9NMfcSY7SK7ddAYI7jpPK4g/p54QBsPCtkntbgSYIDU5se1nfgPas10WO01gzilz
KpIuQa/WJfRsSERBlpL6Y/WpDoGgvKKOw5Qm+QHddnkezNSCoAfFRYhHZQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFGZiSOwTRJ2uQ7k+EACxjcRtEltEMB8GA1UdIwQY
MBaAFGKhXMiGWfV4zBWcUrOn6exYGfsgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXFGY3lJWlo5WGpNRlp4U3M2ZnA3RmdaLXlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi8yMTE3YmMtMWY5ZS00NTkwLWE1NTAt
NDI2OWI1NmJmN2Q0LzEvWm1KSTdCTkVuYTVEdVQ0UUFMR054RzBTVzBRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi8yMTE3YmMtMWY5ZS00NTkwLWE1NTAtNDI2OWI1NmJmN2Q0
LzEvWXFGY3lJWlo5WGpNRlp4U3M2ZnA3RmdaLXlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAXVncAwQA
XVnfMA0GCSqGSIb3DQEBCwUAA4IBAQCK6ol7abNK788IZ/iURIy8Y2r3O4yawN0U
3bOcOkb49Y39Z89oje9Ugdrd3/wMQWLsqxUoaYOnAvlIyXV1wqBlphRutFtbBha6
cIbXj2Ph4nUlqZA2ZMCoLjtrl6yuqce3jh4SHSt9YhXXEvcKCWaFv6OfPoIA3AWq
UENJ+sVkV1XF15EGHzB359sqrdAo8A0Uz7VUIIXvGJAUQZBf225i34rthDJ552Bv
UZRImWFox+Vq1uv8r3tF0nARfX+x6joxEaJ5eVjUXbkr9iiqDar9pORVI0L8ZLnW
AXPuTuKxwCBr57ggb37nTxOAKm/EZV+ZXnml9XkLDt8czdrXk3sr
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:05 2024 by rpki-client on console-fra.rpki-client.org