Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/4e5902-e283-4916-a33c-7226a8845e01/1/zyyIiETYHAb14uszHJi264szQSA.roa
File: zyyIiETYHAb14uszHJi264szQSA.roa (raw, json)
Hash identifier: tIV3s/f+Rr+hK1oZp4RbE0R/HJNIMNF6jP31+q2+AVY=
Subject key identifier: CF:2C:88:88:44:D8:1C:06:F5:E2:EB:33:1C:98:B6:EB:8B:33:41:20
Certificate issuer: /CN=0f2f8b2b94721e928f6188b5cf15053144dedf8c
Certificate serial: 018CC6B92505E9AE9B81DBEFACA9D0EF9B74
Authority key identifier: 0F:2F:8B:2B:94:72:1E:92:8F:61:88:B5:CF:15:05:31:44:DE:DF:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dy-LK5RyHpKPYYi1zxUFMUTe34w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/4e5902-e283-4916-a33c-7226a8845e01/1/zyyIiETYHAb14uszHJi264szQSA.roa
Signing time: Mon 01 Jan 2024 20:31:11 +0000
ROA not before: Mon 01 Jan 2024 20:31:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56484
IP address blocks: 185.124.150.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Mar 2024 12:30:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:25:05:e9:ae:9b:81:db:ef:ac:a9:d0:ef:9b:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f2f8b2b94721e928f6188b5cf15053144dedf8c
Validity
Not Before: Jan 1 20:31:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cf2c888844d81c06f5e2eb331c98b6eb8b334120
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:a6:7c:f0:be:8c:ba:21:d1:b7:d2:83:f5:a5:
f3:0d:b6:90:2e:01:9a:13:47:02:de:b4:7a:db:10:
e1:04:44:c2:2e:2c:63:0e:9b:7a:3a:6d:a2:45:93:
6d:4e:ff:c7:87:30:40:75:4b:67:79:8b:92:91:d2:
78:c5:2f:81:05:61:41:32:12:0d:73:82:bb:a4:26:
ad:9a:04:2d:a5:02:61:fb:de:68:bf:80:f9:1c:ac:
44:7a:60:e0:23:a1:ef:08:3d:84:d9:f1:e4:10:2e:
4c:88:29:4f:09:4b:ad:97:cf:20:69:06:0f:66:7f:
6f:44:47:6b:14:a8:bc:65:41:51:fa:de:22:17:2c:
13:0c:15:56:0f:b5:37:f5:53:83:df:3a:60:31:63:
68:c6:fb:98:0a:d1:24:e8:78:2d:c1:de:b1:b1:cc:
a1:18:38:48:25:67:17:31:bb:58:e5:7d:09:38:62:
8a:55:de:4a:66:45:c9:58:97:f4:88:e9:f1:3f:64:
5b:a2:30:1c:46:7b:a5:48:15:e1:c5:5b:e4:c2:b9:
54:18:0d:72:a9:70:88:af:da:2e:d2:45:30:b8:dc:
5c:84:ae:a2:3e:c8:a8:a5:06:09:d4:8c:53:00:66:
39:6b:27:e1:55:74:62:3b:c9:d9:1d:fe:28:ea:d6:
90:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:2C:88:88:44:D8:1C:06:F5:E2:EB:33:1C:98:B6:EB:8B:33:41:20
X509v3 Authority Key Identifier:
keyid:0F:2F:8B:2B:94:72:1E:92:8F:61:88:B5:CF:15:05:31:44:DE:DF:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dy-LK5RyHpKPYYi1zxUFMUTe34w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4e5902-e283-4916-a33c-7226a8845e01/1/zyyIiETYHAb14uszHJi264szQSA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4e5902-e283-4916-a33c-7226a8845e01/1/Dy-LK5RyHpKPYYi1zxUFMUTe34w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.124.150.0/24
Signature Algorithm: sha256WithRSAEncryption
03:11:3f:bf:b8:54:6d:e2:96:4e:1a:3a:97:14:45:43:50:e8:
27:37:d4:e6:b5:ae:ce:57:31:35:5d:2c:bd:8d:13:7e:b9:a8:
d1:58:4d:bc:13:9c:fc:07:e1:1a:95:e1:04:d5:ea:ac:69:34:
33:20:f0:36:cf:e1:81:22:ad:03:89:48:01:89:2c:d4:a1:c7:
95:1c:dd:c6:ab:c9:a4:f7:fc:1b:0e:79:73:71:c7:95:4d:a1:
5a:1a:d3:8b:a9:a1:14:2e:0c:81:23:76:51:d2:a4:4b:81:6b:
89:0d:47:1e:b8:12:59:2b:c5:da:18:d3:87:cd:a0:ce:91:f7:
3e:c6:07:9b:b7:97:18:e8:02:65:a5:21:07:59:54:ba:b3:99:
ba:e3:71:b1:69:3b:ac:b8:c1:c2:29:96:de:a4:f7:0f:d0:c6:
28:be:9a:26:36:ce:05:c0:db:34:a8:20:fb:b7:46:99:f9:a7:
fc:d8:b1:3c:f0:6a:61:1a:d0:d8:6c:15:19:aa:81:e3:5d:40:
d0:a9:31:a3:98:90:51:de:09:86:b6:cf:10:d2:3c:ba:a6:b4:
f5:88:14:87:b7:10:b2:30:e7:0c:97:ff:a6:5f:b5:0d:8c:a7:
8a:aa:4e:4d:0b:c4:38:84:cb:90:3e:36:ba:6b:c3:cd:52:d8:
f8:29:51:b9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzGuSUF6a6bgdvvrKnQ75t0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmMmY4YjJiOTQ3MjFlOTI4ZjYxODhiNWNmMTUwNTMxNDRk
ZWRmOGMwHhcNMjQwMTAxMjAzMTExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZjJjODg4ODQ0ZDgxYzA2ZjVlMmViMzMxYzk4YjZlYjhiMzM0MTIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhaZ88L6MuiHRt9KD9aXzDbaQLgGa
E0cC3rR62xDhBETCLixjDpt6Om2iRZNtTv/HhzBAdUtneYuSkdJ4xS+BBWFBMhIN
c4K7pCatmgQtpQJh+95ov4D5HKxEemDgI6HvCD2E2fHkEC5MiClPCUutl88gaQYP
Zn9vREdrFKi8ZUFR+t4iFywTDBVWD7U39VOD3zpgMWNoxvuYCtEk6Hgtwd6xscyh
GDhIJWcXMbtY5X0JOGKKVd5KZkXJWJf0iOnxP2RbojAcRnulSBXhxVvkwrlUGA1y
qXCIr9ou0kUwuNxchK6iPsiopQYJ1IxTAGY5ayfhVXRiO8nZHf4o6taQlQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFM8siIhE2BwG9eLrMxyYtuuLM0EgMB8GA1UdIwQY
MBaAFA8viyuUch6Sj2GItc8VBTFE3t+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRHktTEs1UnlIcEtQWVlpMXp4VUZNVVRlMzR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi80ZTU5MDItZTI4My00OTE2LWEzM2Mt
NzIyNmE4ODQ1ZTAxLzEvenl5SWlFVFlIQWIxNHVzekhKaTI2NHN6UVNBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi80ZTU5MDItZTI4My00OTE2LWEzM2MtNzIyNmE4ODQ1ZTAx
LzEvRHktTEs1UnlIcEtQWVlpMXp4VUZNVVRlMzR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuXyWMA0G
CSqGSIb3DQEBCwUAA4IBAQADET+/uFRt4pZOGjqXFEVDUOgnN9Tmta7OVzE1XSy9
jRN+uajRWE28E5z8B+EaleEE1eqsaTQzIPA2z+GBIq0DiUgBiSzUoceVHN3Gq8mk
9/wbDnlzcceVTaFaGtOLqaEULgyBI3ZR0qRLgWuJDUceuBJZK8XaGNOHzaDOkfc+
xgebt5cY6AJlpSEHWVS6s5m643GxaTusuMHCKZbepPcP0MYovpomNs4FwNs0qCD7
t0aZ+af82LE88GphGtDYbBUZqoHjXUDQqTGjmJBR3gmGts8Q0jy6prT1iBSHtxCy
MOcMl/+mX7UNjKeKqk5NC8Q4hMuQPja6a8PNUtj4KVG5
-----END CERTIFICATE-----
Generated at Thu Mar 28 15:23:24 2024 by rpki-client on console-ams.rpki-client.org