Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/c37c16-0603-4845-b4d4-95ddb0974e4b/1/ZF9Al3yDCERbHKG4EEHQqhPZgDs.roa
File: ZF9Al3yDCERbHKG4EEHQqhPZgDs.roa (raw, json)
Hash identifier: 77amsmBFwBh4MHAzUKlrywCHmSrDec8ks4PjDsSZZLE=
Subject key identifier: 64:5F:40:97:7C:83:08:44:5B:1C:A1:B8:10:41:D0:AA:13:D9:80:3B
Certificate issuer: /CN=841f36fcbf7334eff6b91e80297ea5b25c4ecfd2
Certificate serial: 01887153695EB67A43B2A0964637955BBE79
Authority key identifier: 84:1F:36:FC:BF:73:34:EF:F6:B9:1E:80:29:7E:A5:B2:5C:4E:CF:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hB82_L9zNO_2uR6AKX6lslxOz9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/c37c16-0603-4845-b4d4-95ddb0974e4b/1/ZF9Al3yDCERbHKG4EEHQqhPZgDs.roa
Signing time: Wed 31 May 2023 10:21:11 +0000
ROA not before: Wed 31 May 2023 10:21:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52013
IP address blocks: 46.183.224.0/21 maxlen: 24
185.106.135.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:71:53:69:5e:b6:7a:43:b2:a0:96:46:37:95:5b:be:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=841f36fcbf7334eff6b91e80297ea5b25c4ecfd2
Validity
Not Before: May 31 10:21:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=645f40977c8308445b1ca1b81041d0aa13d9803b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:5f:9f:df:51:8d:52:53:04:c3:17:25:21:5f:
1c:a9:06:1e:6c:fe:a3:05:94:c0:7b:29:24:4b:22:
e7:70:f9:86:77:e1:82:8a:e9:a5:62:dc:4c:13:62:
93:0b:a1:e1:3b:1b:df:58:d0:b2:98:90:2f:cb:9b:
b0:a1:81:8f:ac:df:25:2a:a9:e5:a9:ea:bd:46:26:
e0:19:9c:cd:73:ca:28:72:13:b3:e8:1f:7f:70:15:
06:11:07:3c:ca:bc:2d:d8:19:a5:6d:e7:f1:4c:97:
6c:a2:38:6b:f5:7b:17:20:27:06:fb:b0:e9:36:ab:
14:7f:de:ba:ae:7c:7f:46:31:ec:79:5f:11:28:08:
3b:9a:15:8f:ff:76:6e:51:d4:10:26:34:bd:cf:da:
4d:06:f9:9a:59:79:be:b9:47:58:85:e4:62:1b:db:
ef:24:5e:0e:9b:57:0f:b1:e6:c0:08:e3:f4:0c:95:
89:ce:27:e0:af:67:91:8a:7f:72:82:65:f6:e6:06:
88:3c:3d:e1:ae:2e:6e:b8:f8:23:96:2f:bb:57:b5:
65:c2:ce:77:e4:92:31:ba:fa:da:a1:23:60:d0:13:
dd:b5:4e:4e:b7:b4:a4:60:e3:20:29:fa:bb:98:d0:
17:d3:cb:70:c2:c0:9a:7c:63:d1:31:9d:61:75:e5:
c7:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:5F:40:97:7C:83:08:44:5B:1C:A1:B8:10:41:D0:AA:13:D9:80:3B
X509v3 Authority Key Identifier:
keyid:84:1F:36:FC:BF:73:34:EF:F6:B9:1E:80:29:7E:A5:B2:5C:4E:CF:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hB82_L9zNO_2uR6AKX6lslxOz9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/c37c16-0603-4845-b4d4-95ddb0974e4b/1/ZF9Al3yDCERbHKG4EEHQqhPZgDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/c37c16-0603-4845-b4d4-95ddb0974e4b/1/hB82_L9zNO_2uR6AKX6lslxOz9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.224.0/21
185.106.135.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:fb:e5:b7:d5:be:af:80:d0:d4:cb:42:a0:ad:2a:d5:3f:98:
a5:af:86:0d:70:d1:0e:ec:e5:54:93:23:9d:14:69:ad:78:5f:
5f:f3:f5:28:fd:84:3e:a6:6e:ee:42:9d:55:86:14:db:5d:70:
1b:28:a2:f5:d7:62:70:b3:f8:3d:32:92:a0:07:9c:8d:20:33:
a4:fd:24:91:07:7e:63:56:e9:ab:8b:ce:8a:d2:a3:d5:b9:4d:
aa:a9:e0:28:09:41:fa:1a:af:3e:ce:b4:e1:ff:77:2e:d9:7e:
d5:f8:65:d6:90:a3:5a:b1:ac:05:46:6c:78:45:28:b2:0b:8e:
69:aa:e6:eb:fe:32:12:1e:6e:3e:78:b2:f3:07:3c:fa:b4:b4:
2f:e0:0d:26:31:3a:a3:ae:23:3e:12:34:13:2e:b6:f7:62:ee:
a2:17:26:4e:32:7c:1f:3b:09:bd:45:76:19:83:a3:3c:87:2e:
ec:7d:76:42:8b:21:47:52:94:f3:eb:37:7a:2c:01:ae:cf:89:
64:ab:5c:59:25:0e:2f:df:9d:8f:8c:e4:36:b1:a5:8b:0c:c1:
b8:12:18:3e:f8:2a:04:31:60:90:e0:7b:13:28:67:36:f8:35:
a4:bb:2d:3f:43:16:c5:b6:73:0f:0b:3f:26:71:fe:ed:b1:db:
20:7f:d6:cc
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYhxU2letnpDsqCWRjeVW755MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0MWYzNmZjYmY3MzM0ZWZmNmI5MWU4MDI5N2VhNWIyNWM0
ZWNmZDIwHhcNMjMwNTMxMTAyMTExWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NDVmNDA5NzdjODMwODQ0NWIxY2ExYjgxMDQxZDBhYTEzZDk4MDNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA31+f31GNUlMEwxclIV8cqQYebP6j
BZTAeykkSyLncPmGd+GCiumlYtxME2KTC6HhOxvfWNCymJAvy5uwoYGPrN8lKqnl
qeq9RibgGZzNc8oochOz6B9/cBUGEQc8yrwt2BmlbefxTJdsojhr9XsXICcG+7Dp
NqsUf966rnx/RjHseV8RKAg7mhWP/3ZuUdQQJjS9z9pNBvmaWXm+uUdYheRiG9vv
JF4Om1cPsebACOP0DJWJzifgr2eRin9ygmX25gaIPD3hri5uuPgjli+7V7Vlws53
5JIxuvraoSNg0BPdtU5Ot7SkYOMgKfq7mNAX08twwsCafGPRMZ1hdeXHqQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFGRfQJd8gwhEWxyhuBBB0KoT2YA7MB8GA1UdIwQY
MBaAFIQfNvy/czTv9rkegCl+pbJcTs/SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEI4Ml9MOXpOT18ydVI2QUtYNmxzbHhPejlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS9jMzdjMTYtMDYwMy00ODQ1LWI0ZDQt
OTVkZGIwOTc0ZTRiLzEvWkY5QWwzeURDRVJiSEtHNEVFSFFxaFBaZ0RzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS9jMzdjMTYtMDYwMy00ODQ1LWI0ZDQtOTVkZGIwOTc0ZTRi
LzEvaEI4Ml9MOXpOT18ydVI2QUtYNmxzbHhPejlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDLrfgAwQA
uWqHMA0GCSqGSIb3DQEBCwUAA4IBAQCg++W31b6vgNDUy0KgrSrVP5ilr4YNcNEO
7OVUkyOdFGmteF9f8/Uo/YQ+pm7uQp1VhhTbXXAbKKL112Jws/g9MpKgB5yNIDOk
/SSRB35jVumri86K0qPVuU2qqeAoCUH6Gq8+zrTh/3cu2X7V+GXWkKNasawFRmx4
RSiyC45pqubr/jISHm4+eLLzBzz6tLQv4A0mMTqjriM+EjQTLrb3Yu6iFyZOMnwf
Owm9RXYZg6M8hy7sfXZCiyFHUpTz6zd6LAGuz4lkq1xZJQ4v352PjOQ2saWLDMG4
Ehg++CoEMWCQ4HsTKGc2+DWkuy0/QxbFtnMPCz8mcf7tsdsgf9bM
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:04 2024 by rpki-client on console-fra.rpki-client.org