Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/deeb4c-99d6-4a9e-8200-7caa97927142/1/ZLsy79L-2gWTaCkD9yWF_OOVUJI.roa
File: ZLsy79L-2gWTaCkD9yWF_OOVUJI.roa (raw, json)
Hash identifier: VxfwLHtxJTR76+S95ZwhlcOrtERzPug9M7VurtDTUD4=
Subject key identifier: 64:BB:32:EF:D2:FE:DA:05:93:68:29:03:F7:25:85:FC:E3:95:50:92
Certificate issuer: /CN=5550e06ee02c5a32e54dc89853b4aa378f8604f7
Certificate serial: 0188B45499C32AFD6CAD785B2EA231F7EE5F
Authority key identifier: 55:50:E0:6E:E0:2C:5A:32:E5:4D:C8:98:53:B4:AA:37:8F:86:04:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VVDgbuAsWjLlTciYU7SqN4-GBPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/deeb4c-99d6-4a9e-8200-7caa97927142/1/ZLsy79L-2gWTaCkD9yWF_OOVUJI.roa
Signing time: Tue 13 Jun 2023 10:37:03 +0000
ROA not before: Tue 13 Jun 2023 10:37:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201364
IP address blocks: 2a0f:a1c1::/32 maxlen: 32
2a09:5984::/32 maxlen: 32
2a09:f347::/32 maxlen: 32
2a0d:8044::/32 maxlen: 32
2a07:9180::/32 maxlen: 32
2a09:5985::/32 maxlen: 32
2a09:f346::/32 maxlen: 32
2a07:9182::/32 maxlen: 32
2a0d:8045::/32 maxlen: 32
2a09:f340::/32 maxlen: 32
2a0f:a1c2::/32 maxlen: 32
2a07:9186::/32 maxlen: 32
2a0f:a1c3::/32 maxlen: 32
2a09:f342::/32 maxlen: 32
2a09:f345::/32 maxlen: 32
2a0d:8047::/32 maxlen: 32
2a07:9183::/32 maxlen: 32
2a0f:a1c0::/32 maxlen: 32
2a09:5987::/32 maxlen: 32
2a0f:a1c6::/32 maxlen: 32
2a09:5981::/32 maxlen: 32
2a0d:8041::/32 maxlen: 32
2a07:9184::/32 maxlen: 32
2a09:5980::/32 maxlen: 32
2a0f:a1c4::/32 maxlen: 32
2a09:f343::/32 maxlen: 32
2a0f:a1c5::/32 maxlen: 32
2a07:9185::/32 maxlen: 32
2a0d:8042::/32 maxlen: 32
2a09:5986::/32 maxlen: 32
2a0d:8043::/32 maxlen: 32
2a09:5982::/32 maxlen: 32
2a0f:a1c7::/32 maxlen: 32
2a09:f341::/32 maxlen: 32
2a09:5983::/32 maxlen: 32
2a0d:8040::/32 maxlen: 32
2a07:9187::/32 maxlen: 32
2a09:f344::/32 maxlen: 32
2a0d:8046::/32 maxlen: 32
2a07:9181::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b4:54:99:c3:2a:fd:6c:ad:78:5b:2e:a2:31:f7:ee:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5550e06ee02c5a32e54dc89853b4aa378f8604f7
Validity
Not Before: Jun 13 10:37:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64bb32efd2feda0593682903f72585fce3955092
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:f3:f8:1a:8a:c6:47:32:63:3c:7e:86:5a:ad:
f0:16:f9:f5:09:c1:aa:b4:7e:63:f6:2c:10:f4:48:
1a:4f:d2:28:9e:f2:35:40:e1:76:31:04:51:db:b7:
d4:26:3c:86:93:28:50:0c:fb:14:0f:99:58:ac:bd:
50:b6:e0:e1:f1:39:d3:4e:ff:2f:5c:2a:03:a3:1e:
35:1b:c6:c8:e7:1c:6b:a9:71:5d:79:af:73:50:7c:
50:33:62:e8:1e:4b:89:e9:df:11:c4:7a:e2:82:f0:
ce:ce:b5:c9:ca:65:c7:3e:f9:fb:c4:75:c0:37:81:
7b:c1:8d:83:b9:6e:97:fe:2c:0a:90:9b:fa:82:14:
d0:fd:3c:c4:05:df:dc:0b:85:cd:63:43:1c:72:a6:
6f:1e:db:4f:92:3c:82:6a:4c:f8:b9:bc:d6:4e:cf:
7b:1c:af:8b:4e:b8:55:47:5e:8d:1a:cc:8e:e9:88:
3a:9e:05:22:10:30:8e:37:9c:0c:9e:2e:1c:f5:1f:
23:c8:93:06:cb:67:a9:0f:e1:6e:40:f7:59:71:97:
0c:4a:4b:95:1c:ed:b0:b0:19:f9:bd:1d:75:be:c6:
5a:d1:e7:ad:ae:14:01:be:b8:09:d4:94:da:34:58:
31:91:3b:94:d0:6c:9f:6b:c9:5e:fe:b1:f1:65:8d:
e4:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:BB:32:EF:D2:FE:DA:05:93:68:29:03:F7:25:85:FC:E3:95:50:92
X509v3 Authority Key Identifier:
keyid:55:50:E0:6E:E0:2C:5A:32:E5:4D:C8:98:53:B4:AA:37:8F:86:04:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VVDgbuAsWjLlTciYU7SqN4-GBPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/deeb4c-99d6-4a9e-8200-7caa97927142/1/ZLsy79L-2gWTaCkD9yWF_OOVUJI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/deeb4c-99d6-4a9e-8200-7caa97927142/1/VVDgbuAsWjLlTciYU7SqN4-GBPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:9180::/29
2a09:5980::/29
2a09:f340::/29
2a0d:8040::/29
2a0f:a1c0::/29
Signature Algorithm: sha256WithRSAEncryption
4e:12:aa:00:47:d6:d6:24:c9:09:b4:f3:af:a9:bc:73:3b:74:
b6:be:f3:56:2e:2a:83:3e:ab:b4:94:4f:ae:d4:98:62:fc:2c:
9f:ec:46:aa:04:4b:f4:3c:8d:bf:17:3e:31:a4:24:db:25:5a:
67:15:1d:b0:f5:39:be:89:10:f3:61:b7:28:9d:7e:4b:6b:b4:
10:62:0d:c6:43:d5:03:90:18:df:8e:43:9b:17:34:80:88:4d:
85:2a:c1:6b:b2:f5:71:76:86:16:f3:e0:8f:99:bb:c3:a9:11:
61:85:b2:07:a4:63:7c:16:53:46:cc:21:33:77:00:58:dc:e8:
57:79:bc:d6:e1:82:9f:53:29:46:89:d6:e6:f8:94:6b:47:2e:
1d:c4:54:f8:f8:9d:9b:b5:95:9c:94:3d:c1:90:bc:4b:cc:e7:
11:d6:d4:ca:1c:20:d0:a1:17:f7:66:b9:b7:1b:f0:42:6a:9c:
54:ee:29:45:5f:dc:41:52:2c:8a:8e:89:3a:40:bf:5f:6d:ba:
30:4e:2a:52:55:ce:07:3c:f3:99:3d:dc:f7:d9:f9:c6:24:b7:
50:cf:a9:bd:59:55:a7:ee:8d:dc:50:81:46:1a:f8:22:5d:ad:
0b:e7:27:15:5f:39:85:57:3a:a8:e5:a3:26:9a:96:7e:0d:e3:
3c:95:ad:51
-----BEGIN CERTIFICATE-----
MIIFGjCCBAKgAwIBAgISAYi0VJnDKv1srXhbLqIx9+5fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU1NTBlMDZlZTAyYzVhMzJlNTRkYzg5ODUzYjRhYTM3OGY4
NjA0ZjcwHhcNMjMwNjEzMTAzNzAzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NGJiMzJlZmQyZmVkYTA1OTM2ODI5MDNmNzI1ODVmY2UzOTU1MDkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAivP4GorGRzJjPH6GWq3wFvn1CcGq
tH5j9iwQ9EgaT9IonvI1QOF2MQRR27fUJjyGkyhQDPsUD5lYrL1QtuDh8TnTTv8v
XCoDox41G8bI5xxrqXFdea9zUHxQM2LoHkuJ6d8RxHrigvDOzrXJymXHPvn7xHXA
N4F7wY2DuW6X/iwKkJv6ghTQ/TzEBd/cC4XNY0MccqZvHttPkjyCakz4ubzWTs97
HK+LTrhVR16NGsyO6Yg6ngUiEDCON5wMni4c9R8jyJMGy2epD+FuQPdZcZcMSkuV
HO2wsBn5vR11vsZa0eetrhQBvrgJ1JTaNFgxkTuU0Gyfa8le/rHxZY3k+QIDAQAB
o4ICJjCCAiIwHQYDVR0OBBYEFGS7Mu/S/toFk2gpA/clhfzjlVCSMB8GA1UdIwQY
MBaAFFVQ4G7gLFoy5U3ImFO0qjePhgT3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVlZEZ2J1QXNXakxsVGNpWVU3U3FONC1HQlBjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi9kZWViNGMtOTlkNi00YTllLTgyMDAt
N2NhYTk3OTI3MTQyLzEvWkxzeTc5TC0yZ1dUYUNrRDl5V0ZfT09WVUpJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi9kZWViNGMtOTlkNi00YTllLTgyMDAtN2NhYTk3OTI3MTQy
LzEvVlZEZ2J1QXNXakxsVGNpWVU3U3FONC1HQlBjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDwGCCsGAQUFBwEHAQH/BC0wKzApBAIAAjAjAwUDKgeRgAMF
AyoJWYADBQMqCfNAAwUDKg2AQAMFAyoPocAwDQYJKoZIhvcNAQELBQADggEBAE4S
qgBH1tYkyQm086+pvHM7dLa+81YuKoM+q7SUT67UmGL8LJ/sRqoES/Q8jb8XPjGk
JNslWmcVHbD1Ob6JEPNhtyidfktrtBBiDcZD1QOQGN+OQ5sXNICITYUqwWuy9XF2
hhbz4I+Zu8OpEWGFsgekY3wWU0bMITN3AFjc6Fd5vNbhgp9TKUaJ1ub4lGtHLh3E
VPj4nZu1lZyUPcGQvEvM5xHW1MocINChF/dmubcb8EJqnFTuKUVf3EFSLIqOiTpA
v19tujBOKlJVzgc885k93PfZ+cYkt1DPqb1ZVafujdxQgUYa+CJdrQvnJxVfOYVX
Oqjloyaaln4N4zyVrVE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:11 2024 by rpki-client on console-ams.rpki-client.org