Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/4f8e76-59e5-40d1-a13e-71f4c47f506e/1/ZNWi3Aq-B5WUoXQx5GGgjONRTjA.roa
File: ZNWi3Aq-B5WUoXQx5GGgjONRTjA.roa (raw, json)
Hash identifier: vUvzQ2jpUwlrsfIamTLRgUPXKj3nhtAkPwOf5wCul0o=
Subject key identifier: 64:D5:A2:DC:0A:BE:07:95:94:A1:74:31:E4:61:A0:8C:E3:51:4E:30
Certificate issuer: /CN=a8539f9355d3eb778b1bb8ee2723326011a1229b
Certificate serial: 018571956B0CB69F207F22A5B7ED85806439
Authority key identifier: A8:53:9F:93:55:D3:EB:77:8B:1B:B8:EE:27:23:32:60:11:A1:22:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qFOfk1XT63eLG7juJyMyYBGhIps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/4f8e76-59e5-40d1-a13e-71f4c47f506e/1/ZNWi3Aq-B5WUoXQx5GGgjONRTjA.roa
Signing time: Mon 02 Jan 2023 08:24:55 +0000
ROA not before: Mon 02 Jan 2023 08:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 559
IP address blocks: 148.187.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:6b:0c:b6:9f:20:7f:22:a5:b7:ed:85:80:64:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8539f9355d3eb778b1bb8ee2723326011a1229b
Validity
Not Before: Jan 2 08:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64d5a2dc0abe079594a17431e461a08ce3514e30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:95:1c:b2:1f:a6:64:f1:47:ed:a8:51:6e:ff:
4c:f2:68:ce:c4:bf:7b:1a:98:9c:96:ed:8d:59:0c:
fe:41:7a:be:43:75:a0:8f:fd:f5:fc:19:58:fe:d9:
b3:42:27:38:8b:d3:fd:5f:c5:35:75:73:39:d5:f8:
4e:23:08:89:20:03:ee:28:f6:9c:1e:f6:c9:9e:76:
c5:d2:5d:fb:61:9f:8d:3f:e3:5c:94:e3:0b:2c:b3:
c1:af:c2:9c:e1:af:f3:9f:5e:31:d1:c2:7d:f1:e1:
63:d8:79:4b:3c:03:72:70:ce:9c:3c:20:67:56:a0:
42:0c:ae:11:a3:db:3a:79:cb:cf:03:9f:5a:a0:53:
94:ac:9d:be:03:f4:6e:60:d8:d8:33:25:16:43:eb:
71:39:14:53:e9:34:4a:56:cd:f1:be:0e:f1:7e:69:
1e:6f:9b:e3:91:54:71:ab:a2:a1:b6:57:42:f5:15:
42:a3:1c:00:35:25:29:8f:2d:d0:57:df:8c:9e:00:
24:41:60:b7:a6:67:98:dd:f7:da:91:7f:31:4a:20:
a2:ef:2a:ad:22:da:19:87:dd:94:a0:e9:26:f4:9b:
2a:59:9b:21:70:c6:87:e9:64:b6:83:0f:06:f5:0f:
69:7f:bf:d3:1a:41:e6:04:08:91:d8:ec:70:97:85:
8a:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:D5:A2:DC:0A:BE:07:95:94:A1:74:31:E4:61:A0:8C:E3:51:4E:30
X509v3 Authority Key Identifier:
keyid:A8:53:9F:93:55:D3:EB:77:8B:1B:B8:EE:27:23:32:60:11:A1:22:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qFOfk1XT63eLG7juJyMyYBGhIps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/4f8e76-59e5-40d1-a13e-71f4c47f506e/1/ZNWi3Aq-B5WUoXQx5GGgjONRTjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/4f8e76-59e5-40d1-a13e-71f4c47f506e/1/qFOfk1XT63eLG7juJyMyYBGhIps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.187.0.0/16
Signature Algorithm: sha256WithRSAEncryption
5b:19:44:6d:54:e4:00:27:15:01:c3:5d:24:d0:23:24:1f:cc:
19:7c:d1:1d:c6:33:f6:54:0b:78:85:8b:1d:ef:f6:bd:65:1a:
c3:32:8c:3e:60:d6:e3:a7:05:ee:97:0b:2a:b8:a5:7b:29:37:
37:cb:10:cd:15:ad:28:b5:12:c0:a0:49:a1:76:de:47:80:85:
68:d8:ca:ff:21:57:29:1c:40:90:4f:83:22:6e:44:60:5b:4c:
cf:05:1c:f9:c5:84:b9:94:e6:aa:e4:be:ff:91:d2:b0:d4:12:
52:2d:86:ed:a8:ba:08:46:48:c1:bd:2c:19:47:a2:73:60:ee:
0b:61:96:fd:a2:1d:75:dc:d2:8e:08:ac:5c:a3:0b:75:4b:88:
e1:9f:3d:63:4b:bf:90:69:81:e1:2e:28:b3:38:3b:fc:c8:3e:
d4:0d:37:a9:ca:f6:db:10:68:17:e5:41:02:04:72:92:cc:6d:
7d:3c:e0:05:71:9c:68:ef:c8:c7:df:24:5e:b3:f8:8a:0d:f7:
43:54:c3:e3:a8:34:ec:a5:e1:b7:98:bd:96:41:e2:04:38:cd:
41:d7:70:d5:35:0c:2e:09:3b:97:8d:b6:7f:80:2e:30:c5:d1:
43:71:20:11:3c:49:34:1a:14:fd:e3:a8:34:ad:32:1c:1a:e1:
c4:35:24:d7
-----BEGIN CERTIFICATE-----
MIIE/DCCA+SgAwIBAgISAYVxlWsMtp8gfyKlt+2FgGQ5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE4NTM5ZjkzNTVkM2ViNzc4YjFiYjhlZTI3MjMzMjYwMTFh
MTIyOWIwHhcNMjMwMTAyMDgyNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NGQ1YTJkYzBhYmUwNzk1OTRhMTc0MzFlNDYxYTA4Y2UzNTE0ZTMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1ZUcsh+mZPFH7ahRbv9M8mjOxL97
Gpiclu2NWQz+QXq+Q3Wgj/31/BlY/tmzQic4i9P9X8U1dXM51fhOIwiJIAPuKPac
HvbJnnbF0l37YZ+NP+NclOMLLLPBr8Kc4a/zn14x0cJ98eFj2HlLPANycM6cPCBn
VqBCDK4Ro9s6ecvPA59aoFOUrJ2+A/RuYNjYMyUWQ+txORRT6TRKVs3xvg7xfmke
b5vjkVRxq6KhtldC9RVCoxwANSUpjy3QV9+MngAkQWC3pmeY3ffakX8xSiCi7yqt
ItoZh92UoOkm9JsqWZshcMaH6WS2gw8G9Q9pf7/TGkHmBAiR2Oxwl4WKPwIDAQAB
o4ICCDCCAgQwHQYDVR0OBBYEFGTVotwKvgeVlKF0MeRhoIzjUU4wMB8GA1UdIwQY
MBaAFKhTn5NV0+t3ixu47icjMmARoSKbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcUZPZmsxWFQ2M2VMRzdqdUp5TXlZQkdoSXBzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS80ZjhlNzYtNTllNS00MGQxLWExM2Ut
NzFmNGM0N2Y1MDZlLzEvWk5XaTNBcS1CNVdVb1hReDVHR2dqT05SVGpBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS80ZjhlNzYtNTllNS00MGQxLWExM2UtNzFmNGM0N2Y1MDZl
LzEvcUZPZmsxWFQ2M2VMRzdqdUp5TXlZQkdoSXBzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAlLswDQYJ
KoZIhvcNAQELBQADggEBAFsZRG1U5AAnFQHDXSTQIyQfzBl80R3GM/ZUC3iFix3v
9r1lGsMyjD5g1uOnBe6XCyq4pXspNzfLEM0VrSi1EsCgSaF23keAhWjYyv8hVykc
QJBPgyJuRGBbTM8FHPnFhLmU5qrkvv+R0rDUElIthu2oughGSMG9LBlHonNg7gth
lv2iHXXc0o4IrFyjC3VLiOGfPWNLv5BpgeEuKLM4O/zIPtQNN6nK9tsQaBflQQIE
cpLMbX084AVxnGjvyMffJF6z+IoN90NUw+OoNOyl4beYvZZB4gQ4zUHXcNU1DC4J
O5eNtn+ALjDF0UNxIBE8STQaFP3jqDStMhwa4cQ1JNc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:33 2024 by rpki-client on console-fra.rpki-client.org