Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/ZXH_VVHJmpNNWkVcSFBVpWii8Xs.roa
File: ZXH_VVHJmpNNWkVcSFBVpWii8Xs.roa (raw, json)
Hash identifier: WmqbePO3EPBhX2/w6sk5SMV/02qjtf3ahU6aFVsdVpQ=
Subject key identifier: 65:71:FF:55:51:C9:9A:93:4D:5A:45:5C:48:50:55:A5:68:A2:F1:7B
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018C0AC12EB73A53E3ECA1F97BF0BE311D45
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/ZXH_VVHJmpNNWkVcSFBVpWii8Xs.roa
Signing time: Sun 26 Nov 2023 08:31:21 +0000
ROA not before: Sun 26 Nov 2023 08:31:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199707
IP address blocks: 89.34.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:0a:c1:2e:b7:3a:53:e3:ec:a1:f9:7b:f0:be:31:1d:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Nov 26 08:31:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6571ff5551c99a934d5a455c485055a568a2f17b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:8b:3a:e0:6a:01:78:94:d3:af:0b:27:65:f9:
09:89:20:ae:62:4c:6b:ea:ac:f0:32:62:53:08:f7:
b1:66:11:ff:0f:25:6a:5e:57:59:b1:14:0a:79:1d:
22:0f:bc:15:60:b1:bc:c6:45:d5:12:dc:e3:8f:48:
61:7e:b1:35:17:96:62:c3:cb:db:89:f5:1e:8e:23:
f7:10:6c:cb:02:3d:c6:c3:ae:cb:38:62:b4:5c:9f:
37:8a:43:b2:4a:fe:25:22:37:f5:c9:1b:3d:bd:7b:
4b:a7:75:2e:c6:1d:c6:51:a1:17:17:9d:fa:5d:0a:
b8:43:15:dc:6c:f2:4f:47:6b:17:36:5a:ad:79:8e:
e3:51:4f:3c:24:51:72:00:78:1a:0a:c3:98:9b:99:
a7:22:b4:3c:0d:45:ca:88:63:d1:08:61:2b:9d:63:
99:a7:a0:a4:81:b5:11:51:e4:28:5a:9c:0a:8d:6c:
5a:9d:d3:70:7d:a3:ae:c3:83:62:b7:6f:37:31:e4:
b2:b5:f2:c0:9d:8f:e2:b4:2d:78:9f:08:1a:bf:28:
e8:df:9f:98:f1:e6:89:9d:3c:22:e6:40:00:61:bd:
e8:34:da:63:97:f8:29:35:ec:9b:1c:40:ea:76:17:
8f:02:91:92:12:dc:f9:51:3e:5a:75:30:9a:b4:0c:
a1:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:71:FF:55:51:C9:9A:93:4D:5A:45:5C:48:50:55:A5:68:A2:F1:7B
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/ZXH_VVHJmpNNWkVcSFBVpWii8Xs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.227.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:14:c3:de:e6:5a:28:4a:a2:ba:2a:29:72:fc:5d:69:89:25:
81:f1:ab:6e:a4:ef:4f:a1:cd:2a:c8:0d:50:1c:d0:db:35:77:
32:1a:2e:9d:2c:13:69:45:a5:85:fa:06:91:9f:d4:22:6a:1d:
aa:00:8a:b7:8c:a8:a9:bd:3a:06:fa:41:b3:e8:4f:51:67:fa:
94:eb:db:ae:81:2b:08:be:0d:10:b8:54:36:b5:ae:52:5c:51:
db:3a:69:03:05:9e:f3:6a:6c:5d:50:95:ab:2a:15:1b:41:17:
57:09:3f:0a:7a:79:9f:60:70:f4:8e:68:9a:31:fb:2c:42:fd:
5d:05:1a:c7:68:04:19:6c:82:de:74:b8:95:2d:74:5e:85:c9:
b3:c5:fe:cc:d3:fe:28:65:60:64:95:ea:b5:0e:c9:ea:a7:98:
e2:21:41:05:aa:2f:bd:20:f9:11:6f:d7:79:69:26:02:0b:af:
a5:d6:ec:e3:44:66:de:64:89:aa:b2:a9:9f:63:57:32:e1:d3:
84:c2:32:2f:78:9c:8e:ff:8a:d7:ed:dd:6c:34:9c:17:93:9d:
99:c1:69:49:7f:ef:ad:a4:b9:78:43:a6:cb:88:f1:ea:c0:e6:
a8:ad:79:58:b9:51:b9:a1:ae:22:86:8b:f2:98:0c:8b:da:7c:
cb:69:c2:af
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYwKwS63OlPj7KH5e/C+MR1FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYxZDQ2ZTBlM2U4Y2FhYWVkNGE1MjliZDdkNzMwOGJkMWVm
MDFjMWQwHhcNMjMxMTI2MDgzMTIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NTcxZmY1NTUxYzk5YTkzNGQ1YTQ1NWM0ODUwNTVhNTY4YTJmMTdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmos64GoBeJTTrwsnZfkJiSCuYkxr
6qzwMmJTCPexZhH/DyVqXldZsRQKeR0iD7wVYLG8xkXVEtzjj0hhfrE1F5Ziw8vb
ifUejiP3EGzLAj3Gw67LOGK0XJ83ikOySv4lIjf1yRs9vXtLp3Uuxh3GUaEXF536
XQq4QxXcbPJPR2sXNlqteY7jUU88JFFyAHgaCsOYm5mnIrQ8DUXKiGPRCGErnWOZ
p6CkgbURUeQoWpwKjWxandNwfaOuw4Nit283MeSytfLAnY/itC14nwgavyjo35+Y
8eaJnTwi5kAAYb3oNNpjl/gpNeybHEDqdhePApGSEtz5UT5adTCatAyhwQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGVx/1VRyZqTTVpFXEhQVaVoovF7MB8GA1UdIwQY
MBaAFPHUbg4+jKqu1KUpvX1zCL0e8BwdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOGRSdURqNk1xcTdVcFNtOWZYTUl2Ujd3SEIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi84NGViNDQtYmJkZi00NmMxLWIwNDMt
YjQyZjIzZDgyOGMzLzEvWlhIX1ZWSEptcE5OV2tWY1NGQlZwV2lpOFhzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi84NGViNDQtYmJkZi00NmMxLWIwNDMtYjQyZjIzZDgyOGMz
LzEvOGRSdURqNk1xcTdVcFNtOWZYTUl2Ujd3SEIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWSLjMA0G
CSqGSIb3DQEBCwUAA4IBAQANFMPe5looSqK6Kily/F1piSWB8atupO9Poc0qyA1Q
HNDbNXcyGi6dLBNpRaWF+gaRn9Qiah2qAIq3jKipvToG+kGz6E9RZ/qU69uugSsI
vg0QuFQ2ta5SXFHbOmkDBZ7zamxdUJWrKhUbQRdXCT8KenmfYHD0jmiaMfssQv1d
BRrHaAQZbILedLiVLXRehcmzxf7M0/4oZWBkleq1Dsnqp5jiIUEFqi+9IPkRb9d5
aSYCC6+l1uzjRGbeZImqsqmfY1cy4dOEwjIveJyO/4rX7d1sNJwXk52ZwWlJf++t
pLl4Q6bLiPHqwOaorXlYuVG5oa4ihovymAyL2nzLacKv
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:19 2024 by rpki-client on console-fra.rpki-client.org