Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/ZjESd7YRDwUaJI2JBNoAeqSFI0U.roa
File: ZjESd7YRDwUaJI2JBNoAeqSFI0U.roa (raw, json)
Hash identifier: Qv3gSUgQ9eXvJaIhql5ofSDCxvczHvzaRMHZiu6RBRg=
Subject key identifier: 66:31:12:77:B6:11:0F:05:1A:24:8D:89:04:DA:00:7A:A4:85:23:45
Certificate issuer: /CN=92e720465c5cd0da9c6a13b44fa0d86f649e5055
Certificate serial: 018D168C0EDE8A40935F71CB0955F6EEC609
Authority key identifier: 92:E7:20:46:5C:5C:D0:DA:9C:6A:13:B4:4F:A0:D8:6F:64:9E:50:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kucgRlxc0NqcahO0T6DYb2SeUFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/ZjESd7YRDwUaJI2JBNoAeqSFI0U.roa
Signing time: Wed 17 Jan 2024 08:31:33 +0000
ROA not before: Wed 17 Jan 2024 08:31:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 147.161.3.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Jan 2024 18:03:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:16:8c:0e:de:8a:40:93:5f:71:cb:09:55:f6:ee:c6:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92e720465c5cd0da9c6a13b44fa0d86f649e5055
Validity
Not Before: Jan 17 08:31:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=66311277b6110f051a248d8904da007aa4852345
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:9a:cd:90:99:f7:81:1e:b4:bc:6c:fa:ab:57:
f6:99:a5:1a:be:7d:78:bf:83:7c:1c:65:cd:b7:7c:
96:32:78:d8:b1:52:a2:9a:8a:10:5f:02:7f:f2:73:
d0:48:b6:8e:21:7d:51:6c:1b:89:d8:f3:36:4f:d4:
61:96:50:6d:6f:ac:46:4f:3a:7f:67:e9:c4:ac:e4:
5f:12:43:79:9b:7f:78:04:24:47:38:7c:93:a0:36:
0d:fe:d8:d0:86:bf:29:4a:1b:ef:d6:55:60:14:b2:
7a:da:94:4b:88:9e:9b:38:a6:c2:30:aa:c0:e7:43:
b5:06:71:10:d7:87:24:af:cb:e1:cf:8f:c1:59:b8:
11:e2:e6:ee:05:6c:e5:52:b5:f5:3e:36:e4:57:f5:
b3:10:bf:42:62:2c:be:3a:cc:2c:51:b9:ab:9a:7d:
52:bb:61:02:44:dd:8c:c2:66:8b:85:5b:f7:77:20:
b7:32:0d:58:5a:9b:d5:43:8a:b6:56:07:f4:7e:fc:
f1:3d:26:d3:4b:7d:2f:0a:2b:8c:20:77:fb:d6:b4:
34:3e:bd:fa:53:a9:93:ca:b2:0f:08:62:b1:54:74:
08:3a:8a:3e:91:30:68:e4:a0:4e:f1:15:34:95:7b:
09:04:e6:55:4a:44:d2:c4:08:cf:94:7e:ea:0b:9d:
8b:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:31:12:77:B6:11:0F:05:1A:24:8D:89:04:DA:00:7A:A4:85:23:45
X509v3 Authority Key Identifier:
keyid:92:E7:20:46:5C:5C:D0:DA:9C:6A:13:B4:4F:A0:D8:6F:64:9E:50:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kucgRlxc0NqcahO0T6DYb2SeUFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/ZjESd7YRDwUaJI2JBNoAeqSFI0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/kucgRlxc0NqcahO0T6DYb2SeUFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.161.3.0/24
Signature Algorithm: sha256WithRSAEncryption
82:12:8f:1e:32:a5:0b:d6:17:23:e9:65:55:f3:69:e5:f9:54:
7e:ef:e1:ec:ed:4d:5d:3d:22:99:fb:94:53:d5:5c:ab:58:88:
07:c2:84:09:d9:be:dd:ff:26:06:d8:53:08:6b:f8:16:f1:5b:
29:6d:99:9f:9f:24:64:ee:f9:b1:ac:77:d2:8f:05:b2:4c:f4:
7f:0a:2e:4d:92:10:d6:dd:a9:6b:93:bb:16:fe:c1:94:a8:57:
ca:92:e7:82:26:25:8f:cd:fc:d9:06:de:41:15:10:dd:78:66:
10:09:3e:3f:25:a5:64:14:34:a9:cb:64:d8:19:8d:62:5f:f0:
df:27:dc:57:fe:e1:fb:47:76:ac:41:dc:54:79:88:9b:16:18:
03:98:71:a3:49:bb:5d:2f:91:e4:bd:95:9e:df:18:9c:d3:0a:
65:65:42:8b:9b:25:ee:62:37:e9:60:14:3d:5b:12:fb:59:1a:
3a:a9:11:42:bd:3a:a9:0d:13:ef:b3:5f:7b:bc:46:39:1e:c9:
7e:58:b6:a1:cf:11:5f:66:03:0b:b5:71:c7:c9:c9:14:46:45:
68:50:e4:87:5e:72:df:0d:b9:ea:5e:5d:ce:83:14:27:89:2f:
27:c8:d5:18:d9:76:5c:0f:24:d1:ee:4a:d3:0e:d3:83:19:57:
c0:2d:d5:2c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY0WjA7eikCTX3HLCVX27sYJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyZTcyMDQ2NWM1Y2QwZGE5YzZhMTNiNDRmYTBkODZmNjQ5
ZTUwNTUwHhcNMjQwMTE3MDgzMTMzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NjMxMTI3N2I2MTEwZjA1MWEyNDhkODkwNGRhMDA3YWE0ODUyMzQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA35rNkJn3gR60vGz6q1f2maUavn14
v4N8HGXNt3yWMnjYsVKimooQXwJ/8nPQSLaOIX1RbBuJ2PM2T9RhllBtb6xGTzp/
Z+nErORfEkN5m394BCRHOHyToDYN/tjQhr8pShvv1lVgFLJ62pRLiJ6bOKbCMKrA
50O1BnEQ14ckr8vhz4/BWbgR4ubuBWzlUrX1PjbkV/WzEL9CYiy+OswsUbmrmn1S
u2ECRN2MwmaLhVv3dyC3Mg1YWpvVQ4q2Vgf0fvzxPSbTS30vCiuMIHf71rQ0Pr36
U6mTyrIPCGKxVHQIOoo+kTBo5KBO8RU0lXsJBOZVSkTSxAjPlH7qC52LLQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGYxEne2EQ8FGiSNiQTaAHqkhSNFMB8GA1UdIwQY
MBaAFJLnIEZcXNDanGoTtE+g2G9knlBVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3VjZ1JseGMwTnFjYWhPMFQ2RFliMlNlVUZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS9mOGE5ZWItN2Y4ZC00YmY3LTgzZDkt
OTA5NmUxNjc0ZTIyLzEvWmpFU2Q3WVJEd1VhSkkySkJOb0FlcVNGSTBVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMS9mOGE5ZWItN2Y4ZC00YmY3LTgzZDktOTA5NmUxNjc0ZTIy
LzEva3VjZ1JseGMwTnFjYWhPMFQ2RFliMlNlVUZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAk6EDMA0G
CSqGSIb3DQEBCwUAA4IBAQCCEo8eMqUL1hcj6WVV82nl+VR+7+Hs7U1dPSKZ+5RT
1VyrWIgHwoQJ2b7d/yYG2FMIa/gW8VspbZmfnyRk7vmxrHfSjwWyTPR/Ci5NkhDW
3alrk7sW/sGUqFfKkueCJiWPzfzZBt5BFRDdeGYQCT4/JaVkFDSpy2TYGY1iX/Df
J9xX/uH7R3asQdxUeYibFhgDmHGjSbtdL5HkvZWe3xic0wplZUKLmyXuYjfpYBQ9
WxL7WRo6qRFCvTqpDRPvs197vEY5Hsl+WLahzxFfZgMLtXHHyckURkVoUOSHXnLf
DbnqXl3OgxQniS8nyNUY2XZcDyTR7krTDtODGVfALdUs
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:20 2024 by rpki-client on console-fra.rpki-client.org