Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/ZH1lkMBqjp0qUOeUI-NKV4NmuBA.roa
File: ZH1lkMBqjp0qUOeUI-NKV4NmuBA.roa (raw, json)
Hash identifier: DUqrqrIQ5jq46fcTDWZBVmGJikzuEn6b6l4bExJXg5o=
Subject key identifier: 64:7D:65:90:C0:6A:8E:9D:2A:50:E7:94:23:E3:4A:57:83:66:B8:10
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0189EABBBD55A12A76517450C21BD33310E9
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/ZH1lkMBqjp0qUOeUI-NKV4NmuBA.roa
Signing time: Sat 12 Aug 2023 17:11:59 +0000
ROA not before: Sat 12 Aug 2023 17:11:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200113
IP address blocks: 85.209.162.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ea:bb:bd:55:a1:2a:76:51:74:50:c2:1b:d3:33:10:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Aug 12 17:11:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=647d6590c06a8e9d2a50e79423e34a578366b810
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:96:33:61:6f:6e:d8:98:db:ec:ed:98:32:88:
10:c3:5b:4c:3d:4e:27:1f:86:94:6e:2d:f3:86:05:
90:6d:d9:75:18:ab:0f:f6:75:8f:75:b8:67:14:87:
ba:e9:87:ce:dd:8a:5c:c3:3c:16:c8:c1:6c:f4:b1:
6c:1d:f5:ae:86:27:3d:22:74:72:c4:56:20:c5:1e:
ab:2c:50:e7:52:74:42:c2:a7:2c:e3:cb:ec:3a:5c:
61:a9:65:ff:07:c6:32:d6:1b:c1:fa:94:25:e3:3a:
36:65:7a:0b:dd:33:dc:83:07:9c:20:c5:75:7c:06:
a2:5b:e0:ab:de:53:4a:b2:fc:1c:96:bf:98:1f:8b:
cb:bd:ab:62:a4:de:f0:70:5e:5a:37:5b:cf:07:71:
00:2c:59:b6:ba:3d:9c:2a:3e:9c:df:64:2b:fa:a6:
d9:e5:76:50:14:30:47:49:82:50:6a:aa:8f:41:a8:
83:a8:bb:9d:a2:27:9b:3c:75:d6:f9:93:f7:b5:c2:
ca:62:72:d5:44:9c:32:c0:69:1e:09:81:6a:8b:cf:
df:95:e7:bc:70:c4:77:d2:d3:ca:fc:db:a1:a2:3d:
eb:75:e3:83:13:ac:ff:a5:6a:1c:55:e1:fd:17:a3:
39:90:bc:5d:62:c7:a4:8f:48:a9:96:30:6b:4c:3e:
0f:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:7D:65:90:C0:6A:8E:9D:2A:50:E7:94:23:E3:4A:57:83:66:B8:10
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/ZH1lkMBqjp0qUOeUI-NKV4NmuBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.162.0/24
Signature Algorithm: sha256WithRSAEncryption
09:e8:e0:0f:d9:6e:c8:39:77:13:d6:89:cf:0a:07:8e:0f:c2:
c6:ef:e7:77:71:ab:7f:f4:61:90:ea:44:69:ac:f0:f4:ab:5f:
7a:3c:20:e9:e2:c0:53:17:fb:a2:0f:93:8a:20:9c:36:6f:6c:
05:f2:eb:a1:0e:b7:b1:35:7c:23:7e:2b:68:2f:fc:2d:16:b0:
9f:e6:e2:ea:2e:7f:d3:85:7a:c4:73:6d:54:0a:eb:54:32:86:
0a:49:27:17:a2:45:84:f5:9b:1c:4f:cb:cd:93:0e:12:ac:be:
f4:f6:7b:d5:05:0d:91:be:e5:b7:5f:37:d9:93:02:0e:60:c9:
11:0f:9c:8b:73:3d:86:75:bd:a2:00:ac:c4:58:66:67:9f:91:
a1:cb:b7:14:ad:cb:60:6b:24:80:55:bf:fb:32:ac:9b:e9:7a:
0a:95:50:72:6e:4c:70:8f:f6:53:c0:46:84:af:40:20:38:97:
18:95:c7:eb:27:4f:ad:f6:04:12:60:dc:ef:44:db:78:6c:d4:
05:bb:dc:01:36:3d:e9:a9:28:32:d7:37:63:1d:c1:6b:da:3b:
f2:4c:c3:7d:11:da:06:fa:44:5d:70:b9:2f:85:a4:e8:93:d6:
73:35:79:1b:bc:0e:90:db:27:e1:ee:db:6d:a8:75:99:d6:c8:
9c:d7:65:05
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYnqu71VoSp2UXRQwhvTMxDpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyZmRiNjc2NTRkZjYxODRlN2Q2MGM0MTUwZWE5NTMzYzJj
Zjk3MDQwHhcNMjMwODEyMTcxMTU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NDdkNjU5MGMwNmE4ZTlkMmE1MGU3OTQyM2UzNGE1NzgzNjZiODEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsZYzYW9u2Jjb7O2YMogQw1tMPU4n
H4aUbi3zhgWQbdl1GKsP9nWPdbhnFIe66YfO3YpcwzwWyMFs9LFsHfWuhic9InRy
xFYgxR6rLFDnUnRCwqcs48vsOlxhqWX/B8Yy1hvB+pQl4zo2ZXoL3TPcgwecIMV1
fAaiW+Cr3lNKsvwclr+YH4vLvatipN7wcF5aN1vPB3EALFm2uj2cKj6c32Qr+qbZ
5XZQFDBHSYJQaqqPQaiDqLudoiebPHXW+ZP3tcLKYnLVRJwywGkeCYFqi8/flee8
cMR30tPK/Nuhoj3rdeODE6z/pWocVeH9F6M5kLxdYsekj0ipljBrTD4PAQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGR9ZZDAao6dKlDnlCPjSleDZrgQMB8GA1UdIwQY
MBaAFGL9tnZU32GE59YMQVDqlTPCz5cEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTct
ZTg2MTIxYzU5NGRmLzEvWkgxbGtNQnFqcDBxVU9lVUktTktWNE5tdUJBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTctZTg2MTIxYzU5NGRm
LzEvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVdGiMA0G
CSqGSIb3DQEBCwUAA4IBAQAJ6OAP2W7IOXcT1onPCgeOD8LG7+d3cat/9GGQ6kRp
rPD0q196PCDp4sBTF/uiD5OKIJw2b2wF8uuhDrexNXwjfitoL/wtFrCf5uLqLn/T
hXrEc21UCutUMoYKSScXokWE9ZscT8vNkw4SrL709nvVBQ2RvuW3XzfZkwIOYMkR
D5yLcz2Gdb2iAKzEWGZnn5Ghy7cUrctgaySAVb/7Mqyb6XoKlVBybkxwj/ZTwEaE
r0AgOJcYlcfrJ0+t9gQSYNzvRNt4bNQFu9wBNj3pqSgy1zdjHcFr2jvyTMN9EdoG
+kRdcLkvhaTok9ZzNXkbvA6Q2yfh7tttqHWZ1sic12UF
-----END CERTIFICATE-----
Generated at Tue Jan 2 09:02:03 2024 by rpki-client on console-ams.rpki-client.org