Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/ZXMDy1pxwpYcl7AGCEqa3L14XwM.roa
File: ZXMDy1pxwpYcl7AGCEqa3L14XwM.roa (raw, json)
Hash identifier: k66NQOHdX0YijJBgJL7SnTw4jSOYubbQNBqkk5ElEoQ=
Subject key identifier: 65:73:03:CB:5A:71:C2:96:1C:97:B0:06:08:4A:9A:DC:BD:78:5F:03
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018DEE9BDCB14A43374B292DAD0CCBE42C5C
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/ZXMDy1pxwpYcl7AGCEqa3L14XwM.roa
Signing time: Wed 28 Feb 2024 07:26:48 +0000
ROA not before: Wed 28 Feb 2024 07:26:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 27498
IP address blocks: 91.186.216.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sat 30 Mar 2024 08:20:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ee:9b:dc:b1:4a:43:37:4b:29:2d:ad:0c:cb:e4:2c:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Feb 28 07:26:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=657303cb5a71c2961c97b006084a9adcbd785f03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:a1:a8:e1:89:d4:fc:e2:ac:1c:42:8d:d0:60:
d3:80:55:91:a8:14:ba:db:4a:9a:a2:f9:fa:39:7d:
b1:de:7e:16:6c:f5:11:4b:d1:92:9f:69:77:ed:53:
89:dc:25:90:b9:c1:98:87:24:2d:a8:f2:3c:ac:12:
97:c8:2f:f4:a2:91:b6:67:20:b2:8d:1a:7f:61:c9:
15:01:16:41:00:01:78:e4:d7:d1:ff:a9:12:19:48:
b3:5a:98:f8:74:60:c2:2c:f4:18:3c:b7:f3:a4:14:
50:83:16:b2:42:1d:f9:bd:67:36:f8:08:85:50:6c:
20:63:1d:21:ce:d8:13:53:40:eb:12:32:5f:0d:3e:
40:f4:2f:31:96:8f:63:45:49:ed:3c:db:6a:1a:4d:
39:1d:55:95:01:e8:80:0a:37:3d:2a:fa:db:65:69:
86:2b:e2:aa:14:62:94:25:25:b2:28:18:d1:f4:8f:
c9:5d:bc:39:90:e6:b4:35:29:78:89:a6:f0:aa:3d:
e7:1d:e3:60:b3:a6:09:35:38:cb:59:91:15:ab:3e:
55:4e:a3:68:e3:12:63:92:f9:f4:e8:d1:1e:63:14:
30:55:48:3e:8f:72:51:16:7f:32:b2:af:1e:8e:a8:
01:18:95:81:0c:c0:0d:9a:cd:93:a5:88:59:6d:8a:
c6:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:73:03:CB:5A:71:C2:96:1C:97:B0:06:08:4A:9A:DC:BD:78:5F:03
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/ZXMDy1pxwpYcl7AGCEqa3L14XwM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.186.216.0/23
Signature Algorithm: sha256WithRSAEncryption
50:05:a0:d6:f8:ee:90:2e:08:bb:33:95:1e:c2:1f:ee:6f:9b:
d1:12:96:ca:ad:c8:99:08:5c:a1:17:a9:d2:6b:1a:33:ef:dd:
49:14:00:d7:b3:5a:f7:c0:c8:f9:31:7f:08:a7:91:59:47:90:
28:d1:2d:4a:ad:ee:ff:b9:be:aa:bf:41:f3:75:69:01:5f:e1:
d7:46:bd:65:91:bd:49:0b:7b:4e:b1:30:da:3c:ae:52:5f:15:
db:dc:8e:e0:42:36:40:00:f1:a6:50:4c:c9:b2:50:7d:0e:c9:
c9:fa:3e:ba:cd:f5:b2:06:07:00:91:56:f5:ee:08:96:8e:5d:
d0:22:a6:d2:ab:a7:ed:05:81:05:dd:9c:40:2a:a8:11:67:24:
91:c8:e8:be:38:d5:06:ca:64:a0:7a:a2:3a:a1:95:8c:2b:c1:
e0:39:2c:e9:57:2a:a6:1b:4c:8f:39:9a:3e:ca:aa:a8:9f:60:
79:40:62:ff:05:c8:92:9c:31:3c:a8:49:f1:12:4f:62:69:d3:
f5:d5:bf:86:f9:aa:f3:ba:ca:54:16:ee:fd:c6:6e:e6:8f:af:
19:31:05:a4:10:48:cb:e7:74:3d:e7:41:a3:18:df:10:e2:df:
a1:5e:11:ac:8e:fa:df:fa:fa:a4:cf:06:60:15:53:33:f0:4d:
ff:b0:ca:92
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY3um9yxSkM3SyktrQzL5CxcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyNzc4ZGUyYTliZTk4MDIxMjAzODJlNzUwZDE1OWU5NTg3
MmMyYWUwHhcNMjQwMjI4MDcyNjQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NTczMDNjYjVhNzFjMjk2MWM5N2IwMDYwODRhOWFkY2JkNzg1ZjAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh6Go4YnU/OKsHEKN0GDTgFWRqBS6
20qaovn6OX2x3n4WbPURS9GSn2l37VOJ3CWQucGYhyQtqPI8rBKXyC/0opG2ZyCy
jRp/YckVARZBAAF45NfR/6kSGUizWpj4dGDCLPQYPLfzpBRQgxayQh35vWc2+AiF
UGwgYx0hztgTU0DrEjJfDT5A9C8xlo9jRUntPNtqGk05HVWVAeiACjc9KvrbZWmG
K+KqFGKUJSWyKBjR9I/JXbw5kOa0NSl4iabwqj3nHeNgs6YJNTjLWZEVqz5VTqNo
4xJjkvn06NEeYxQwVUg+j3JRFn8ysq8ejqgBGJWBDMANms2TpYhZbYrGTQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGVzA8taccKWHJewBghKmty9eF8DMB8GA1UdIwQY
MBaAFMJ3jeKpvpgCEgOC51DRWelYcsKuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEt
Zjk4ZGE1NGFmNDM0LzEvWlhNRHkxcHh3cFljbDdBR0NFcWEzTDE0WHdNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEtZjk4ZGE1NGFmNDM0
LzEvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW7rYMA0G
CSqGSIb3DQEBCwUAA4IBAQBQBaDW+O6QLgi7M5Uewh/ub5vREpbKrciZCFyhF6nS
axoz791JFADXs1r3wMj5MX8Ip5FZR5Ao0S1Kre7/ub6qv0HzdWkBX+HXRr1lkb1J
C3tOsTDaPK5SXxXb3I7gQjZAAPGmUEzJslB9DsnJ+j66zfWyBgcAkVb17giWjl3Q
IqbSq6ftBYEF3ZxAKqgRZySRyOi+ONUGymSgeqI6oZWMK8HgOSzpVyqmG0yPOZo+
yqqon2B5QGL/BciSnDE8qEnxEk9iadP11b+G+arzuspUFu79xm7mj68ZMQWkEEjL
53Q950GjGN8Q4t+hXhGsjvrf+vqkzwZgFVMz8E3/sMqS
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:09 2024 by rpki-client on console-fra.rpki-client.org