Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/ziy596-BLsSPS6Rs-o7i05dCd5o.roa
File: ziy596-BLsSPS6Rs-o7i05dCd5o.roa (raw, json)
Hash identifier: nlb4+DcM3vAZ+TIEPEqCQkpBU5v11se6m7/sCigWccg=
Subject key identifier: CE:2C:B9:F7:AF:81:2E:C4:8F:4B:A4:6C:FA:8E:E2:D3:97:42:77:9A
Certificate issuer: /CN=230340d27e4b24f9124977322edb36942e2d160c
Certificate serial: 01857102D92845A563B78460F62A5B08C1BA
Authority key identifier: 23:03:40:D2:7E:4B:24:F9:12:49:77:32:2E:DB:36:94:2E:2D:16:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IwNA0n5LJPkSSXcyLts2lC4tFgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/ziy596-BLsSPS6Rs-o7i05dCd5o.roa
Signing time: Mon 02 Jan 2023 05:44:50 +0000
ROA not before: Mon 02 Jan 2023 05:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48227
IP address blocks: 81.6.187.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:02:d9:28:45:a5:63:b7:84:60:f6:2a:5b:08:c1:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=230340d27e4b24f9124977322edb36942e2d160c
Validity
Not Before: Jan 2 05:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ce2cb9f7af812ec48f4ba46cfa8ee2d39742779a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:d4:a3:83:3f:01:13:4c:03:33:a8:00:90:51:
21:6f:af:c4:5f:81:1d:3c:7b:92:a9:9e:61:29:2d:
90:70:30:1e:73:30:df:04:69:59:26:a4:02:b0:28:
b6:e1:ae:a3:da:63:94:41:eb:e1:29:9c:c9:30:7f:
61:84:4f:21:31:4c:d7:41:1d:57:ed:c9:e4:b1:8c:
ad:73:c5:ab:b5:6d:1e:97:73:26:8d:72:d8:a7:56:
7d:85:b5:c0:d5:56:f5:69:a2:e2:35:07:d4:60:8b:
9e:bb:2c:89:86:d6:e2:12:93:7a:c0:b4:24:db:ac:
e2:eb:a7:4f:26:bf:e5:3b:bb:a9:05:1a:14:f5:85:
bd:c9:39:58:82:92:55:7b:ec:99:c6:ab:6e:d0:9a:
0e:0a:ca:34:ed:98:d4:04:67:76:e8:6d:68:55:38:
62:7b:b2:33:99:8c:d4:96:aa:98:3a:e3:fa:1d:5d:
bf:d7:2c:3b:9a:a2:ed:77:68:e8:18:c8:e8:01:4b:
24:5a:53:1e:72:9f:46:97:88:8b:5b:e1:d6:56:35:
58:ff:5f:03:ec:82:89:51:fd:be:82:54:92:0b:4c:
7e:d5:99:b9:99:b1:85:33:a4:88:7f:ee:b6:63:97:
84:6e:75:72:ba:28:13:34:ab:7a:47:e6:91:4e:63:
8d:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:2C:B9:F7:AF:81:2E:C4:8F:4B:A4:6C:FA:8E:E2:D3:97:42:77:9A
X509v3 Authority Key Identifier:
keyid:23:03:40:D2:7E:4B:24:F9:12:49:77:32:2E:DB:36:94:2E:2D:16:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IwNA0n5LJPkSSXcyLts2lC4tFgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/ziy596-BLsSPS6Rs-o7i05dCd5o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/IwNA0n5LJPkSSXcyLts2lC4tFgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.6.187.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:a8:dd:0e:b0:a4:f0:14:6a:f6:1d:0b:0d:0c:d4:74:9c:cf:
00:bb:cc:c5:5d:c6:2a:13:3b:09:af:56:ef:8c:2b:12:69:db:
5e:c5:2e:70:ee:2e:ba:75:45:c8:b8:c6:bf:aa:55:44:ad:a2:
bb:f4:43:8b:88:98:a9:c6:80:3d:98:09:48:53:35:7b:4e:c7:
a6:c0:d5:60:61:e6:e2:a2:07:35:ed:52:2b:59:bf:ac:f5:a7:
38:4f:ca:1f:c5:8e:c3:51:b7:33:ce:78:a2:e3:e7:17:ec:7d:
a3:36:2d:64:ba:b7:3a:25:36:2a:b2:42:ea:bf:36:0b:3e:08:
4e:c5:bb:2c:5b:19:0c:cd:77:61:aa:57:44:eb:69:77:03:2a:
0b:a8:35:c4:9e:c7:00:c7:7d:76:ac:9e:38:34:20:28:99:1c:
c6:d9:4a:55:2b:73:e1:c8:ac:ce:31:0f:fc:d7:7a:44:4b:41:
73:93:11:1c:4d:50:a3:e9:9a:8e:76:79:e8:be:33:c3:79:8d:
92:13:96:59:21:62:db:6d:ca:20:c2:ad:d8:be:34:15:f6:29:
7e:22:7b:78:48:4c:4f:36:12:69:91:dc:74:d7:33:3d:52:61:
b5:c7:93:98:bd:25:a2:fa:ea:0a:26:6c:f3:37:6e:e9:4a:49:
e0:d3:75:1c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxAtkoRaVjt4Rg9ipbCMG6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzMDM0MGQyN2U0YjI0ZjkxMjQ5NzczMjJlZGIzNjk0MmUy
ZDE2MGMwHhcNMjMwMTAyMDU0NDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZTJjYjlmN2FmODEyZWM0OGY0YmE0NmNmYThlZTJkMzk3NDI3NzlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgdSjgz8BE0wDM6gAkFEhb6/EX4Ed
PHuSqZ5hKS2QcDAeczDfBGlZJqQCsCi24a6j2mOUQevhKZzJMH9hhE8hMUzXQR1X
7cnksYytc8WrtW0el3MmjXLYp1Z9hbXA1Vb1aaLiNQfUYIueuyyJhtbiEpN6wLQk
26zi66dPJr/lO7upBRoU9YW9yTlYgpJVe+yZxqtu0JoOCso07ZjUBGd26G1oVThi
e7IzmYzUlqqYOuP6HV2/1yw7mqLtd2joGMjoAUskWlMecp9Gl4iLW+HWVjVY/18D
7IKJUf2+glSSC0x+1Zm5mbGFM6SIf+62Y5eEbnVyuigTNKt6R+aRTmON4QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFM4sufevgS7Ej0ukbPqO4tOXQneaMB8GA1UdIwQY
MBaAFCMDQNJ+SyT5Ekl3Mi7bNpQuLRYMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXdOQTBuNUxKUGtTU1hjeUx0czJsQzR0Rmd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS83YmRmNTItNmFjNS00YzI0LWJmZDAt
YjU3MDkwN2I1OWViLzEveml5NTk2LUJMc1NQUzZScy1vN2kwNWRDZDVvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOS83YmRmNTItNmFjNS00YzI0LWJmZDAtYjU3MDkwN2I1OWVi
LzEvSXdOQTBuNUxKUGtTU1hjeUx0czJsQzR0Rmd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUQa7MA0G
CSqGSIb3DQEBCwUAA4IBAQClqN0OsKTwFGr2HQsNDNR0nM8Au8zFXcYqEzsJr1bv
jCsSadtexS5w7i66dUXIuMa/qlVEraK79EOLiJipxoA9mAlIUzV7TsemwNVgYebi
ogc17VIrWb+s9ac4T8ofxY7DUbczznii4+cX7H2jNi1kurc6JTYqskLqvzYLPghO
xbssWxkMzXdhqldE62l3AyoLqDXEnscAx312rJ44NCAomRzG2UpVK3PhyKzOMQ/8
13pES0FzkxEcTVCj6ZqOdnnovjPDeY2SE5ZZIWLbbcogwq3YvjQV9il+Int4SExP
NhJpkdx01zM9UmG1x5OYvSWi+uoKJmzzN27pSkng03Uc
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:18 2024 by rpki-client on console-fra.rpki-client.org