Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/70858a-6395-402d-9ace-e272013026b4/1/zCyOucNGNmrWqjUX4EORF6ioOGg.roa
File: zCyOucNGNmrWqjUX4EORF6ioOGg.roa (raw, json)
Hash identifier: r1aGgFjpCDlfh/ImaKM6Pscu5z7Ck7G2dhy2sFdsDfQ=
Subject key identifier: CC:2C:8E:B9:C3:46:36:6A:D6:AA:35:17:E0:43:91:17:A8:A8:38:68
Certificate issuer: /CN=5d370a48b59fb811495f11c49734482f22b1a392
Certificate serial: 018C5FD4B46F0109BD9802FB2674AAB1F597
Authority key identifier: 5D:37:0A:48:B5:9F:B8:11:49:5F:11:C4:97:34:48:2F:22:B1:A3:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTcKSLWfuBFJXxHElzRILyKxo5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/70858a-6395-402d-9ace-e272013026b4/1/zCyOucNGNmrWqjUX4EORF6ioOGg.roa
Signing time: Tue 12 Dec 2023 21:00:24 +0000
ROA not before: Tue 12 Dec 2023 21:00:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202673
IP address blocks: 91.226.97.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:5f:d4:b4:6f:01:09:bd:98:02:fb:26:74:aa:b1:f5:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d370a48b59fb811495f11c49734482f22b1a392
Validity
Not Before: Dec 12 21:00:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cc2c8eb9c346366ad6aa3517e0439117a8a83868
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:37:83:70:26:74:b6:33:6a:5a:ae:bd:51:e5:
8b:93:44:ad:10:c5:c5:81:3f:05:de:4d:bd:07:b4:
85:52:39:d7:45:07:0d:39:2a:42:83:27:8a:50:80:
bf:bf:6a:1b:76:31:d7:ab:42:62:3a:e3:3c:d5:8e:
c8:99:5e:19:6d:c1:21:6b:21:52:75:2b:77:0e:fc:
93:a2:85:c2:ca:ee:57:63:6b:d0:b9:7f:2d:2d:b6:
85:b1:72:13:b2:2c:5a:09:0f:75:24:8f:a5:f3:c9:
c8:64:47:df:ad:22:b3:4c:9d:20:0a:6d:7c:ae:f6:
ea:e2:f5:4c:1a:25:11:ea:d5:7f:48:0b:1a:99:eb:
2e:5d:ed:25:8b:53:47:1a:14:f5:9f:b7:69:df:5f:
dd:5b:68:23:01:c6:cd:b2:df:c2:af:45:6e:ab:06:
84:c2:95:2b:b9:0f:4c:e2:2d:38:88:25:36:c0:47:
ac:0d:b4:2e:7f:61:5c:c6:79:4b:4c:bf:f0:d8:44:
73:12:3f:fd:a0:64:a3:5a:0f:73:79:8d:b6:65:0b:
60:ef:d6:67:23:1d:f6:93:4a:58:5b:f7:98:27:9e:
1a:d6:51:71:e9:ab:8b:97:38:45:76:14:09:db:b7:
10:d7:37:a1:06:1c:be:f8:d8:18:46:51:b1:a1:e9:
ac:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:2C:8E:B9:C3:46:36:6A:D6:AA:35:17:E0:43:91:17:A8:A8:38:68
X509v3 Authority Key Identifier:
keyid:5D:37:0A:48:B5:9F:B8:11:49:5F:11:C4:97:34:48:2F:22:B1:A3:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTcKSLWfuBFJXxHElzRILyKxo5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/70858a-6395-402d-9ace-e272013026b4/1/zCyOucNGNmrWqjUX4EORF6ioOGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/70858a-6395-402d-9ace-e272013026b4/1/XTcKSLWfuBFJXxHElzRILyKxo5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.226.97.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:7b:45:b7:74:e1:8b:92:0c:90:7e:99:09:55:37:f2:b6:20:
7d:a0:3a:d9:94:2e:86:71:c0:f7:8a:b5:29:e8:c2:77:dd:8e:
f3:42:f2:6a:f8:50:5a:94:a6:c4:6f:17:84:c7:62:63:c0:a9:
c2:1b:51:7a:ed:c0:d7:4d:82:6d:c8:00:69:4f:50:0e:b8:a8:
01:ee:9d:37:4f:3a:33:f6:79:12:49:1f:e8:0d:9c:ea:cf:93:
19:93:45:7d:3d:2f:d5:87:40:74:44:0a:6c:58:04:9f:3b:46:
79:ae:6c:91:63:47:d8:ea:6a:d1:b6:a6:53:1a:a8:15:97:5f:
99:b0:a8:c4:14:c7:7e:33:06:80:cb:d0:0e:43:93:9c:ae:d4:
5a:c7:34:f5:40:9f:5e:10:a2:e8:39:e1:f2:ab:f1:e9:75:22:
18:85:e2:f3:68:45:af:b1:22:cc:73:ef:f2:8b:3d:94:46:23:
11:0d:ce:b8:8b:a1:fd:5a:6b:02:22:e2:4c:ea:12:8e:9a:62:
be:58:3c:b0:d6:27:06:55:05:73:ae:75:13:a3:53:d6:f3:a5:
46:16:7f:13:05:99:71:f4:c4:4d:39:be:d7:35:6c:ec:23:7d:
eb:21:9e:dc:64:76:ce:d9:dc:16:7b:42:4e:3c:db:fe:87:b1:
c7:e8:5e:2f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYxf1LRvAQm9mAL7JnSqsfWXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkMzcwYTQ4YjU5ZmI4MTE0OTVmMTFjNDk3MzQ0ODJmMjJi
MWEzOTIwHhcNMjMxMjEyMjEwMDI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYzJjOGViOWMzNDYzNjZhZDZhYTM1MTdlMDQzOTExN2E4YTgzODY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgDeDcCZ0tjNqWq69UeWLk0StEMXF
gT8F3k29B7SFUjnXRQcNOSpCgyeKUIC/v2obdjHXq0JiOuM81Y7ImV4ZbcEhayFS
dSt3DvyTooXCyu5XY2vQuX8tLbaFsXITsixaCQ91JI+l88nIZEffrSKzTJ0gCm18
rvbq4vVMGiUR6tV/SAsamesuXe0li1NHGhT1n7dp31/dW2gjAcbNst/Cr0VuqwaE
wpUruQ9M4i04iCU2wEesDbQuf2FcxnlLTL/w2ERzEj/9oGSjWg9zeY22ZQtg79Zn
Ix32k0pYW/eYJ54a1lFx6auLlzhFdhQJ27cQ1zehBhy++NgYRlGxoemsQwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMwsjrnDRjZq1qo1F+BDkReoqDhoMB8GA1UdIwQY
MBaAFF03Cki1n7gRSV8RxJc0SC8isaOSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFRjS1NMV2Z1QkZKWHhIRWx6UklMeUt4bzVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS83MDg1OGEtNjM5NS00MDJkLTlhY2Ut
ZTI3MjAxMzAyNmI0LzEvekN5T3VjTkdObXJXcWpVWDRFT1JGNmlvT0dnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS83MDg1OGEtNjM5NS00MDJkLTlhY2UtZTI3MjAxMzAyNmI0
LzEvWFRjS1NMV2Z1QkZKWHhIRWx6UklMeUt4bzVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+JhMA0G
CSqGSIb3DQEBCwUAA4IBAQAKe0W3dOGLkgyQfpkJVTfytiB9oDrZlC6GccD3irUp
6MJ33Y7zQvJq+FBalKbEbxeEx2JjwKnCG1F67cDXTYJtyABpT1AOuKgB7p03Tzoz
9nkSSR/oDZzqz5MZk0V9PS/Vh0B0RApsWASfO0Z5rmyRY0fY6mrRtqZTGqgVl1+Z
sKjEFMd+MwaAy9AOQ5OcrtRaxzT1QJ9eEKLoOeHyq/HpdSIYheLzaEWvsSLMc+/y
iz2URiMRDc64i6H9WmsCIuJM6hKOmmK+WDyw1icGVQVzrnUTo1PW86VGFn8TBZlx
9MRNOb7XNWzsI33rIZ7cZHbO2dwWe0JOPNv+h7HH6F4v
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:54 2024 by rpki-client on console-fra.rpki-client.org