Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/20bb49-e509-4c7b-8e5a-8d3dcc33ad0a/1/zeUgy5JhFAvJtih7ntk4gBUwpjs.roa
File: zeUgy5JhFAvJtih7ntk4gBUwpjs.roa (raw, json)
Hash identifier: pfCwqqsrP0Kcq39zaNc+nhD7m4XzhqG9aV7Q0nZou10=
Subject key identifier: CD:E5:20:CB:92:61:14:0B:C9:B6:28:7B:9E:D9:38:80:15:30:A6:3B
Certificate issuer: /CN=20c0b9b33dce5eba0aea6489158d3fb27022ace7
Certificate serial: 01856F2FFA5A5A27DF3AE56E73834E7FD612
Authority key identifier: 20:C0:B9:B3:3D:CE:5E:BA:0A:EA:64:89:15:8D:3F:B2:70:22:AC:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IMC5sz3OXroK6mSJFY0_snAirOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/20bb49-e509-4c7b-8e5a-8d3dcc33ad0a/1/zeUgy5JhFAvJtih7ntk4gBUwpjs.roa
Signing time: Sun 01 Jan 2023 21:14:53 +0000
ROA not before: Sun 01 Jan 2023 21:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 185.150.179.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:2f:fa:5a:5a:27:df:3a:e5:6e:73:83:4e:7f:d6:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20c0b9b33dce5eba0aea6489158d3fb27022ace7
Validity
Not Before: Jan 1 21:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cde520cb9261140bc9b6287b9ed938801530a63b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:d9:37:59:53:05:6d:12:08:0f:fa:3d:4f:ba:
50:db:a5:92:25:8d:69:a5:71:d8:8c:e4:83:cb:7c:
fe:6d:ae:33:35:f8:0e:1d:a6:7f:23:08:4c:bf:a5:
11:e6:21:8b:20:a3:16:c6:92:8a:31:d9:c4:11:8a:
1d:7e:54:17:6e:cc:15:31:be:e9:94:17:33:0a:70:
bb:83:b3:5a:88:de:10:ea:ee:b6:af:fd:e2:b8:fb:
78:e4:dd:b1:de:9b:8a:c9:5c:b6:73:0e:f9:2e:69:
dc:f3:67:d3:f8:0c:88:f7:3e:28:24:24:24:8e:fe:
a0:d5:85:50:36:4b:42:0a:38:8b:39:3f:5c:4e:f6:
f0:66:3c:4f:9f:7f:aa:92:7c:4c:e0:c4:15:85:4a:
46:c8:76:ca:03:de:36:25:b5:7d:d5:14:8e:6e:f8:
6d:34:0b:9e:9d:e2:67:c7:a4:e8:d7:a3:8f:aa:60:
08:c4:8a:04:15:ff:99:e6:58:b4:ec:84:58:f2:76:
27:e7:40:4f:90:76:cc:99:41:26:80:12:2c:72:85:
04:fe:ba:b4:08:d8:42:51:6e:de:2f:b4:11:16:3d:
44:5b:af:2d:c4:9e:fe:17:d8:48:7b:5f:86:cd:98:
3c:54:76:52:a1:ed:07:e0:8d:fb:74:ae:1e:22:c5:
a4:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:E5:20:CB:92:61:14:0B:C9:B6:28:7B:9E:D9:38:80:15:30:A6:3B
X509v3 Authority Key Identifier:
keyid:20:C0:B9:B3:3D:CE:5E:BA:0A:EA:64:89:15:8D:3F:B2:70:22:AC:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IMC5sz3OXroK6mSJFY0_snAirOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/20bb49-e509-4c7b-8e5a-8d3dcc33ad0a/1/zeUgy5JhFAvJtih7ntk4gBUwpjs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/20bb49-e509-4c7b-8e5a-8d3dcc33ad0a/1/IMC5sz3OXroK6mSJFY0_snAirOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.179.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:1f:31:55:08:c8:e0:5f:6b:e1:59:43:69:38:9f:f0:95:20:
ae:e1:07:1f:a1:70:e2:63:ca:55:52:b9:80:7c:e4:06:c5:93:
6e:0f:9f:95:33:d8:5d:a7:07:35:53:63:a1:98:a4:0c:9d:c5:
48:6b:9d:8a:74:9e:d2:97:17:e8:9f:37:4d:5f:d3:3b:ea:14:
67:56:0b:ff:2f:fa:29:59:db:64:80:5e:a6:37:5a:df:17:fb:
08:62:57:c7:b3:6b:46:95:29:17:b5:76:c9:62:b1:c1:53:01:
30:d6:f8:09:3a:fc:bd:2d:fa:f1:08:9a:a5:b8:35:47:c5:96:
26:cd:14:04:c2:d3:f2:42:37:d9:a6:30:ce:1b:04:68:e4:c9:
0c:16:31:71:d3:06:c4:39:17:94:f7:7d:5a:cd:99:36:99:2b:
76:84:8b:21:10:34:58:d9:41:32:4c:a6:81:47:f6:ae:35:5a:
41:8e:28:f5:65:56:c1:67:59:d7:78:86:92:86:5f:54:9e:c1:
69:d4:42:0c:06:83:7e:45:a8:dc:41:ea:5a:bd:79:ff:c3:31:
0d:43:69:d5:d4:20:c2:29:9e:44:e1:cb:6f:7f:0d:cb:4f:9b:
c4:14:c7:68:b8:0e:1b:c6:14:d0:d7:3e:a7:09:32:eb:80:2b:
41:87:99:cc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvL/paWiffOuVuc4NOf9YSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwYzBiOWIzM2RjZTVlYmEwYWVhNjQ4OTE1OGQzZmIyNzAy
MmFjZTcwHhcNMjMwMTAxMjExNDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZGU1MjBjYjkyNjExNDBiYzliNjI4N2I5ZWQ5Mzg4MDE1MzBhNjNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh9k3WVMFbRIID/o9T7pQ26WSJY1p
pXHYjOSDy3z+ba4zNfgOHaZ/IwhMv6UR5iGLIKMWxpKKMdnEEYodflQXbswVMb7p
lBczCnC7g7NaiN4Q6u62r/3iuPt45N2x3puKyVy2cw75Lmnc82fT+AyI9z4oJCQk
jv6g1YVQNktCCjiLOT9cTvbwZjxPn3+qknxM4MQVhUpGyHbKA942JbV91RSObvht
NAueneJnx6To16OPqmAIxIoEFf+Z5li07IRY8nYn50BPkHbMmUEmgBIscoUE/rq0
CNhCUW7eL7QRFj1EW68txJ7+F9hIe1+GzZg8VHZSoe0H4I37dK4eIsWkTQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFM3lIMuSYRQLybYoe57ZOIAVMKY7MB8GA1UdIwQY
MBaAFCDAubM9zl66CupkiRWNP7JwIqznMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSU1DNXN6M09Ycm9LNm1TSkZZMF9zbkFpck9jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC8yMGJiNDktZTUwOS00YzdiLThlNWEt
OGQzZGNjMzNhZDBhLzEvemVVZ3k1SmhGQXZKdGloN250azRnQlV3cGpzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC8yMGJiNDktZTUwOS00YzdiLThlNWEtOGQzZGNjMzNhZDBh
LzEvSU1DNXN6M09Ycm9LNm1TSkZZMF9zbkFpck9jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZazMA0G
CSqGSIb3DQEBCwUAA4IBAQDBHzFVCMjgX2vhWUNpOJ/wlSCu4QcfoXDiY8pVUrmA
fOQGxZNuD5+VM9hdpwc1U2OhmKQMncVIa52KdJ7SlxfonzdNX9M76hRnVgv/L/op
WdtkgF6mN1rfF/sIYlfHs2tGlSkXtXbJYrHBUwEw1vgJOvy9LfrxCJqluDVHxZYm
zRQEwtPyQjfZpjDOGwRo5MkMFjFx0wbEOReU931azZk2mSt2hIshEDRY2UEyTKaB
R/auNVpBjij1ZVbBZ1nXeIaShl9UnsFp1EIMBoN+RajcQepavXn/wzENQ2nV1CDC
KZ5E4ctvfw3LT5vEFMdouA4bxhTQ1z6nCTLrgCtBh5nM
-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:43 2024 by rpki-client on console-fra.rpki-client.org