Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/1x-ZRgW1YYKLCPmIR98TPvJSldQ.roa
File: 1x-ZRgW1YYKLCPmIR98TPvJSldQ.roa (raw, json)
Hash identifier: e//8QhY349Kuo/B9DkKdqiLVRpUbHa7/bSicUcuwUk0=
Subject key identifier: D7:1F:99:46:05:B5:61:82:8B:08:F9:88:47:DF:13:3E:F2:52:95:D4
Certificate issuer: /CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Certificate serial: 01906EF268998276B088D17E1F7A2577AA2D
Authority key identifier: 64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/1x-ZRgW1YYKLCPmIR98TPvJSldQ.roa
Signing time: Mon 01 Jul 2024 15:38:18 +0000
ROA not before: Mon 01 Jul 2024 15:38:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 174
IP address blocks: 92.61.103.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 04 Oct 2024 11:43:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:6e:f2:68:99:82:76:b0:88:d1:7e:1f:7a:25:77:aa:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Validity
Not Before: Jul 1 15:38:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d71f994605b561828b08f98847df133ef25295d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f8:f2:1b:ca:70:22:81:c3:78:b6:1d:3c:b7:
3d:4c:27:66:d4:d9:07:26:af:30:be:65:b6:79:ae:
3b:5f:83:23:ce:c0:bd:86:8e:64:a1:c6:ff:02:87:
e8:cc:75:1b:b3:8c:01:85:da:1c:4c:42:11:ce:8c:
39:26:88:a3:2d:82:bb:aa:a3:7b:f9:bf:87:b9:33:
e4:45:28:f9:5b:e6:be:64:48:70:22:83:25:13:56:
1c:2c:2b:4b:45:35:cb:91:c6:ef:48:d4:37:1d:b8:
e8:26:ac:25:10:33:8f:20:44:f5:c8:6a:00:4f:6a:
93:fa:f0:73:96:b2:20:7f:77:18:bf:4f:18:3e:41:
67:41:41:77:9e:fa:d1:92:8c:ef:f5:ee:2c:ff:0b:
63:54:5d:29:74:58:c4:3e:27:ff:3e:fd:c5:af:2d:
1b:03:f4:eb:37:3f:fe:5a:b9:f9:ee:73:b5:3d:10:
af:ca:21:d4:2e:d1:82:c2:21:2c:d3:1d:d2:87:fb:
b5:db:89:33:4c:5a:ac:a9:58:bd:f7:cd:8d:5d:56:
66:53:ce:97:f8:18:13:60:1e:44:6d:ba:b5:75:15:
13:8e:05:58:f5:dd:1e:ea:0d:8c:f4:d6:51:8b:be:
59:51:d4:83:3a:2f:1d:25:97:69:52:b4:08:90:8c:
45:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:1F:99:46:05:B5:61:82:8B:08:F9:88:47:DF:13:3E:F2:52:95:D4
X509v3 Authority Key Identifier:
keyid:64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/1x-ZRgW1YYKLCPmIR98TPvJSldQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.61.103.0/24
Signature Algorithm: sha256WithRSAEncryption
30:d3:eb:78:0b:2f:fd:74:9d:81:e9:43:17:75:13:ea:4c:88:
a4:a6:df:79:c1:42:61:8c:48:b6:f7:21:9a:91:d0:03:7e:ef:
1b:dc:36:bd:68:c9:11:a9:36:91:f3:2a:4b:10:1d:55:a7:ed:
43:7e:26:ed:b2:f8:a5:95:1e:95:e9:34:48:fe:c5:72:67:7a:
a5:aa:82:1a:01:03:b2:7c:9a:ba:86:26:cf:9f:32:7a:3d:50:
02:ce:fc:40:b9:07:6d:14:04:aa:e8:cd:83:b2:c3:a0:3a:7a:
9c:d9:05:24:df:05:50:3d:26:c6:dd:27:da:dc:cc:74:2b:6d:
c5:d3:d4:e1:1c:29:00:dc:62:23:4d:e5:fe:7b:cb:7c:a2:16:
9d:19:c0:97:ac:99:d4:57:44:b1:f2:7b:2b:6a:4d:5f:5f:4c:
ae:48:81:51:ce:c4:93:58:a9:77:64:29:22:df:68:89:2f:2a:
cd:77:3a:a6:41:f1:fc:d4:73:17:28:31:ea:aa:75:19:d0:db:
34:3a:53:e0:5a:28:99:a4:93:3c:d3:35:9f:46:e6:3f:f0:c5:
14:71:c1:81:b9:94:31:01:8f:ba:66:53:af:52:af:31:a1:ca:
13:0a:fd:49:c8:7d:01:d5:ae:27:71:af:ec:94:ac:7a:c5:0a:
4d:cf:eb:a0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZBu8miZgnawiNF+H3old6otMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0MTk3NTU4M2IyNTAzNjJjODE1MGY2M2FkYjMwYTBmNmEw
YzZmYzMwHhcNMjQwNzAxMTUzODE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNzFmOTk0NjA1YjU2MTgyOGIwOGY5ODg0N2RmMTMzZWYyNTI5NWQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn/jyG8pwIoHDeLYdPLc9TCdm1NkH
Jq8wvmW2ea47X4MjzsC9ho5kocb/AofozHUbs4wBhdocTEIRzow5JoijLYK7qqN7
+b+HuTPkRSj5W+a+ZEhwIoMlE1YcLCtLRTXLkcbvSNQ3HbjoJqwlEDOPIET1yGoA
T2qT+vBzlrIgf3cYv08YPkFnQUF3nvrRkozv9e4s/wtjVF0pdFjEPif/Pv3Fry0b
A/TrNz/+Wrn57nO1PRCvyiHULtGCwiEs0x3Sh/u124kzTFqsqVi9982NXVZmU86X
+BgTYB5Ebbq1dRUTjgVY9d0e6g2M9NZRi75ZUdSDOi8dJZdpUrQIkIxF3QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNcfmUYFtWGCiwj5iEffEz7yUpXUMB8GA1UdIwQY
MBaAFGQZdVg7JQNiyBUPY62zCg9qDG/DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWkJsMVdEc2xBMkxJRlE5anJiTUtEMm9NYjhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC85OGE1ZWQtOTA1ZS00YmZhLTkxNTQt
ZjFjMzNhYTJmZDUwLzEvMXgtWlJnVzFZWUtMQ1BtSVI5OFRQdkpTbGRRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC85OGE1ZWQtOTA1ZS00YmZhLTkxNTQtZjFjMzNhYTJmZDUw
LzEvWkJsMVdEc2xBMkxJRlE5anJiTUtEMm9NYjhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXD1nMA0G
CSqGSIb3DQEBCwUAA4IBAQAw0+t4Cy/9dJ2B6UMXdRPqTIikpt95wUJhjEi29yGa
kdADfu8b3Da9aMkRqTaR8ypLEB1Vp+1DfibtsvillR6V6TRI/sVyZ3qlqoIaAQOy
fJq6hibPnzJ6PVACzvxAuQdtFASq6M2DssOgOnqc2QUk3wVQPSbG3Sfa3Mx0K23F
09ThHCkA3GIjTeX+e8t8ohadGcCXrJnUV0Sx8nsrak1fX0yuSIFRzsSTWKl3ZCki
32iJLyrNdzqmQfH81HMXKDHqqnUZ0Ns0OlPgWiiZpJM80zWfRuY/8MUUccGBuZQx
AY+6ZlOvUq8xocoTCv1JyH0B1a4nca/slKx6xQpNz+ug
-----END CERTIFICATE-----
Generated at Fri Oct 4 17:15:46 2024 by rpki-client on console-fra.rpki-client.org