Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/e11ea3-8705-40ac-a68d-9ce27c12b2f4/1/zwQXYRVvZWVcl2Zv7Tdtb9GlQXI.roa
File: zwQXYRVvZWVcl2Zv7Tdtb9GlQXI.roa (raw, json)
Hash identifier: 0PVY1DXFSosld/i7krnN7MyjlTqk3UiCBEbGJ1LZx/4=
Subject key identifier: CF:04:17:61:15:6F:65:65:5C:97:66:6F:ED:37:6D:6F:D1:A5:41:72
Certificate issuer: /CN=4aa6917876fd78926c1927b9fdc79658d746c84c
Certificate serial: 018572710D86D29298AF90B315C4554E6425
Authority key identifier: 4A:A6:91:78:76:FD:78:92:6C:19:27:B9:FD:C7:96:58:D7:46:C8:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SqaReHb9eJJsGSe5_ceWWNdGyEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/e11ea3-8705-40ac-a68d-9ce27c12b2f4/1/zwQXYRVvZWVcl2Zv7Tdtb9GlQXI.roa
Signing time: Mon 02 Jan 2023 12:24:49 +0000
ROA not before: Mon 02 Jan 2023 12:24:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202074
IP address blocks: 185.54.152.0/22 maxlen: 24
91.189.212.0/22 maxlen: 24
185.254.168.0/22 maxlen: 24
185.125.144.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:71:0d:86:d2:92:98:af:90:b3:15:c4:55:4e:64:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4aa6917876fd78926c1927b9fdc79658d746c84c
Validity
Not Before: Jan 2 12:24:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cf041761156f65655c97666fed376d6fd1a54172
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:94:85:3e:21:e9:ac:aa:77:8b:2b:19:d2:50:
d4:eb:04:85:23:f9:e9:40:b2:6d:36:4a:20:d9:78:
d2:85:7f:32:41:01:0f:87:3b:9c:b0:f4:58:1d:20:
8f:9c:6e:b5:95:ce:7a:8b:51:d8:51:39:dc:41:e9:
53:5f:6d:a3:7f:62:e8:23:cd:18:aa:64:7d:99:f6:
e9:6c:41:fc:f1:32:d8:9c:46:c0:34:5b:a6:0b:e6:
b2:e4:92:14:e9:c4:39:a8:36:ec:64:d8:5e:b9:53:
37:c2:69:05:5a:a4:ef:90:4d:6b:c0:94:64:07:31:
1d:e7:ba:a2:36:98:19:94:c8:d9:60:2d:bf:f1:90:
8a:f8:ac:20:5b:19:1c:6e:61:bd:27:3d:64:8f:59:
21:e3:87:06:01:b2:6b:c3:de:44:d4:de:8a:5e:24:
38:c6:c3:45:79:5b:0d:c5:92:9a:da:74:aa:49:2d:
e8:08:a9:8d:64:76:2c:cc:04:dc:8c:43:8f:6b:ba:
21:aa:81:40:9d:d8:8e:c5:99:f2:f3:9a:9c:c1:ad:
1c:18:dc:87:a1:cf:52:93:ec:b3:07:f6:f1:17:72:
c6:6c:e4:04:9e:01:f8:68:7f:62:ee:2d:9d:c2:df:
42:d5:48:82:ae:7b:ab:2d:5a:fd:24:f4:07:ac:af:
22:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:04:17:61:15:6F:65:65:5C:97:66:6F:ED:37:6D:6F:D1:A5:41:72
X509v3 Authority Key Identifier:
keyid:4A:A6:91:78:76:FD:78:92:6C:19:27:B9:FD:C7:96:58:D7:46:C8:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SqaReHb9eJJsGSe5_ceWWNdGyEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/e11ea3-8705-40ac-a68d-9ce27c12b2f4/1/zwQXYRVvZWVcl2Zv7Tdtb9GlQXI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/e11ea3-8705-40ac-a68d-9ce27c12b2f4/1/SqaReHb9eJJsGSe5_ceWWNdGyEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.189.212.0/22
185.54.152.0/22
185.125.144.0/22
185.254.168.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:36:2f:df:cf:6f:d4:60:64:c6:27:6c:9d:b8:a5:ef:bf:97:
d6:f1:49:ee:c1:13:92:e5:59:fd:a1:55:db:08:b8:2a:93:54:
d3:99:cc:61:f7:26:7d:43:3a:23:ec:3a:32:3a:1b:6a:98:bb:
dd:8a:d6:d4:25:b4:4c:43:2c:4c:96:31:01:d2:49:f3:a6:da:
49:66:24:ad:2a:fc:d8:3a:55:eb:02:d4:99:44:bb:98:d0:5e:
6f:61:57:88:c8:d8:6f:69:d2:d9:3a:bc:f8:12:f7:a2:b9:47:
9a:ca:1b:eb:9c:31:30:f8:1d:6a:9b:0c:bd:18:2a:9f:75:1a:
ee:52:79:5c:d2:eb:b3:a0:c1:a0:74:0c:37:61:9f:e7:f9:fe:
e4:8d:78:06:45:0d:80:a0:78:bc:0a:53:2c:c3:73:ef:03:79:
5b:4b:94:b6:47:d7:ac:d6:01:3e:f9:4b:45:56:74:48:e7:b1:
49:53:0b:03:5f:c2:50:1f:2e:a9:10:cd:a7:a0:ad:2e:c2:a9:
a6:eb:3b:f5:07:fa:bf:66:31:fb:c4:e7:64:d4:40:25:c5:dc:
47:32:2d:f4:44:4e:ae:8d:ef:80:8a:cf:36:cf:f0:79:c2:64:
33:32:04:ff:d6:f4:1a:06:e1:18:b1:fb:36:9d:12:1a:08:3c:
da:2f:44:02
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgISAYVycQ2G0pKYr5CzFcRVTmQlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhYTY5MTc4NzZmZDc4OTI2YzE5MjdiOWZkYzc5NjU4ZDc0
NmM4NGMwHhcNMjMwMTAyMTIyNDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZjA0MTc2MTE1NmY2NTY1NWM5NzY2NmZlZDM3NmQ2ZmQxYTU0MTcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs5SFPiHprKp3iysZ0lDU6wSFI/np
QLJtNkog2XjShX8yQQEPhzucsPRYHSCPnG61lc56i1HYUTncQelTX22jf2LoI80Y
qmR9mfbpbEH88TLYnEbANFumC+ay5JIU6cQ5qDbsZNheuVM3wmkFWqTvkE1rwJRk
BzEd57qiNpgZlMjZYC2/8ZCK+KwgWxkcbmG9Jz1kj1kh44cGAbJrw95E1N6KXiQ4
xsNFeVsNxZKa2nSqSS3oCKmNZHYszATcjEOPa7ohqoFAndiOxZny85qcwa0cGNyH
oc9Sk+yzB/bxF3LGbOQEngH4aH9i7i2dwt9C1UiCrnurLVr9JPQHrK8imwIDAQAB
o4ICGzCCAhcwHQYDVR0OBBYEFM8EF2EVb2VlXJdmb+03bW/RpUFyMB8GA1UdIwQY
MBaAFEqmkXh2/XiSbBknuf3HlljXRshMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU3FhUmVIYjllSkpzR1NlNV9jZVdXTmRHeUV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9lMTFlYTMtODcwNS00MGFjLWE2OGQt
OWNlMjdjMTJiMmY0LzEvendRWFlSVnZaV1ZjbDJadjdUZHRiOUdsUVhJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy9lMTFlYTMtODcwNS00MGFjLWE2OGQtOWNlMjdjMTJiMmY0
LzEvU3FhUmVIYjllSkpzR1NlNV9jZVdXTmRHeUV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQCW73UAwQC
uTaYAwQCuX2QAwQCuf6oMA0GCSqGSIb3DQEBCwUAA4IBAQCeNi/fz2/UYGTGJ2yd
uKXvv5fW8UnuwROS5Vn9oVXbCLgqk1TTmcxh9yZ9Qzoj7DoyOhtqmLvditbUJbRM
QyxMljEB0knzptpJZiStKvzYOlXrAtSZRLuY0F5vYVeIyNhvadLZOrz4EveiuUea
yhvrnDEw+B1qmwy9GCqfdRruUnlc0uuzoMGgdAw3YZ/n+f7kjXgGRQ2AoHi8ClMs
w3PvA3lbS5S2R9es1gE++UtFVnRI57FJUwsDX8JQHy6pEM2noK0uwqmm6zv1B/q/
ZjH7xOdk1EAlxdxHMi30RE6uje+Ais82z/B5wmQzMgT/1vQaBuEYsfs2nRIaCDza
L0QC
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:23 2024 by rpki-client on console-fra.rpki-client.org