Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Zu43Xcv2Vmp29BFOwZYKkwC6hBU.roa
File: Zu43Xcv2Vmp29BFOwZYKkwC6hBU.roa (raw, json)
Hash identifier: d8SuUODRgT0bBcEmXvPMOzbOLGeetfN+yP7CyvpocEA=
Subject key identifier: 66:EE:37:5D:CB:F6:56:6A:76:F4:11:4E:C1:96:0A:93:00:BA:84:15
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 018571955F30754D534412289FE9972B9E38
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Zu43Xcv2Vmp29BFOwZYKkwC6hBU.roa
Signing time: Mon 02 Jan 2023 08:24:52 +0000
ROA not before: Mon 02 Jan 2023 08:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 137443
IP address blocks: 46.3.112.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:5f:30:75:4d:53:44:12:28:9f:e9:97:2b:9e:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Jan 2 08:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=66ee375dcbf6566a76f4114ec1960a9300ba8415
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:d0:d6:ee:fe:1d:02:be:af:d6:21:1c:06:fa:
9c:58:df:a9:2c:da:ab:2d:29:5d:0e:d7:52:44:07:
16:e3:33:7f:1e:ed:f3:5f:4c:c1:fc:df:c4:de:1e:
0a:d5:45:56:b3:38:cc:89:38:6f:5f:6e:4f:3e:76:
d9:c2:20:ba:f5:49:b5:9d:f0:8f:46:f4:44:26:78:
0c:1f:ca:81:91:ef:08:1b:88:d3:3e:17:76:a5:44:
0e:fb:05:a3:15:8f:16:88:84:25:b2:4a:bc:db:7a:
38:91:b9:c6:ad:0a:13:08:e6:11:6c:3d:07:6b:eb:
50:7a:b5:f7:8a:c7:1f:6d:a4:10:fc:45:4b:5b:cb:
67:f5:ab:1f:04:37:e7:0d:d7:f9:c9:ad:fe:6d:05:
71:bf:83:55:ad:9d:af:f1:99:92:9a:56:a5:11:fb:
7b:94:d1:fa:c3:6f:07:9c:4d:a9:0b:90:19:d3:fa:
9f:e6:77:e8:95:7c:bc:46:f2:8e:e3:7f:41:83:df:
37:f1:96:16:3c:73:b0:7c:18:7e:a2:4e:0b:2d:46:
9a:a3:22:69:70:33:0f:0d:2c:ac:cc:f6:b1:0a:c5:
ec:6f:44:e3:c4:7a:0d:01:a2:46:e3:1e:cb:4c:30:
99:30:42:51:bf:68:0b:4f:a4:0d:cb:62:3a:be:78:
ad:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:EE:37:5D:CB:F6:56:6A:76:F4:11:4E:C1:96:0A:93:00:BA:84:15
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/Zu43Xcv2Vmp29BFOwZYKkwC6hBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.112.0/23
Signature Algorithm: sha256WithRSAEncryption
09:75:94:73:c5:80:71:f5:d5:91:c2:44:47:ca:f6:05:77:5e:
ef:f8:c5:5f:3a:7f:3b:0f:7f:1f:92:0b:1b:90:7f:48:76:f6:
a4:4d:35:09:3f:d6:07:a5:c2:11:4d:a9:39:9f:23:69:e4:40:
0b:13:1b:1c:de:81:b0:1e:51:9a:c8:62:aa:ef:c9:c5:ab:4c:
28:0d:ef:84:0d:93:51:00:da:ef:ec:e9:8e:34:eb:44:4b:30:
bc:70:99:60:5d:a7:9c:d7:22:8a:e6:90:32:c4:f4:bc:8d:e0:
4a:84:09:75:d3:58:fb:ff:14:49:32:20:27:d1:5b:48:e8:f8:
88:f4:cb:6a:1d:7a:49:bc:73:b0:b1:d7:0a:cc:bb:cc:a8:ec:
40:7d:96:17:c1:fa:a3:19:b8:ff:d2:47:75:c8:5f:62:12:81:
0c:a1:73:8f:ed:d5:c2:7b:ec:1a:69:52:ed:7e:2f:dd:35:39:
24:e0:e0:e5:06:20:bf:2d:d7:fc:f0:5b:ea:d5:4e:ee:25:b7:
71:cb:ac:84:b0:08:5c:1c:bf:90:9b:0b:0f:6b:b1:0d:94:49:
81:3d:9f:e3:80:2e:2d:c5:07:83:cc:16:ae:26:20:1f:cd:cb:
8a:2b:d3:f0:28:1a:9c:97:fe:81:25:76:e5:f6:a6:3f:80:6f:
6b:68:44:39
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxlV8wdU1TRBIon+mXK544MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU1ODhmMTk3Zjk3ZTg5MDA3NTU1NDRlODEwY2RkZWY5ZDkw
ZmJjNDEwHhcNMjMwMTAyMDgyNDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NmVlMzc1ZGNiZjY1NjZhNzZmNDExNGVjMTk2MGE5MzAwYmE4NDE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgdDW7v4dAr6v1iEcBvqcWN+pLNqr
LSldDtdSRAcW4zN/Hu3zX0zB/N/E3h4K1UVWszjMiThvX25PPnbZwiC69Um1nfCP
RvREJngMH8qBke8IG4jTPhd2pUQO+wWjFY8WiIQlskq823o4kbnGrQoTCOYRbD0H
a+tQerX3iscfbaQQ/EVLW8tn9asfBDfnDdf5ya3+bQVxv4NVrZ2v8ZmSmlalEft7
lNH6w28HnE2pC5AZ0/qf5nfolXy8RvKO439Bg9838ZYWPHOwfBh+ok4LLUaaoyJp
cDMPDSyszPaxCsXsb0TjxHoNAaJG4x7LTDCZMEJRv2gLT6QNy2I6vnitOwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGbuN13L9lZqdvQRTsGWCpMAuoQVMB8GA1UdIwQY
MBaAFFWI8Zf5fokAdVVE6BDN3vnZD7xBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVllqeGxfbC1pUUIxVlVUb0VNM2UtZGtQdkVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi82MjI5ODEtOTY1MC00MjcxLTkyY2Et
N2NmZWY0Mjc2YTBmLzEvWnU0M1hjdjJWbXAyOUJGT3daWUtrd0M2aEJVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi82MjI5ODEtOTY1MC00MjcxLTkyY2EtN2NmZWY0Mjc2YTBm
LzEvVllqeGxfbC1pUUIxVlVUb0VNM2UtZGtQdkVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLgNwMA0G
CSqGSIb3DQEBCwUAA4IBAQAJdZRzxYBx9dWRwkRHyvYFd17v+MVfOn87D38fkgsb
kH9IdvakTTUJP9YHpcIRTak5nyNp5EALExsc3oGwHlGayGKq78nFq0woDe+EDZNR
ANrv7OmONOtESzC8cJlgXaec1yKK5pAyxPS8jeBKhAl101j7/xRJMiAn0VtI6PiI
9MtqHXpJvHOwsdcKzLvMqOxAfZYXwfqjGbj/0kd1yF9iEoEMoXOP7dXCe+waaVLt
fi/dNTkk4ODlBiC/Ldf88Fvq1U7uJbdxy6yEsAhcHL+QmwsPa7ENlEmBPZ/jgC4t
xQeDzBauJiAfzcuKK9PwKBqcl/6BJXbl9qY/gG9raEQ5
-----END CERTIFICATE-----
Generated at Tue Jan 2 11:36:04 2024 by rpki-client on console-ams.rpki-client.org