Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/ZS_euBS88tqMTSv65XnrEpD9pY4.roa
File: ZS_euBS88tqMTSv65XnrEpD9pY4.roa (raw, json)
Hash identifier: 3/jLC6+7/V0Sk1DkX3+pQV7yN2vdOP6NqAkp5JYiERk=
Subject key identifier: 65:2F:DE:B8:14:BC:F2:DA:8C:4D:2B:FA:E5:79:EB:12:90:FD:A5:8E
Certificate issuer: /CN=4986c73994d02d91fc97d916e9809a6d981e6b17
Certificate serial: 0191B1702610C7F7B4C44A3644E32E9FC64D
Authority key identifier: 49:86:C7:39:94:D0:2D:91:FC:97:D9:16:E9:80:9A:6D:98:1E:6B:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/ZS_euBS88tqMTSv65XnrEpD9pY4.roa
Signing time: Mon 02 Sep 2024 06:33:22 +0000
ROA not before: Mon 02 Sep 2024 06:33:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 193.135.137.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 23 Oct 2024 10:45:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b1:70:26:10:c7:f7:b4:c4:4a:36:44:e3:2e:9f:c6:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4986c73994d02d91fc97d916e9809a6d981e6b17
Validity
Not Before: Sep 2 06:33:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=652fdeb814bcf2da8c4d2bfae579eb1290fda58e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:b0:0f:e4:b0:6f:cb:47:cd:2f:1f:58:36:dc:
a4:79:f0:91:53:58:06:47:13:ac:4b:8a:1c:79:55:
4f:4c:70:e3:72:62:90:d5:90:e5:a6:d8:da:64:05:
df:68:de:b3:e8:6a:f9:41:9c:76:7d:89:a9:b3:88:
e7:4f:b9:d4:a5:e4:4b:2b:43:fd:85:d5:3a:0d:52:
0d:ff:ba:82:a2:d6:60:d6:ec:c8:a6:74:7f:26:ec:
34:db:7a:af:bd:a0:bb:33:3c:aa:dd:f6:57:61:0e:
98:fa:90:d0:84:f9:87:28:73:0d:da:8f:0f:f7:5a:
ea:a4:d6:de:3c:1d:42:3b:94:09:ad:f4:15:a5:3d:
0d:99:85:93:3f:42:61:6b:2b:d7:65:88:ed:e4:c2:
5e:08:0e:93:95:f4:d7:6e:20:30:5a:33:12:19:17:
b5:f6:10:b8:5c:4b:65:68:4d:84:46:06:62:44:8b:
6f:40:88:c2:c0:df:03:b4:22:61:6e:2a:f8:43:fe:
3e:c4:f1:cd:9d:bb:7b:8c:e2:ae:f5:31:e4:fb:d3:
64:ae:7c:33:94:04:cc:ae:c0:d8:bd:87:59:15:48:
ca:da:0a:db:6e:82:12:93:d8:5d:4b:e7:db:71:43:
d1:ff:88:7e:aa:a4:d6:6a:e6:a8:b9:4b:c3:7e:36:
a7:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:2F:DE:B8:14:BC:F2:DA:8C:4D:2B:FA:E5:79:EB:12:90:FD:A5:8E
X509v3 Authority Key Identifier:
keyid:49:86:C7:39:94:D0:2D:91:FC:97:D9:16:E9:80:9A:6D:98:1E:6B:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/ZS_euBS88tqMTSv65XnrEpD9pY4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.135.137.0/24
Signature Algorithm: sha256WithRSAEncryption
22:b6:8c:05:ca:7f:bb:51:01:cf:35:b3:a7:72:5a:41:8e:1b:
b0:82:f1:12:54:5f:22:54:51:ac:77:18:85:98:59:d0:18:c3:
d8:ef:80:f6:e0:8d:d3:79:a1:5a:dc:5c:ae:86:18:f3:a8:df:
4d:76:1e:6e:18:01:49:ad:de:6a:41:5e:41:2c:0a:34:5f:74:
aa:db:d0:bd:84:7d:bd:07:62:15:a3:1a:70:54:74:c0:a2:46:
8c:b9:ac:72:30:48:cf:0d:cb:27:8d:9b:05:9d:8d:b2:16:70:
aa:a8:32:ae:0c:e0:a9:b1:ba:74:d4:61:50:91:69:17:82:49:
91:55:79:61:16:36:0f:23:8d:93:66:05:62:f9:60:74:0b:9c:
4b:f4:5f:64:51:0e:6d:c8:66:9e:83:f7:2f:1d:bc:08:61:f9:
32:49:b2:3a:bd:50:19:bb:9a:56:bc:36:83:69:42:a4:08:a8:
9d:77:af:be:71:28:37:4e:0a:5d:da:d0:db:07:7f:6c:06:12:
de:9b:cd:a7:58:91:57:2c:01:a7:3c:08:9c:56:fc:15:30:d7:
be:46:77:5d:b2:7c:2f:c0:46:15:1b:bb:7c:0e:91:ed:bd:b3:
af:32:88:8c:ef:42:c9:97:0f:b2:f1:f3:cf:31:45:8f:3f:ed:
a3:20:5b:1d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZGxcCYQx/e0xEo2ROMun8ZNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5ODZjNzM5OTRkMDJkOTFmYzk3ZDkxNmU5ODA5YTZkOTgx
ZTZiMTcwHhcNMjQwOTAyMDYzMzIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NTJmZGViODE0YmNmMmRhOGM0ZDJiZmFlNTc5ZWIxMjkwZmRhNThlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnbAP5LBvy0fNLx9YNtykefCRU1gG
RxOsS4oceVVPTHDjcmKQ1ZDlptjaZAXfaN6z6Gr5QZx2fYmps4jnT7nUpeRLK0P9
hdU6DVIN/7qCotZg1uzIpnR/Juw023qvvaC7Mzyq3fZXYQ6Y+pDQhPmHKHMN2o8P
91rqpNbePB1CO5QJrfQVpT0NmYWTP0JhayvXZYjt5MJeCA6TlfTXbiAwWjMSGRe1
9hC4XEtlaE2ERgZiRItvQIjCwN8DtCJhbir4Q/4+xPHNnbt7jOKu9THk+9Nkrnwz
lATMrsDYvYdZFUjK2grbboISk9hdS+fbcUPR/4h+qqTWauaouUvDfjanfwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGUv3rgUvPLajE0r+uV56xKQ/aWOMB8GA1UdIwQY
MBaAFEmGxzmU0C2R/JfZFumAmm2YHmsXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU1liSE9aVFFMWkg4bDlrVzZZQ2FiWmdlYXhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS80NTdlMTMtNDFkMy00MGVmLWI1NzIt
OWU4OTVkMGVmOGQyLzEvWlNfZXVCUzg4dHFNVFN2NjVYbnJFcEQ5cFk0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS80NTdlMTMtNDFkMy00MGVmLWI1NzItOWU4OTVkMGVmOGQy
LzEvU1liSE9aVFFMWkg4bDlrVzZZQ2FiWmdlYXhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwYeJMA0G
CSqGSIb3DQEBCwUAA4IBAQAitowFyn+7UQHPNbOnclpBjhuwgvESVF8iVFGsdxiF
mFnQGMPY74D24I3TeaFa3FyuhhjzqN9Ndh5uGAFJrd5qQV5BLAo0X3Sq29C9hH29
B2IVoxpwVHTAokaMuaxyMEjPDcsnjZsFnY2yFnCqqDKuDOCpsbp01GFQkWkXgkmR
VXlhFjYPI42TZgVi+WB0C5xL9F9kUQ5tyGaeg/cvHbwIYfkySbI6vVAZu5pWvDaD
aUKkCKidd6++cSg3Tgpd2tDbB39sBhLem82nWJFXLAGnPAicVvwVMNe+Rnddsnwv
wEYVG7t8DpHtvbOvMoiM70LJlw+y8fPPMUWPP+2jIFsd
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:04:40 2025 by rpki-client