Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/ZknihRcTYD1fQeKkvuqyFIp_Ogw.roa
File: ZknihRcTYD1fQeKkvuqyFIp_Ogw.roa (raw, json)
Hash identifier: CXeEJYok+vSbxeUxbG+KXM1Edst2RjHaAKwEnjYfr3Y=
Subject key identifier: 66:49:E2:85:17:13:60:3D:5F:41:E2:A4:BE:EA:B2:14:8A:7F:3A:0C
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 0188BBCA3D5D074AD2CA07795A817495F799
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/ZknihRcTYD1fQeKkvuqyFIp_Ogw.roa
Signing time: Wed 14 Jun 2023 21:22:53 +0000
ROA not before: Wed 14 Jun 2023 21:22:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3257
IP address blocks: 213.145.72.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Jun 2023 14:13:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:bb:ca:3d:5d:07:4a:d2:ca:07:79:5a:81:74:95:f7:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Jun 14 21:22:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6649e2851713603d5f41e2a4beeab2148a7f3a0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:be:60:b3:dd:13:35:76:0d:85:4c:a6:30:96:
8b:a2:f0:8c:08:70:8b:ec:0d:81:12:5a:e9:d8:b2:
e2:2c:19:d7:1f:ea:27:04:da:90:2a:74:97:18:5b:
36:27:10:53:e0:98:44:4e:bb:29:9d:50:58:98:6d:
7b:39:94:0c:ec:21:f2:59:89:c5:a8:d0:8d:78:50:
35:f4:93:c5:50:1b:32:21:42:00:66:01:45:1d:d2:
ef:db:f5:25:a8:d9:24:18:2f:28:10:09:9e:1f:c9:
04:3f:ac:e3:70:7e:60:66:92:2d:b2:53:6e:1c:9b:
07:b3:2c:3a:7f:e9:7b:7a:94:4f:8f:af:f7:e2:18:
5f:2e:62:ef:d3:36:a4:85:be:ac:42:d2:17:84:5f:
23:cf:90:f2:3b:c6:7f:f1:6f:fc:11:f6:96:39:62:
ea:f2:34:5e:18:e8:b4:46:77:8c:af:33:58:1d:86:
30:e5:5b:2f:ed:ff:38:4d:a9:e1:c9:37:49:ef:35:
43:8c:8f:85:46:db:73:53:f3:b6:d6:e9:8d:fb:67:
cf:a5:fe:2e:74:bc:d4:f2:9c:bf:c1:79:07:42:0e:
f7:24:28:48:e8:d4:3c:a1:46:65:1f:4d:d4:4b:dc:
b0:37:27:b4:95:59:4a:46:55:3e:03:d9:82:5e:94:
d0:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:49:E2:85:17:13:60:3D:5F:41:E2:A4:BE:EA:B2:14:8A:7F:3A:0C
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/ZknihRcTYD1fQeKkvuqyFIp_Ogw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.145.72.0/21
Signature Algorithm: sha256WithRSAEncryption
68:39:50:64:8a:56:25:cb:93:80:15:5b:7d:1c:33:6c:c0:74:
56:e4:c4:0d:71:14:69:02:9b:43:c8:2f:97:6b:c2:60:34:91:
84:4c:bd:33:ef:6e:6c:3e:ab:b0:76:80:e2:40:5d:ef:04:1f:
70:94:8d:20:b9:08:56:e9:b2:e1:44:b1:38:58:d6:7e:5c:5d:
a7:2f:1e:38:fe:5d:3d:84:92:b4:88:50:de:5a:c7:97:41:da:
69:e2:29:e3:e2:df:c6:98:6b:70:d1:9b:53:ad:09:df:a4:89:
85:04:1c:87:92:87:9b:05:af:21:9b:52:9b:a5:c7:3f:c0:15:
17:61:a2:74:37:f6:ea:6f:17:d1:2a:ef:61:62:6d:e7:52:23:
ab:83:2d:a2:34:56:2a:22:cf:ad:c3:75:a3:9e:75:be:14:19:
58:a3:88:c5:45:bc:7e:49:53:48:e5:49:06:7c:4c:d4:47:23:
24:b2:0b:67:1a:42:76:0f:d4:8f:a9:c2:7f:80:95:f0:d7:53:
9b:8b:78:22:13:ff:b7:17:cf:58:09:45:77:92:88:12:b3:e0:
af:24:e1:83:7b:8d:8f:79:67:42:cd:90:a7:f6:fc:5b:e5:a1:
b3:ca:db:e1:6d:f1:7d:da:62:b6:70:f8:e9:e3:43:8f:81:2a:
ba:4a:8e:28
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYi7yj1dB0rSygd5WoF0lfeZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmYTE2YWIwNjAyMDA2Nzc0MGE0YzFmYjQ3YTkxMjYyMmYx
ZDA3MjIwHhcNMjMwNjE0MjEyMjUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NjQ5ZTI4NTE3MTM2MDNkNWY0MWUyYTRiZWVhYjIxNDhhN2YzYTBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwr5gs90TNXYNhUymMJaLovCMCHCL
7A2BElrp2LLiLBnXH+onBNqQKnSXGFs2JxBT4JhETrspnVBYmG17OZQM7CHyWYnF
qNCNeFA19JPFUBsyIUIAZgFFHdLv2/UlqNkkGC8oEAmeH8kEP6zjcH5gZpItslNu
HJsHsyw6f+l7epRPj6/34hhfLmLv0zakhb6sQtIXhF8jz5DyO8Z/8W/8EfaWOWLq
8jReGOi0RneMrzNYHYYw5Vsv7f84TanhyTdJ7zVDjI+FRttzU/O21umN+2fPpf4u
dLzU8py/wXkHQg73JChI6NQ8oUZlH03US9ywNye0lVlKRlU+A9mCXpTQ3QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGZJ4oUXE2A9X0HipL7qshSKfzoMMB8GA1UdIwQY
MBaAFC+harBgIAZ3QKTB+0epEmIvHQciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUt
ZDI0MmI2ZjNhOGExLzEvWmtuaWhSY1RZRDFmUWVLa3Z1cXlGSXBfT2d3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUtZDI0MmI2ZjNhOGEx
LzEvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD1ZFIMA0G
CSqGSIb3DQEBCwUAA4IBAQBoOVBkilYly5OAFVt9HDNswHRW5MQNcRRpAptDyC+X
a8JgNJGETL0z725sPquwdoDiQF3vBB9wlI0guQhW6bLhRLE4WNZ+XF2nLx44/l09
hJK0iFDeWseXQdpp4inj4t/GmGtw0ZtTrQnfpImFBByHkoebBa8hm1Kbpcc/wBUX
YaJ0N/bqbxfRKu9hYm3nUiOrgy2iNFYqIs+tw3WjnnW+FBlYo4jFRbx+SVNI5UkG
fEzURyMksgtnGkJ2D9SPqcJ/gJXw11Obi3giE/+3F89YCUV3kogSs+CvJOGDe42P
eWdCzZCn9vxb5aGzytvhbfF92mK2cPjp40OPgSq6So4o
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:12 2024 by rpki-client on console-ams.rpki-client.org