Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/zrXw60d-yiqcEPg_upsYZcnuFfM.roa
File: zrXw60d-yiqcEPg_upsYZcnuFfM.roa (raw, json)
Hash identifier: JYNhI39QcnWhd1HtCYgScL8OPRFpASF0xG/8x4kP/AM=
Subject key identifier: CE:B5:F0:EB:47:7E:CA:2A:9C:10:F8:3F:BA:9B:18:65:C9:EE:15:F3
Certificate issuer: /CN=b307c87e7b6e294f2700790eef19e82939d85cd6
Certificate serial: 0186607B149E725BEF4A83D501ACD2516F3B
Authority key identifier: B3:07:C8:7E:7B:6E:29:4F:27:00:79:0E:EF:19:E8:29:39:D8:5C:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/swfIfntuKU8nAHkO7xnoKTnYXNY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/zrXw60d-yiqcEPg_upsYZcnuFfM.roa
Signing time: Fri 17 Feb 2023 17:45:24 +0000
ROA not before: Fri 17 Feb 2023 17:45:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200494
IP address blocks: 77.81.176.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 Mar 2023 14:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:60:7b:14:9e:72:5b:ef:4a:83:d5:01:ac:d2:51:6f:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b307c87e7b6e294f2700790eef19e82939d85cd6
Validity
Not Before: Feb 17 17:45:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ceb5f0eb477eca2a9c10f83fba9b1865c9ee15f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e8:70:f0:95:5d:5a:e1:20:83:5c:1c:6b:72:
ef:d6:ac:14:c5:a2:09:3f:bd:29:9b:28:bf:61:7e:
0e:cf:c8:28:07:77:6a:95:94:c3:0b:36:72:f2:b8:
7b:1a:a5:38:c9:c3:46:3d:20:b0:b0:ca:4f:b3:ae:
b8:f2:ba:52:a6:13:f1:b9:fc:72:4f:eb:24:c9:34:
00:b2:bf:00:de:ec:ab:62:0c:2b:70:0c:a2:08:c0:
25:17:02:77:39:81:b7:63:76:1f:b3:c5:f7:56:87:
bf:02:63:aa:f1:b1:93:b4:00:7a:e2:ad:e3:14:6f:
4d:35:d1:44:80:8b:37:e0:42:56:be:63:21:bd:2e:
bb:a3:eb:bf:59:75:45:48:3f:83:c9:2c:4e:45:00:
db:c5:5f:f6:9b:e3:1f:96:61:9f:27:e2:5c:b8:96:
3d:fd:49:0e:44:c0:e5:ba:81:3a:5a:73:34:92:45:
4f:c7:c1:e7:57:cb:b9:fc:b0:26:05:e8:19:59:49:
62:6d:82:77:21:da:25:54:14:9c:d7:af:3a:af:92:
66:76:24:ac:8b:07:9c:fc:fb:6e:28:c8:af:76:5b:
2d:d8:19:bf:9f:31:6a:b7:ec:0b:94:cf:f5:9f:8e:
b3:a8:d2:ed:bb:ed:b9:3a:c7:d0:44:79:98:67:7f:
2e:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:B5:F0:EB:47:7E:CA:2A:9C:10:F8:3F:BA:9B:18:65:C9:EE:15:F3
X509v3 Authority Key Identifier:
keyid:B3:07:C8:7E:7B:6E:29:4F:27:00:79:0E:EF:19:E8:29:39:D8:5C:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/swfIfntuKU8nAHkO7xnoKTnYXNY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/zrXw60d-yiqcEPg_upsYZcnuFfM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/swfIfntuKU8nAHkO7xnoKTnYXNY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.176.0/24
Signature Algorithm: sha256WithRSAEncryption
be:99:b9:79:8c:a4:30:7e:21:d4:97:d6:52:6e:02:23:30:a7:
86:56:45:7b:3b:f7:ca:1f:5d:25:b1:ba:07:f6:55:62:99:ba:
9b:e9:9e:d3:c2:20:f0:05:30:4e:e5:2a:12:22:e9:96:9f:d5:
f7:2a:dc:b9:91:df:8e:a1:da:0a:87:aa:db:89:1a:d7:09:5c:
ea:df:b2:57:ab:f1:75:75:68:ec:6c:b2:29:88:c8:30:8a:58:
7d:6e:c9:5f:ca:69:27:5a:8b:da:23:bc:cf:9e:4a:fa:eb:14:
09:2c:d2:35:d2:9d:12:fe:96:26:03:30:a2:ba:4e:9a:17:ef:
17:ce:4a:dd:e0:bf:61:66:c8:5c:0b:89:00:4c:d0:c3:e4:46:
48:e8:b7:e6:04:ab:22:0e:70:78:46:f6:07:67:e8:07:81:a5:
bc:d6:71:e6:ff:af:38:47:0e:d4:be:c5:e7:c1:95:50:6a:ac:
57:3a:aa:f3:71:b9:78:9c:8b:35:56:dd:75:b1:64:68:3b:a3:
fb:28:36:69:cb:3f:55:7e:a1:f6:bd:b2:8f:4b:24:35:32:64:
25:f4:17:76:19:0b:2b:58:7a:b3:b4:3c:61:7b:3c:12:03:51:
0e:06:17:ab:7e:96:b9:4a:07:39:f8:08:b2:c3:4e:57:eb:4d:
ca:40:b4:83
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYZgexSeclvvSoPVAazSUW87MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzMDdjODdlN2I2ZTI5NGYyNzAwNzkwZWVmMTllODI5Mzlk
ODVjZDYwHhcNMjMwMjE3MTc0NTI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZWI1ZjBlYjQ3N2VjYTJhOWMxMGY4M2ZiYTliMTg2NWM5ZWUxNWYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAouhw8JVdWuEgg1wca3Lv1qwUxaIJ
P70pmyi/YX4Oz8goB3dqlZTDCzZy8rh7GqU4ycNGPSCwsMpPs6648rpSphPxufxy
T+skyTQAsr8A3uyrYgwrcAyiCMAlFwJ3OYG3Y3Yfs8X3Voe/AmOq8bGTtAB64q3j
FG9NNdFEgIs34EJWvmMhvS67o+u/WXVFSD+DySxORQDbxV/2m+MflmGfJ+JcuJY9
/UkORMDluoE6WnM0kkVPx8HnV8u5/LAmBegZWUlibYJ3IdolVBSc1686r5JmdiSs
iwec/PtuKMivdlst2Bm/nzFqt+wLlM/1n46zqNLtu+25OsfQRHmYZ38uqQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFM618OtHfsoqnBD4P7qbGGXJ7hXzMB8GA1UdIwQY
MBaAFLMHyH57bilPJwB5Du8Z6Ck52FzWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3dmSWZudHVLVThuQUhrTzd4bm9LVG5ZWE5ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS9kYTY0MmEtYTZhYi00NzA1LTk1ODct
NjQ5NDVhNGY4ZTEyLzEvenJYdzYwZC15aXFjRVBnX3Vwc1laY251RmZNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS9kYTY0MmEtYTZhYi00NzA1LTk1ODctNjQ5NDVhNGY4ZTEy
LzEvc3dmSWZudHVLVThuQUhrTzd4bm9LVG5ZWE5ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATVGwMA0G
CSqGSIb3DQEBCwUAA4IBAQC+mbl5jKQwfiHUl9ZSbgIjMKeGVkV7O/fKH10lsboH
9lVimbqb6Z7TwiDwBTBO5SoSIumWn9X3Kty5kd+OodoKh6rbiRrXCVzq37JXq/F1
dWjsbLIpiMgwilh9bslfymknWovaI7zPnkr66xQJLNI10p0S/pYmAzCiuk6aF+8X
zkrd4L9hZshcC4kATNDD5EZI6LfmBKsiDnB4RvYHZ+gHgaW81nHm/684Rw7UvsXn
wZVQaqxXOqrzcbl4nIs1Vt11sWRoO6P7KDZpyz9VfqH2vbKPSyQ1MmQl9Bd2GQsr
WHqztDxhezwSA1EOBherfpa5Sgc5+Aiyw05X603KQLSD
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:08 2024 by rpki-client on console-fra.rpki-client.org