Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/8N5dX2z76BNnQdCmCZxiKCjM3fI.roa
File: 8N5dX2z76BNnQdCmCZxiKCjM3fI.roa (raw, json)
Hash identifier: /YIL2mhFwlFw/wMQPeW0MKnOpomZ5FRIayKPie/TojY=
Subject key identifier: F0:DE:5D:5F:6C:FB:E8:13:67:41:D0:A6:09:9C:62:28:28:CC:DD:F2
Certificate issuer: /CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f
Certificate serial: 0189BC71242069EA197DA00569B8B8682070
Authority key identifier: 29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/8N5dX2z76BNnQdCmCZxiKCjM3fI.roa
Signing time: Thu 03 Aug 2023 17:27:58 +0000
ROA not before: Thu 03 Aug 2023 17:27:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3257
IP address blocks: 185.95.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 29 Sep 2023 19:31:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:bc:71:24:20:69:ea:19:7d:a0:05:69:b8:b8:68:20:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f
Validity
Not Before: Aug 3 17:27:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f0de5d5f6cfbe8136741d0a6099c622828ccddf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:34:3b:77:8f:5b:3f:c1:9f:7d:7f:e6:bd:91:
a1:6f:e5:ed:d1:6b:f8:e2:9b:f5:ff:c8:9a:ae:10:
56:54:48:90:9a:73:b6:42:24:c7:8b:94:0a:62:3c:
fb:f1:ef:83:f8:68:29:95:b9:dd:79:62:79:67:4c:
a2:f7:40:59:6c:38:5b:24:08:20:6b:db:da:85:58:
1e:77:be:24:fc:d1:1b:07:14:f9:f7:87:46:22:a1:
45:62:54:33:d6:df:9d:f7:52:18:a3:ea:e4:2f:58:
ce:22:31:6d:53:53:7c:c3:1f:28:5b:9a:03:2e:d0:
f5:5f:fe:d9:8b:e8:fa:74:54:c9:b2:70:f2:aa:68:
16:7b:9c:6e:07:77:39:c6:10:38:cd:f6:75:47:98:
a5:b4:6d:57:d4:93:e5:dd:9c:b8:9d:e6:cd:d4:16:
e6:90:6d:01:b2:dc:61:0f:82:10:38:6f:32:53:e6:
ca:18:91:b3:48:96:ae:fa:6d:66:12:84:d4:2a:38:
03:2c:c7:35:19:00:3e:6f:0e:ec:93:36:3b:1b:4d:
c9:e5:cc:a0:aa:55:25:0e:7c:2b:cf:dc:e8:2a:7b:
a2:c3:7b:ab:6b:df:29:dc:bd:e5:7b:5a:e8:fa:4a:
a4:b9:11:ba:a3:e0:9b:4f:72:2e:ab:f9:0a:8d:2a:
cd:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:DE:5D:5F:6C:FB:E8:13:67:41:D0:A6:09:9C:62:28:28:CC:DD:F2
X509v3 Authority Key Identifier:
keyid:29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/8N5dX2z76BNnQdCmCZxiKCjM3fI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.95.157.0/24
Signature Algorithm: sha256WithRSAEncryption
93:6e:17:3c:df:cc:11:a1:5c:f9:22:94:df:d8:b6:e0:79:33:
03:72:4a:15:b7:15:a5:8f:5f:ec:d0:42:5a:54:a5:cb:54:6f:
0b:9b:00:16:d7:1c:17:27:04:70:b3:5b:a0:1a:a2:1e:c4:44:
da:5a:7d:c6:29:63:3f:7b:35:26:41:2f:3b:05:37:7e:22:c4:
66:cd:20:89:dc:4f:89:0e:b4:f0:76:6b:46:8c:89:55:b1:57:
96:89:a4:db:7b:67:58:fe:55:43:36:2c:e5:f6:a0:80:e6:40:
f7:4f:9e:50:ec:32:c8:72:fa:a3:ac:96:86:f3:96:e7:e7:86:
c8:c8:9f:b5:72:e9:c8:41:bc:ec:97:bb:e9:8a:b5:1f:54:6f:
02:04:72:7c:f8:64:3a:35:b9:9d:42:fc:0f:1c:46:fe:39:7e:
6f:8e:bf:3d:e7:c7:00:7d:7c:df:fa:1f:7b:99:79:7a:93:9f:
aa:4a:f6:83:83:a3:db:90:52:4d:04:7e:a5:77:a8:c8:e3:11:
93:2d:8e:2e:52:66:50:99:60:d3:34:d1:eb:01:f9:c2:bb:a5:
71:e1:c2:51:95:d2:cf:28:5d:b1:33:52:a5:5b:ea:8b:99:dc:
03:a8:8d:59:b4:46:24:66:0e:5e:16:bc:ab:0e:40:67:f8:ee:
2c:1e:c2:13
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYm8cSQgaeoZfaAFabi4aCBwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5ZDJkYWZmMWM1YmI2MWEwYWM4YjNjYWVhZDRiOGExZmEy
ODRkMGYwHhcNMjMwODAzMTcyNzU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMGRlNWQ1ZjZjZmJlODEzNjc0MWQwYTYwOTljNjIyODI4Y2NkZGYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjDQ7d49bP8GffX/mvZGhb+Xt0Wv4
4pv1/8iarhBWVEiQmnO2QiTHi5QKYjz78e+D+GgplbndeWJ5Z0yi90BZbDhbJAgg
a9vahVged74k/NEbBxT594dGIqFFYlQz1t+d91IYo+rkL1jOIjFtU1N8wx8oW5oD
LtD1X/7Zi+j6dFTJsnDyqmgWe5xuB3c5xhA4zfZ1R5iltG1X1JPl3Zy4nebN1Bbm
kG0BstxhD4IQOG8yU+bKGJGzSJau+m1mEoTUKjgDLMc1GQA+bw7skzY7G03J5cyg
qlUlDnwrz9zoKnuiw3ura98p3L3le1ro+kqkuRG6o+CbT3Iuq/kKjSrNiQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPDeXV9s++gTZ0HQpgmcYigozN3yMB8GA1UdIwQY
MBaAFCnS2v8cW7YaCsizyurUuKH6KE0PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2RMYV94eGJ0aG9LeUxQSzZ0UzRvZm9vVFE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9lNWVhOTgtOTYwMS00YWRkLWE3Zjgt
NGY1N2Q5Y2Y1Y2FhLzEvOE41ZFgyejc2Qk5uUWRDbUNaeGlLQ2pNM2ZJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy9lNWVhOTgtOTYwMS00YWRkLWE3ZjgtNGY1N2Q5Y2Y1Y2Fh
LzEvS2RMYV94eGJ0aG9LeUxQSzZ0UzRvZm9vVFE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuV+dMA0G
CSqGSIb3DQEBCwUAA4IBAQCTbhc838wRoVz5IpTf2LbgeTMDckoVtxWlj1/s0EJa
VKXLVG8LmwAW1xwXJwRws1ugGqIexETaWn3GKWM/ezUmQS87BTd+IsRmzSCJ3E+J
DrTwdmtGjIlVsVeWiaTbe2dY/lVDNizl9qCA5kD3T55Q7DLIcvqjrJaG85bn54bI
yJ+1cunIQbzsl7vpirUfVG8CBHJ8+GQ6NbmdQvwPHEb+OX5vjr8958cAfXzf+h97
mXl6k5+qSvaDg6PbkFJNBH6ld6jI4xGTLY4uUmZQmWDTNNHrAfnCu6Vx4cJRldLP
KF2xM1KlW+qLmdwDqI1ZtEYkZg5eFryrDkBn+O4sHsIT
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:53 2024 by rpki-client on console-fra.rpki-client.org