Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/cf063f-9493-46f1-acd1-31c7fb4715f6/1/9ugOP0mef4mpI3srDFSh4cPKKdI.roa
File: 9ugOP0mef4mpI3srDFSh4cPKKdI.roa (raw, json)
Hash identifier: NrWAJxcro2NUnILMw+cid8IWDP0JZZds2GCBmDQwqoE=
Subject key identifier: F6:E8:0E:3F:49:9E:7F:89:A9:23:7B:2B:0C:54:A1:E1:C3:CA:29:D2
Certificate issuer: /CN=dc0bde1467895c6f3a47197eac58ca13ae4bb78d
Certificate serial: 018F9561684D01FF25FFDFF5C362E024F22A
Authority key identifier: DC:0B:DE:14:67:89:5C:6F:3A:47:19:7E:AC:58:CA:13:AE:4B:B7:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AveFGeJXG86Rxl-rFjKE65Lt40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/cf063f-9493-46f1-acd1-31c7fb4715f6/1/9ugOP0mef4mpI3srDFSh4cPKKdI.roa
Signing time: Mon 20 May 2024 09:42:19 +0000
ROA not before: Mon 20 May 2024 09:42:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49824
IP address blocks: 95.141.245.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 May 2024 11:10:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:95:61:68:4d:01:ff:25:ff:df:f5:c3:62:e0:24:f2:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc0bde1467895c6f3a47197eac58ca13ae4bb78d
Validity
Not Before: May 20 09:42:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f6e80e3f499e7f89a9237b2b0c54a1e1c3ca29d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:16:fa:f5:b8:9f:f0:9c:ef:9d:b0:52:90:17:
60:4e:74:6a:27:7b:86:85:d4:28:0b:e3:6b:65:13:
77:98:9e:05:2e:91:2e:22:73:37:83:19:0d:26:3c:
cf:7f:6f:6a:fa:7b:c5:e5:49:39:78:f4:4f:1b:81:
a9:a8:73:60:2c:39:f4:d3:55:51:59:ee:27:ee:09:
d9:87:e3:c6:99:5b:5f:45:25:15:c7:16:7c:e6:0f:
3b:26:e0:c4:fd:2d:ac:0b:66:fd:88:52:e5:15:c8:
c3:c1:32:47:a2:9b:07:a3:c0:6e:a0:5a:f5:c1:1e:
d4:04:aa:05:6f:38:2d:b7:51:58:2b:31:62:af:72:
58:03:00:3e:7e:df:19:b5:3a:41:c2:07:26:d2:b1:
18:7b:84:01:db:3d:96:f7:53:14:f5:64:d0:6a:75:
ea:62:4d:a0:70:c8:6a:6b:0f:3c:49:11:d9:3b:b3:
99:8b:2e:5e:1c:7c:e1:a5:98:83:14:17:58:3c:2d:
a8:8c:7d:ad:08:5b:ec:57:2b:b8:30:c6:da:6c:81:
1c:cb:00:b7:5f:47:98:2b:23:2f:a3:77:dd:f1:e7:
34:f5:c5:e1:d6:fd:67:21:4b:31:7e:23:54:ba:fe:
18:a5:56:0d:7c:f3:c8:e4:c1:d5:76:58:b2:d2:ca:
a2:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:E8:0E:3F:49:9E:7F:89:A9:23:7B:2B:0C:54:A1:E1:C3:CA:29:D2
X509v3 Authority Key Identifier:
keyid:DC:0B:DE:14:67:89:5C:6F:3A:47:19:7E:AC:58:CA:13:AE:4B:B7:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AveFGeJXG86Rxl-rFjKE65Lt40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/cf063f-9493-46f1-acd1-31c7fb4715f6/1/9ugOP0mef4mpI3srDFSh4cPKKdI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/cf063f-9493-46f1-acd1-31c7fb4715f6/1/3AveFGeJXG86Rxl-rFjKE65Lt40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.141.245.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:f5:93:2a:fd:42:e2:b6:ad:0d:f2:57:9b:43:3a:28:cb:73:
e3:45:81:eb:0b:d5:87:f8:6d:34:fa:68:97:03:91:80:4a:eb:
cb:6a:8c:54:1e:48:ab:3c:96:d8:d4:19:f1:19:15:88:b1:68:
98:65:2b:d4:dd:56:0a:e0:86:f6:08:bd:59:d8:3d:35:b6:80:
5c:1c:90:25:5f:d5:09:e1:a3:be:13:ea:aa:83:cc:b1:a9:dc:
e6:f5:65:1b:b5:68:6b:1d:1e:87:5d:cf:c1:a6:b8:c4:db:d1:
d8:d9:71:32:39:2c:f8:55:b0:06:18:77:5e:6b:ad:0c:6e:02:
08:22:b4:6b:ea:d4:ba:eb:2d:72:20:e7:6f:64:33:4c:01:c7:
f4:bb:f2:ec:96:2d:ef:22:6f:f4:8d:ae:0f:86:ce:7a:fe:ba:
2f:f7:5e:c1:c3:65:86:5f:ed:00:35:74:91:4e:2e:db:03:8f:
1d:45:52:05:0f:79:9e:1a:07:d0:b2:68:2b:57:02:f0:cb:25:
74:08:8c:48:91:3a:96:49:e5:ab:14:07:6a:ee:9d:23:14:ca:
a1:77:48:a4:b7:17:fb:82:76:7c:e0:84:cc:a9:e5:3c:81:e0:
66:21:27:48:0e:92:c6:20:ab:a8:0a:39:9c:8a:d8:e4:5f:dc:
fc:a0:6b:a5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY+VYWhNAf8l/9/1w2LgJPIqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjMGJkZTE0Njc4OTVjNmYzYTQ3MTk3ZWFjNThjYTEzYWU0
YmI3OGQwHhcNMjQwNTIwMDk0MjE5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNmU4MGUzZjQ5OWU3Zjg5YTkyMzdiMmIwYzU0YTFlMWMzY2EyOWQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqRb69bif8JzvnbBSkBdgTnRqJ3uG
hdQoC+NrZRN3mJ4FLpEuInM3gxkNJjzPf29q+nvF5Uk5ePRPG4GpqHNgLDn001VR
We4n7gnZh+PGmVtfRSUVxxZ85g87JuDE/S2sC2b9iFLlFcjDwTJHopsHo8BuoFr1
wR7UBKoFbzgtt1FYKzFir3JYAwA+ft8ZtTpBwgcm0rEYe4QB2z2W91MU9WTQanXq
Yk2gcMhqaw88SRHZO7OZiy5eHHzhpZiDFBdYPC2ojH2tCFvsVyu4MMbabIEcywC3
X0eYKyMvo3fd8ec09cXh1v1nIUsxfiNUuv4YpVYNfPPI5MHVdliy0sqiNwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPboDj9Jnn+JqSN7KwxUoeHDyinSMB8GA1UdIwQY
MBaAFNwL3hRniVxvOkcZfqxYyhOuS7eNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0F2ZUZHZUpYRzg2UnhsLXJGaktFNjVMdDQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi9jZjA2M2YtOTQ5My00NmYxLWFjZDEt
MzFjN2ZiNDcxNWY2LzEvOXVnT1AwbWVmNG1wSTNzckRGU2g0Y1BLS2RJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi9jZjA2M2YtOTQ5My00NmYxLWFjZDEtMzFjN2ZiNDcxNWY2
LzEvM0F2ZUZHZUpYRzg2UnhsLXJGaktFNjVMdDQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAX431MA0G
CSqGSIb3DQEBCwUAA4IBAQCz9ZMq/ULitq0N8lebQzooy3PjRYHrC9WH+G00+miX
A5GASuvLaoxUHkirPJbY1BnxGRWIsWiYZSvU3VYK4Ib2CL1Z2D01toBcHJAlX9UJ
4aO+E+qqg8yxqdzm9WUbtWhrHR6HXc/BprjE29HY2XEyOSz4VbAGGHdea60MbgII
IrRr6tS66y1yIOdvZDNMAcf0u/Lsli3vIm/0ja4Phs56/rov917Bw2WGX+0ANXSR
Ti7bA48dRVIFD3meGgfQsmgrVwLwyyV0CIxIkTqWSeWrFAdq7p0jFMqhd0iktxf7
gnZ84ITMqeU8geBmISdIDpLGIKuoCjmcitjkX9z8oGul
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:10 2024 by rpki-client on console-fra.rpki-client.org