Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/q4Lrnzx-9XPv8QkVBcRDmgRxEdQ.roa
File: q4Lrnzx-9XPv8QkVBcRDmgRxEdQ.roa (raw, json)
Hash identifier: 7ISAugQKZunO+5DglqfRGWKBQILU9whR66+ht16QR8Y=
Subject key identifier: AB:82:EB:9F:3C:7E:F5:73:EF:F1:09:15:05:C4:43:9A:04:71:11:D4
Certificate issuer: /CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Certificate serial: 01856C53F62A95DD291CC30A5666B61FFCF7
Authority key identifier: AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/q4Lrnzx-9XPv8QkVBcRDmgRxEdQ.roa
Signing time: Sun 01 Jan 2023 07:55:19 +0000
ROA not before: Sun 01 Jan 2023 07:55:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210613
IP address blocks: 195.114.132.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:f6:2a:95:dd:29:1c:c3:0a:56:66:b6:1f:fc:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Validity
Not Before: Jan 1 07:55:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab82eb9f3c7ef573eff1091505c4439a047111d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:fb:49:54:44:9a:ca:59:50:19:0d:11:ac:fc:
29:d1:ae:b2:4b:44:6e:41:aa:47:28:ea:c9:74:16:
86:f7:86:1f:51:7a:57:13:60:e4:bc:d6:42:32:b6:
86:33:2a:07:ce:72:55:f1:5d:a0:5c:23:67:c0:21:
4d:79:04:96:79:f6:12:de:9b:c5:c5:63:3a:b7:5e:
24:cb:8b:f6:d3:63:0e:e5:73:4f:13:98:4f:8e:4f:
48:b3:07:b9:e5:14:53:40:ba:f0:4d:0b:76:e0:79:
b8:f2:67:17:a6:7b:42:22:ea:9f:78:4a:8b:da:0a:
d7:ff:15:4d:6e:d4:7c:cb:dc:b0:f8:bc:6b:62:6e:
a8:d8:2c:44:d6:bf:bf:66:b3:3d:be:26:46:15:7e:
5a:07:f6:4f:40:10:7c:73:ff:e3:0b:8c:5a:4e:5d:
ed:14:a8:b4:a1:6d:4e:b2:3e:1d:2f:5a:a0:50:f2:
5d:f4:43:3d:95:e3:bb:a7:ab:69:2f:3f:6b:c7:2f:
da:9a:a9:be:12:19:7f:e8:26:14:d8:35:7e:85:e9:
c4:3d:cf:2f:94:94:11:09:d1:a7:32:e1:7a:1f:ad:
7c:2e:6d:7e:24:4a:fb:04:b9:2b:e0:26:fc:c1:f7:
07:cc:98:6d:14:54:c3:69:b8:77:e1:23:79:a7:e6:
7b:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:82:EB:9F:3C:7E:F5:73:EF:F1:09:15:05:C4:43:9A:04:71:11:D4
X509v3 Authority Key Identifier:
keyid:AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/q4Lrnzx-9XPv8QkVBcRDmgRxEdQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/q8jb5SCDrTNcnx_eYBbsi0kpMUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.114.132.0/24
Signature Algorithm: sha256WithRSAEncryption
14:f6:20:f5:81:e7:bc:c9:95:99:af:17:b8:a5:bd:54:1d:b2:
6c:75:94:9c:71:80:b0:0f:b5:e1:2f:65:70:6d:4a:f8:5a:3a:
ab:77:07:80:b0:9c:ee:33:9e:fc:b1:f1:02:98:c0:67:f6:d0:
46:ed:6a:cb:8b:86:18:21:e6:85:5f:01:7a:02:b3:5e:ad:08:
bd:cc:06:ef:cd:98:cc:41:81:45:9a:d7:33:86:2f:d3:0c:ad:
44:cf:54:5a:d9:aa:89:77:e5:8c:1b:fd:aa:31:6c:7f:24:61:
9e:cd:46:5a:2e:ce:32:1d:42:36:50:90:29:24:74:70:75:25:
64:83:51:4b:49:38:76:66:a2:f6:eb:d5:96:b9:83:88:49:2e:
e3:61:06:4b:92:e0:b4:3f:7a:19:f6:42:4d:02:bf:12:e9:c3:
2f:a7:3f:bd:2a:22:0e:69:d0:f6:9a:1d:71:b1:a8:35:04:57:
46:00:f4:9a:29:e5:87:fa:fe:e3:9d:ec:ef:03:1e:fd:16:5c:
35:b2:99:ba:3e:e3:29:8b:69:fa:22:2d:16:5b:80:f7:e7:f0:
75:83:b2:a5:49:cb:09:c9:39:be:4e:3e:d8:82:9a:f9:a8:7a:
2b:cf:39:a3:1c:3c:ec:c4:11:a1:24:17:25:55:a3:d7:85:7a:
a5:53:66:d6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsU/Yqld0pHMMKVma2H/z3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiYzhkYmU1MjA4M2FkMzM1YzlmMWZkZTYwMTZlYzhiNDky
OTMxNDAwHhcNMjMwMTAxMDc1NTE5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYjgyZWI5ZjNjN2VmNTczZWZmMTA5MTUwNWM0NDM5YTA0NzExMWQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgftJVESayllQGQ0RrPwp0a6yS0Ru
QapHKOrJdBaG94YfUXpXE2DkvNZCMraGMyoHznJV8V2gXCNnwCFNeQSWefYS3pvF
xWM6t14ky4v202MO5XNPE5hPjk9Iswe55RRTQLrwTQt24Hm48mcXpntCIuqfeEqL
2grX/xVNbtR8y9yw+LxrYm6o2CxE1r+/ZrM9viZGFX5aB/ZPQBB8c//jC4xaTl3t
FKi0oW1Osj4dL1qgUPJd9EM9leO7p6tpLz9rxy/amqm+Ehl/6CYU2DV+henEPc8v
lJQRCdGnMuF6H618Lm1+JEr7BLkr4Cb8wfcHzJhtFFTDabh34SN5p+Z7uwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKuC6588fvVz7/EJFQXEQ5oEcRHUMB8GA1UdIwQY
MBaAFKvI2+Ugg60zXJ8f3mAW7ItJKTFAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcThqYjVTQ0RyVE5jbnhfZVlCYnNpMGtwTVVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZS9jZTZjY2ItMjVjZi00OTE3LWIzY2Qt
MzA1NmFmOWEzMzVlLzEvcTRMcm56eC05WFB2OFFrVkJjUkRtZ1J4RWRRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZS9jZTZjY2ItMjVjZi00OTE3LWIzY2QtMzA1NmFmOWEzMzVl
LzEvcThqYjVTQ0RyVE5jbnhfZVlCYnNpMGtwTVVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw3KEMA0G
CSqGSIb3DQEBCwUAA4IBAQAU9iD1gee8yZWZrxe4pb1UHbJsdZSccYCwD7XhL2Vw
bUr4WjqrdweAsJzuM578sfECmMBn9tBG7WrLi4YYIeaFXwF6ArNerQi9zAbvzZjM
QYFFmtczhi/TDK1Ez1Ra2aqJd+WMG/2qMWx/JGGezUZaLs4yHUI2UJApJHRwdSVk
g1FLSTh2ZqL269WWuYOISS7jYQZLkuC0P3oZ9kJNAr8S6cMvpz+9KiIOadD2mh1x
sag1BFdGAPSaKeWH+v7jnezvAx79Flw1spm6PuMpi2n6Ii0WW4D35/B1g7KlScsJ
yTm+Tj7Ygpr5qHorzzmjHDzsxBGhJBclVaPXhXqlU2bW
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:32 2024 by rpki-client on console-fra.rpki-client.org