Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/wKeK0Ko4KkZrlHxOVIZoFIwFx9Y.roa
File: wKeK0Ko4KkZrlHxOVIZoFIwFx9Y.roa (raw, json)
Hash identifier: M9npNF4DBs9yBPYCTlmOtS9yt7vLb8MNq5SDd7ALlKM=
Subject key identifier: C0:A7:8A:D0:AA:38:2A:46:6B:94:7C:4E:54:86:68:14:8C:05:C7:D6
Certificate issuer: /CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Certificate serial: 01856C53EF2BCE96A827EEBCDA387DCD9000
Authority key identifier: AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/wKeK0Ko4KkZrlHxOVIZoFIwFx9Y.roa
Signing time: Sun 01 Jan 2023 07:55:18 +0000
ROA not before: Sun 01 Jan 2023 07:55:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 195.114.140.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:ef:2b:ce:96:a8:27:ee:bc:da:38:7d:cd:90:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Validity
Not Before: Jan 1 07:55:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c0a78ad0aa382a466b947c4e548668148c05c7d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:a2:96:8a:5b:e5:6d:e0:a5:b4:bd:03:0e:c9:
c8:20:44:1e:7c:77:47:b6:95:ba:75:49:b8:9e:19:
b9:13:8b:23:6a:1a:73:89:b3:78:5d:f0:a9:29:08:
14:84:a0:08:b8:cf:60:0f:7d:1c:ba:29:38:de:1f:
40:9a:5b:64:f9:b7:4f:8a:47:a8:20:92:f2:41:b7:
2f:a2:c3:8c:17:c5:2b:cb:e9:dd:9b:d2:3c:e8:6a:
27:41:d7:ce:fc:a9:fb:6f:48:42:68:d6:06:fe:bd:
bd:10:98:2a:cd:ba:b7:0d:eb:c3:30:b4:6c:af:b4:
b0:5f:7d:2a:b4:d6:9c:92:ef:47:74:04:f4:a7:cd:
fd:99:58:f9:62:a1:ff:5b:0e:b8:fa:ff:a1:8a:57:
57:0b:32:a8:2c:d0:52:79:79:00:de:a6:da:a9:c6:
a8:8a:b3:5c:86:a4:e8:83:fe:b2:84:1b:2f:af:43:
77:29:6b:5c:bf:d4:76:1b:78:7e:fe:c0:3c:16:e0:
13:ed:45:fa:e2:35:42:e3:4a:78:c2:b3:1d:ee:68:
86:41:35:50:1f:86:2d:aa:ac:58:f3:06:d4:bd:72:
ff:88:6f:4c:06:99:33:83:c3:a3:4b:46:ed:22:1f:
08:6d:f6:9c:a7:d0:d3:44:73:d3:c6:62:58:76:ca:
47:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:A7:8A:D0:AA:38:2A:46:6B:94:7C:4E:54:86:68:14:8C:05:C7:D6
X509v3 Authority Key Identifier:
keyid:AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/wKeK0Ko4KkZrlHxOVIZoFIwFx9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/q8jb5SCDrTNcnx_eYBbsi0kpMUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.114.140.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:13:d2:98:dc:18:59:63:c6:d1:3e:28:66:cb:11:f9:e6:58:
e0:0d:16:f1:80:bb:ce:e2:f9:72:01:af:af:05:3d:1e:70:15:
90:77:ae:17:4b:c1:32:05:ba:a0:22:9a:ae:d1:7e:5a:ce:49:
d7:f5:c8:a4:ce:57:2b:65:ef:6c:32:df:f3:48:20:ce:8e:4a:
a4:e2:2a:fc:cf:52:08:ed:cd:40:43:f1:68:b0:b8:12:25:cc:
78:f1:0e:4b:94:a0:75:23:12:d5:13:9b:b5:62:0a:68:8e:e9:
88:4c:8b:68:33:03:f9:8a:65:90:2a:2e:a4:24:f4:7a:c3:26:
21:d5:53:6b:21:5f:4d:4a:03:be:b4:82:0e:a1:43:b7:03:81:
6f:6b:cb:5c:cf:58:e3:15:27:85:c7:c6:f8:98:b4:66:90:94:
00:cc:ba:24:ae:34:2e:87:60:f2:2a:21:52:de:58:f5:57:94:
1b:29:20:54:76:f8:a8:5a:34:33:0c:55:78:90:66:5b:21:3d:
3a:2d:4a:00:54:2e:0b:a9:b2:ad:3b:29:f4:33:39:bd:5b:48:
80:48:b4:34:76:21:d4:67:8e:b9:f0:41:f5:6b:d6:a6:7f:de:
0e:22:f1:82:80:17:d0:c6:a8:36:f9:25:58:91:ab:8a:bd:e6:
af:d9:99:a8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsU+8rzpaoJ+682jh9zZAAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiYzhkYmU1MjA4M2FkMzM1YzlmMWZkZTYwMTZlYzhiNDky
OTMxNDAwHhcNMjMwMTAxMDc1NTE4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMGE3OGFkMGFhMzgyYTQ2NmI5NDdjNGU1NDg2NjgxNDhjMDVjN2Q2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi6KWilvlbeCltL0DDsnIIEQefHdH
tpW6dUm4nhm5E4sjahpzibN4XfCpKQgUhKAIuM9gD30cuik43h9Amltk+bdPikeo
IJLyQbcvosOMF8Ury+ndm9I86GonQdfO/Kn7b0hCaNYG/r29EJgqzbq3DevDMLRs
r7SwX30qtNacku9HdAT0p839mVj5YqH/Ww64+v+hildXCzKoLNBSeXkA3qbaqcao
irNchqTog/6yhBsvr0N3KWtcv9R2G3h+/sA8FuAT7UX64jVC40p4wrMd7miGQTVQ
H4YtqqxY8wbUvXL/iG9MBpkzg8OjS0btIh8Ibfacp9DTRHPTxmJYdspH/wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMCnitCqOCpGa5R8TlSGaBSMBcfWMB8GA1UdIwQY
MBaAFKvI2+Ugg60zXJ8f3mAW7ItJKTFAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcThqYjVTQ0RyVE5jbnhfZVlCYnNpMGtwTVVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZS9jZTZjY2ItMjVjZi00OTE3LWIzY2Qt
MzA1NmFmOWEzMzVlLzEvd0tlSzBLbzRLa1pybEh4T1ZJWm9GSXdGeDlZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZS9jZTZjY2ItMjVjZi00OTE3LWIzY2QtMzA1NmFmOWEzMzVl
LzEvcThqYjVTQ0RyVE5jbnhfZVlCYnNpMGtwTVVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw3KMMA0G
CSqGSIb3DQEBCwUAA4IBAQCmE9KY3BhZY8bRPihmyxH55ljgDRbxgLvO4vlyAa+v
BT0ecBWQd64XS8EyBbqgIpqu0X5azknX9cikzlcrZe9sMt/zSCDOjkqk4ir8z1II
7c1AQ/FosLgSJcx48Q5LlKB1IxLVE5u1YgpojumITItoMwP5imWQKi6kJPR6wyYh
1VNrIV9NSgO+tIIOoUO3A4Fva8tcz1jjFSeFx8b4mLRmkJQAzLokrjQuh2DyKiFS
3lj1V5QbKSBUdvioWjQzDFV4kGZbIT06LUoAVC4LqbKtOyn0Mzm9W0iASLQ0diHU
Z4658EH1a9amf94OIvGCgBfQxqg2+SVYkauKveav2Zmo
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:04 2024 by rpki-client on console-ams.rpki-client.org