Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/ce113d-c923-43f4-9708-bb417ec649ab/1/Rxx207e1A_JBxfCJpFYglWPYeXU.roa
File: Rxx207e1A_JBxfCJpFYglWPYeXU.roa (raw, json)
Hash identifier: Otmjsal96JVHZwo7XqhYoVlwszmXdCgx3lZj2RDlogA=
Subject key identifier: 47:1C:76:D3:B7:B5:03:F2:41:C5:F0:89:A4:56:20:95:63:D8:79:75
Certificate issuer: /CN=711280b1338f12fc6f621c4c90560c7bc5908961
Certificate serial: 018CC726C2739B3D3C7F7D1F99FB159BDF23
Authority key identifier: 71:12:80:B1:33:8F:12:FC:6F:62:1C:4C:90:56:0C:7B:C5:90:89:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cRKAsTOPEvxvYhxMkFYMe8WQiWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/ce113d-c923-43f4-9708-bb417ec649ab/1/Rxx207e1A_JBxfCJpFYglWPYeXU.roa
Signing time: Mon 01 Jan 2024 22:30:55 +0000
ROA not before: Mon 01 Jan 2024 22:30:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56911
IP address blocks: 195.234.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Jun 2024 13:04:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:c2:73:9b:3d:3c:7f:7d:1f:99:fb:15:9b:df:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=711280b1338f12fc6f621c4c90560c7bc5908961
Validity
Not Before: Jan 1 22:30:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=471c76d3b7b503f241c5f089a456209563d87975
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:de:17:dc:e7:96:9a:13:26:8f:5a:80:77:09:
bf:7b:2a:b1:53:9a:0d:c5:df:a6:4e:69:08:55:16:
b5:67:f5:be:f1:49:4f:0a:2f:f2:c2:66:5a:f2:29:
3a:0e:af:67:86:3c:c4:10:a2:ea:10:b6:ee:c2:48:
a4:21:f5:8c:99:44:ed:94:fb:78:c0:55:a8:0b:cb:
46:bd:32:5f:11:2f:b8:56:8a:e9:8d:73:b6:f8:e6:
d0:27:8c:ce:ea:da:f0:6b:38:42:dd:42:37:03:87:
27:b2:f6:db:4d:14:5f:9f:9d:d7:33:0c:d1:58:da:
37:a0:e0:f2:6f:bb:15:05:ac:4f:29:e3:d1:c3:f6:
b6:46:26:8b:47:0d:0b:01:67:95:78:70:2a:44:59:
48:9e:32:40:c6:17:7a:05:6d:76:29:fc:8a:f7:7a:
1e:00:40:db:6b:f4:da:ce:53:35:cc:71:de:aa:79:
89:f0:2c:d4:ef:ca:70:42:06:46:5f:ef:3b:1a:d1:
c1:04:30:a0:33:96:f0:96:70:87:75:a4:cf:ee:dc:
dd:8d:38:60:1d:9b:d9:be:40:a1:63:5e:08:b3:6d:
1d:b9:5e:44:8f:da:5f:a0:02:ec:34:0b:b7:77:73:
eb:2f:b9:91:5d:72:c0:28:ea:6d:56:79:f8:cd:67:
de:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:1C:76:D3:B7:B5:03:F2:41:C5:F0:89:A4:56:20:95:63:D8:79:75
X509v3 Authority Key Identifier:
keyid:71:12:80:B1:33:8F:12:FC:6F:62:1C:4C:90:56:0C:7B:C5:90:89:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cRKAsTOPEvxvYhxMkFYMe8WQiWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/ce113d-c923-43f4-9708-bb417ec649ab/1/Rxx207e1A_JBxfCJpFYglWPYeXU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/ce113d-c923-43f4-9708-bb417ec649ab/1/cRKAsTOPEvxvYhxMkFYMe8WQiWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.234.94.0/24
Signature Algorithm: sha256WithRSAEncryption
84:30:2b:0f:66:b8:a2:68:19:33:80:1a:89:8f:01:23:6c:e3:
7b:e5:79:6e:05:c3:d3:ef:5f:43:00:22:6f:7d:6c:16:59:78:
52:65:d7:6d:c3:d5:e0:3a:de:1a:2b:bd:51:a7:61:d9:bb:22:
73:9a:62:0f:c4:25:1d:86:70:71:c3:55:ac:9d:ff:c0:50:0e:
18:3f:e4:d6:0c:ed:9f:f9:61:c3:dd:36:58:e2:46:9a:30:3b:
48:6b:56:14:6a:5c:29:ad:52:bf:56:2f:07:7f:61:82:54:ea:
c6:b9:e1:fe:a0:25:94:3b:1e:3d:de:f9:a9:72:be:2b:c5:cf:
ac:ef:03:35:28:02:9d:e9:7c:03:54:d9:03:4d:fd:4f:ba:05:
12:aa:23:b5:0c:12:e5:6a:70:0a:bb:64:d3:03:12:bc:1a:77:
46:20:22:18:3e:dd:6e:a2:91:30:04:fc:70:7d:fe:6a:d0:0a:
17:c7:f7:04:e3:84:cc:85:00:cb:a8:d5:d5:d1:36:3c:ce:60:
15:d9:69:37:c8:f0:a7:84:c3:d9:b9:fe:23:fb:3f:9c:de:30:
67:65:0a:8a:37:00:85:34:e0:38:03:f1:ea:17:b4:0a:10:84:
93:5d:df:59:a6:a6:f6:2c:83:c8:7e:0e:c2:a4:94:6d:0b:65:
6a:23:e5:73
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzHJsJzmz08f30fmfsVm98jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcxMTI4MGIxMzM4ZjEyZmM2ZjYyMWM0YzkwNTYwYzdiYzU5
MDg5NjEwHhcNMjQwMTAxMjIzMDU1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NzFjNzZkM2I3YjUwM2YyNDFjNWYwODlhNDU2MjA5NTYzZDg3OTc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtN4X3OeWmhMmj1qAdwm/eyqxU5oN
xd+mTmkIVRa1Z/W+8UlPCi/ywmZa8ik6Dq9nhjzEEKLqELbuwkikIfWMmUTtlPt4
wFWoC8tGvTJfES+4VorpjXO2+ObQJ4zO6trwazhC3UI3A4cnsvbbTRRfn53XMwzR
WNo3oODyb7sVBaxPKePRw/a2RiaLRw0LAWeVeHAqRFlInjJAxhd6BW12KfyK93oe
AEDba/TazlM1zHHeqnmJ8CzU78pwQgZGX+87GtHBBDCgM5bwlnCHdaTP7tzdjThg
HZvZvkChY14Is20duV5Ej9pfoALsNAu3d3PrL7mRXXLAKOptVnn4zWfebwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEccdtO3tQPyQcXwiaRWIJVj2Hl1MB8GA1UdIwQY
MBaAFHESgLEzjxL8b2IcTJBWDHvFkIlhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY1JLQXNUT1BFdnh2WWh4TWtGWU1lOFdRaVdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS9jZTExM2QtYzkyMy00M2Y0LTk3MDgt
YmI0MTdlYzY0OWFiLzEvUnh4MjA3ZTFBX0pCeGZDSnBGWWdsV1BZZVhVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NS9jZTExM2QtYzkyMy00M2Y0LTk3MDgtYmI0MTdlYzY0OWFi
LzEvY1JLQXNUT1BFdnh2WWh4TWtGWU1lOFdRaVdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw+peMA0G
CSqGSIb3DQEBCwUAA4IBAQCEMCsPZriiaBkzgBqJjwEjbON75XluBcPT719DACJv
fWwWWXhSZddtw9XgOt4aK71Rp2HZuyJzmmIPxCUdhnBxw1Wsnf/AUA4YP+TWDO2f
+WHD3TZY4kaaMDtIa1YUalwprVK/Vi8Hf2GCVOrGueH+oCWUOx493vmpcr4rxc+s
7wM1KAKd6XwDVNkDTf1PugUSqiO1DBLlanAKu2TTAxK8GndGICIYPt1uopEwBPxw
ff5q0AoXx/cE44TMhQDLqNXV0TY8zmAV2Wk3yPCnhMPZuf4j+z+c3jBnZQqKNwCF
NOA4A/HqF7QKEISTXd9Zpqb2LIPIfg7CpJRtC2VqI+Vz
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:32 2024 by rpki-client on console-fra.rpki-client.org