Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/f4e03e-27b2-494b-8c0f-6f7009bee915/1/k7sb63J_SyxcN53Nngs2m688LlQ.roa
File: k7sb63J_SyxcN53Nngs2m688LlQ.roa (raw, json)
Hash identifier: 4xX4pM1cDwddxRK3jD89WOmOsneOSk6va2zkz7TAXG4=
Subject key identifier: 93:BB:1B:EB:72:7F:4B:2C:5C:37:9D:CD:9E:0B:36:9B:AF:3C:2E:54
Certificate issuer: /CN=089c8c7f334053c8a90a3408009ef3d3b7a82e3d
Certificate serial: 018B19C4E45B7F88B7E29A7D6214665D27DB
Authority key identifier: 08:9C:8C:7F:33:40:53:C8:A9:0A:34:08:00:9E:F3:D3:B7:A8:2E:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CJyMfzNAU8ipCjQIAJ7z07eoLj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/f4e03e-27b2-494b-8c0f-6f7009bee915/1/k7sb63J_SyxcN53Nngs2m688LlQ.roa
Signing time: Tue 10 Oct 2023 13:26:55 +0000
ROA not before: Tue 10 Oct 2023 13:26:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203380
IP address blocks: 195.137.221.0/24 maxlen: 24
2a13:2440::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 25 Oct 2023 17:10:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:19:c4:e4:5b:7f:88:b7:e2:9a:7d:62:14:66:5d:27:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=089c8c7f334053c8a90a3408009ef3d3b7a82e3d
Validity
Not Before: Oct 10 13:26:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=93bb1beb727f4b2c5c379dcd9e0b369baf3c2e54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:e0:37:0c:5e:ac:a7:64:47:70:16:d5:bc:62:
97:8c:36:69:28:e7:c6:a0:71:ac:68:39:18:94:99:
bc:0a:b0:26:6c:60:44:78:f5:ef:21:c0:3f:a0:64:
4f:96:7a:28:61:5f:d2:f7:f8:26:2e:a9:69:e5:29:
c9:ec:dc:f6:9d:81:1a:5a:16:e9:e6:8b:5b:5f:b8:
3f:bc:f4:14:e2:52:e6:dd:b0:4b:88:5a:ad:0c:24:
16:05:ae:0c:d9:73:cd:37:8d:96:3c:78:f9:ba:ff:
aa:8e:29:46:68:1d:9e:4f:90:96:bf:15:c0:1b:27:
d1:01:25:6d:d2:fb:f7:ae:59:23:75:45:1b:16:c2:
0d:ae:de:03:2a:30:3b:b5:48:08:2d:e4:77:15:4e:
70:50:3f:bc:69:a6:f0:61:31:49:9b:ab:c5:d8:60:
f4:de:e1:5e:7f:a7:2e:48:ca:5c:63:ec:7e:e8:8a:
24:39:77:a3:0e:04:7b:e8:4f:b2:93:4e:a5:ce:ad:
58:9c:6b:0b:0d:78:3d:67:03:0b:09:ad:6c:26:4c:
d3:f8:fe:eb:19:10:96:fc:b7:6b:8a:84:6b:14:fb:
35:7f:d1:00:8e:be:1a:c2:65:06:ef:4c:d3:4f:87:
62:37:ca:2d:ee:68:59:c6:3c:a6:53:c4:78:36:83:
29:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:BB:1B:EB:72:7F:4B:2C:5C:37:9D:CD:9E:0B:36:9B:AF:3C:2E:54
X509v3 Authority Key Identifier:
keyid:08:9C:8C:7F:33:40:53:C8:A9:0A:34:08:00:9E:F3:D3:B7:A8:2E:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CJyMfzNAU8ipCjQIAJ7z07eoLj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f4e03e-27b2-494b-8c0f-6f7009bee915/1/k7sb63J_SyxcN53Nngs2m688LlQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f4e03e-27b2-494b-8c0f-6f7009bee915/1/CJyMfzNAU8ipCjQIAJ7z07eoLj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.137.221.0/24
IPv6:
2a13:2440::/29
Signature Algorithm: sha256WithRSAEncryption
56:2f:d4:8a:c9:c7:39:f6:1c:fb:d1:99:10:8d:51:06:9b:08:
97:29:b2:53:78:f8:2b:be:17:58:1d:72:70:2e:bb:17:39:13:
90:8d:00:25:de:32:d7:5d:fc:0f:9e:3e:8e:78:07:f8:3e:71:
d2:18:67:05:18:41:35:23:38:e4:3f:6f:17:81:17:ad:a0:2f:
06:00:61:df:ac:2f:54:f2:98:82:55:62:c3:ae:ef:c3:c5:70:
b8:9a:c5:a5:e0:4c:bb:61:f1:fb:fe:0f:73:14:3f:dd:78:72:
b6:10:07:70:89:12:66:0a:1c:9c:3d:69:39:d7:ab:b3:cd:99:
f2:6b:46:18:63:40:14:75:a8:d0:97:04:c6:25:9a:ce:be:cd:
82:6e:08:89:a8:6a:eb:f3:9d:0c:5e:a3:ad:33:00:6e:72:a1:
1a:43:8f:78:39:1d:20:a4:f6:24:ba:d9:32:42:70:9b:dd:4c:
e0:bf:45:55:56:f9:24:c4:68:4f:70:f4:bf:ed:da:f5:d9:71:
7b:ae:27:36:a2:ca:7f:b0:47:ed:9a:d1:b1:62:62:81:15:cb:
4f:ce:df:ea:38:32:3a:ad:d5:4e:2b:e4:3b:82:d9:4a:c8:e8:
92:1e:42:25:17:f2:e9:a0:fd:8d:80:6a:8a:4e:c6:12:24:99:
2c:83:e5:3a
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYsZxORbf4i34pp9YhRmXSfbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4OWM4YzdmMzM0MDUzYzhhOTBhMzQwODAwOWVmM2QzYjdh
ODJlM2QwHhcNMjMxMDEwMTMyNjU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5M2JiMWJlYjcyN2Y0YjJjNWMzNzlkY2Q5ZTBiMzY5YmFmM2MyZTU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjeA3DF6sp2RHcBbVvGKXjDZpKOfG
oHGsaDkYlJm8CrAmbGBEePXvIcA/oGRPlnooYV/S9/gmLqlp5SnJ7Nz2nYEaWhbp
5otbX7g/vPQU4lLm3bBLiFqtDCQWBa4M2XPNN42WPHj5uv+qjilGaB2eT5CWvxXA
GyfRASVt0vv3rlkjdUUbFsINrt4DKjA7tUgILeR3FU5wUD+8aabwYTFJm6vF2GD0
3uFef6cuSMpcY+x+6IokOXejDgR76E+yk06lzq1YnGsLDXg9ZwMLCa1sJkzT+P7r
GRCW/LdrioRrFPs1f9EAjr4awmUG70zTT4diN8ot7mhZxjymU8R4NoMp3QIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFJO7G+tyf0ssXDedzZ4LNpuvPC5UMB8GA1UdIwQY
MBaAFAicjH8zQFPIqQo0CACe89O3qC49MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0p5TWZ6TkFVOGlwQ2pRSUFKN3owN2VvTGowLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS9mNGUwM2UtMjdiMi00OTRiLThjMGYt
NmY3MDA5YmVlOTE1LzEvazdzYjYzSl9TeXhjTjUzTm5nczJtNjg4TGxRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NS9mNGUwM2UtMjdiMi00OTRiLThjMGYtNmY3MDA5YmVlOTE1
LzEvQ0p5TWZ6TkFVOGlwQ2pRSUFKN3owN2VvTGowLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAw4ndMA0E
AgACMAcDBQMqEyRAMA0GCSqGSIb3DQEBCwUAA4IBAQBWL9SKycc59hz70ZkQjVEG
mwiXKbJTePgrvhdYHXJwLrsXOROQjQAl3jLXXfwPnj6OeAf4PnHSGGcFGEE1Izjk
P28XgRetoC8GAGHfrC9U8piCVWLDru/DxXC4msWl4Ey7YfH7/g9zFD/deHK2EAdw
iRJmChycPWk516uzzZnya0YYY0AUdajQlwTGJZrOvs2CbgiJqGrr850MXqOtMwBu
cqEaQ494OR0gpPYkutkyQnCb3Uzgv0VVVvkkxGhPcPS/7dr12XF7ric2osp/sEft
mtGxYmKBFctPzt/qODI6rdVOK+Q7gtlKyOiSHkIlF/LpoP2NgGqKTsYSJJksg+U6
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:52 2024 by rpki-client on console-fra.rpki-client.org