Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/IuA3JCL4PukM-JbZGXa0X0GV76w.roa
File: IuA3JCL4PukM-JbZGXa0X0GV76w.roa (raw, json)
Hash identifier: KoKqNj2F8tXkZP2bFcPTxQxBTmzMJuZzXgC2NKYP0Bs=
Subject key identifier: 22:E0:37:24:22:F8:3E:E9:0C:F8:96:D9:19:76:B4:5F:41:95:EF:AC
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0185719E799831A2386E9036FD7126B209B8
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/IuA3JCL4PukM-JbZGXa0X0GV76w.roa
Signing time: Mon 02 Jan 2023 08:34:49 +0000
ROA not before: Mon 02 Jan 2023 08:34:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15754
IP address blocks: 195.208.98.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:79:98:31:a2:38:6e:90:36:fd:71:26:b2:09:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jan 2 08:34:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=22e0372422f83ee90cf896d91976b45f4195efac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:bb:2b:2b:20:14:de:a3:11:cd:a4:fa:74:2b:
9c:93:63:07:06:d6:4e:87:9d:c8:26:7d:f8:9b:01:
da:4d:8c:bb:c0:a3:85:09:d3:4a:48:57:01:42:7e:
f7:d7:9f:ce:db:53:66:07:5b:3f:a3:9e:dd:64:23:
f2:2f:6e:fa:55:70:f5:90:a3:b3:1c:7b:31:e3:00:
b0:81:e4:73:ea:ec:12:35:82:68:17:ab:2f:51:09:
6f:38:20:20:f5:59:22:b2:50:fd:fe:0b:09:fd:d0:
7d:12:3d:c7:4a:17:92:c2:2e:28:01:0f:6a:a3:ac:
96:68:8e:b0:09:62:e5:9f:34:d7:35:b1:25:b1:a9:
1f:e2:45:5f:4c:8c:72:00:89:99:7e:e3:45:d4:e3:
b2:7f:de:aa:ef:c6:cd:52:23:51:05:cb:e7:d0:6c:
65:a2:cb:3c:33:fc:91:74:70:47:1a:45:cb:c8:8b:
a8:d6:ab:8e:a3:8a:e1:3e:04:f2:e2:ad:cd:69:dd:
41:41:e7:e2:52:e6:1b:48:17:93:27:a7:ae:11:b3:
2b:24:b0:d4:20:74:b2:5b:93:25:6f:32:33:77:ee:
02:25:7e:8e:b1:f2:37:16:54:63:f6:a9:7f:50:06:
d7:96:ba:74:1b:2a:29:57:83:4c:03:3a:d3:81:0f:
59:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:E0:37:24:22:F8:3E:E9:0C:F8:96:D9:19:76:B4:5F:41:95:EF:AC
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/IuA3JCL4PukM-JbZGXa0X0GV76w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.208.98.0/24
Signature Algorithm: sha256WithRSAEncryption
44:07:08:e8:45:3f:4c:52:25:4d:09:61:e0:bd:8e:a0:c3:09:
71:d7:40:14:d1:97:34:47:d1:cf:c6:c5:c0:df:07:81:7b:60:
ac:d2:e8:53:45:10:97:30:42:10:71:43:c0:e4:36:19:f2:35:
b7:03:3b:dc:68:a9:e4:67:5e:dd:75:ab:ef:93:86:43:c4:cd:
78:67:e3:6f:d6:d5:e4:cd:87:29:9b:49:ea:1c:2a:16:13:a8:
50:cb:a1:7c:98:bd:03:9c:61:8d:72:d5:2c:73:12:40:b3:04:
f7:7a:c4:c0:90:72:11:94:f4:ce:52:a1:ac:d2:3c:d9:3b:eb:
fd:4b:31:f9:d3:44:8c:0c:94:c8:d3:5f:6a:88:8b:b5:53:ee:
4d:d8:b5:16:70:a0:b3:4c:b7:b9:ae:53:cb:6b:a5:30:5a:6a:
65:a0:4f:9b:9c:a6:a9:6f:3d:f1:8f:90:4b:9f:45:b6:fc:b5:
a3:68:59:3a:59:3e:b0:a0:b7:5f:7f:82:cb:31:ee:5e:e7:8e:
8a:42:09:9e:5a:49:d6:76:65:30:01:b4:06:00:94:84:1e:0c:
69:ae:23:59:a3:fa:a0:9e:c6:cf:9f:ea:37:9b:9d:b1:a2:00:
66:c5:eb:58:d4:95:5a:9b:bf:df:74:51:01:21:5a:0c:d3:56:
f1:21:2d:fa
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxnnmYMaI4bpA2/XEmsgm4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI1M2EzYjVmNTE4MDgxNjhjMjEyYzA5NGEyYmFhZmYzOGUx
NjQ2NGEwHhcNMjMwMTAyMDgzNDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMmUwMzcyNDIyZjgzZWU5MGNmODk2ZDkxOTc2YjQ1ZjQxOTVlZmFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwbsrKyAU3qMRzaT6dCuck2MHBtZO
h53IJn34mwHaTYy7wKOFCdNKSFcBQn7315/O21NmB1s/o57dZCPyL276VXD1kKOz
HHsx4wCwgeRz6uwSNYJoF6svUQlvOCAg9VkislD9/gsJ/dB9Ej3HSheSwi4oAQ9q
o6yWaI6wCWLlnzTXNbElsakf4kVfTIxyAImZfuNF1OOyf96q78bNUiNRBcvn0Gxl
oss8M/yRdHBHGkXLyIuo1quOo4rhPgTy4q3Nad1BQefiUuYbSBeTJ6euEbMrJLDU
IHSyW5MlbzIzd+4CJX6OsfI3FlRj9ql/UAbXlrp0GyopV4NMAzrTgQ9ZWwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCLgNyQi+D7pDPiW2Rl2tF9Ble+sMB8GA1UdIwQY
MBaAFCU6O19RgIFowhLAlKK6r/OOFkZKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQt
OWU5YTFlMDM3MzhlLzEvSXVBM0pDTDRQdWtNLUpiWkdYYTBYMEdWNzZ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQtOWU5YTFlMDM3Mzhl
LzEvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw9BiMA0G
CSqGSIb3DQEBCwUAA4IBAQBEBwjoRT9MUiVNCWHgvY6gwwlx10AU0Zc0R9HPxsXA
3weBe2Cs0uhTRRCXMEIQcUPA5DYZ8jW3AzvcaKnkZ17ddavvk4ZDxM14Z+Nv1tXk
zYcpm0nqHCoWE6hQy6F8mL0DnGGNctUscxJAswT3esTAkHIRlPTOUqGs0jzZO+v9
SzH500SMDJTI019qiIu1U+5N2LUWcKCzTLe5rlPLa6UwWmploE+bnKapbz3xj5BL
n0W2/LWjaFk6WT6woLdff4LLMe5e546KQgmeWknWdmUwAbQGAJSEHgxpriNZo/qg
nsbPn+o3m52xogBmxetY1JVam7/fdFEBIVoM01bxIS36
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:58 2024 by rpki-client on console-ams.rpki-client.org