Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/95ed1a-e880-4603-89f1-4df965c91d66/1/CoKyxQnjLGxorxxUzJ_AKKbn1DE.roa
File: CoKyxQnjLGxorxxUzJ_AKKbn1DE.roa (raw, json)
Hash identifier: sU09re4lWAx4o+G+T1pzbqHGCXRueNtbcNxGuf7+n70=
Subject key identifier: 0A:82:B2:C5:09:E3:2C:6C:68:AF:1C:54:CC:9F:C0:28:A6:E7:D4:31
Certificate issuer: /CN=69ceafe923e195db642a62020688dbe5b1d0687f
Certificate serial: 01857139E12814506FA8233ECE3065864F7F
Authority key identifier: 69:CE:AF:E9:23:E1:95:DB:64:2A:62:02:06:88:DB:E5:B1:D0:68:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ac6v6SPhldtkKmICBojb5bHQaH8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/95ed1a-e880-4603-89f1-4df965c91d66/1/CoKyxQnjLGxorxxUzJ_AKKbn1DE.roa
Signing time: Mon 02 Jan 2023 06:44:56 +0000
ROA not before: Mon 02 Jan 2023 06:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59943
IP address blocks: 195.225.164.0/22 maxlen: 24
194.247.160.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:e1:28:14:50:6f:a8:23:3e:ce:30:65:86:4f:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69ceafe923e195db642a62020688dbe5b1d0687f
Validity
Not Before: Jan 2 06:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0a82b2c509e32c6c68af1c54cc9fc028a6e7d431
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:e0:a4:ce:b8:2b:d8:2c:77:49:dc:f3:94:57:
7d:61:f3:b8:d4:7c:b3:64:af:3a:24:92:34:02:fc:
9f:29:fd:a2:85:62:cd:90:e1:d7:dc:b1:f4:f1:bf:
9a:5a:4e:f1:9f:a9:98:a0:26:2e:28:b3:d5:e6:5f:
fa:78:21:b2:a4:83:43:70:83:16:2d:7b:fc:6a:e8:
ea:83:6d:92:4f:0e:00:60:27:e8:da:e2:b2:2d:a7:
7c:cf:90:79:93:b5:dc:23:15:fb:1e:94:8a:e7:cb:
02:e4:30:9d:54:35:98:d5:76:29:f1:75:1e:0f:6f:
de:05:ab:39:4b:29:9e:0b:cd:8f:e0:1c:dc:8d:ef:
cf:c7:b4:68:e6:6a:10:6c:0f:ba:f6:bd:f2:87:3c:
02:90:ef:06:ff:5f:b3:b2:c7:56:08:de:fa:b5:81:
eb:71:9b:b2:c3:41:e7:34:e2:b6:b1:c4:01:53:58:
15:1a:88:7c:17:32:22:d8:1d:a0:e5:73:df:0d:f3:
ca:95:c9:bb:5a:f9:43:fd:ec:f9:b4:64:c4:bf:a5:
70:a6:09:4e:69:7c:98:48:f5:6d:cf:cb:c7:93:64:
d2:af:f7:d3:3e:34:17:1a:6b:f2:83:85:c0:4d:3c:
92:07:8c:9f:1a:76:92:d3:e5:84:9e:64:8c:31:71:
6e:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:82:B2:C5:09:E3:2C:6C:68:AF:1C:54:CC:9F:C0:28:A6:E7:D4:31
X509v3 Authority Key Identifier:
keyid:69:CE:AF:E9:23:E1:95:DB:64:2A:62:02:06:88:DB:E5:B1:D0:68:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac6v6SPhldtkKmICBojb5bHQaH8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/95ed1a-e880-4603-89f1-4df965c91d66/1/CoKyxQnjLGxorxxUzJ_AKKbn1DE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/95ed1a-e880-4603-89f1-4df965c91d66/1/ac6v6SPhldtkKmICBojb5bHQaH8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.247.160.0/23
195.225.164.0/22
Signature Algorithm: sha256WithRSAEncryption
99:e7:1f:5d:6b:d0:b0:4e:4c:24:76:da:33:ca:64:06:cb:48:
a1:d7:28:7f:40:77:12:82:b3:07:da:e2:2e:eb:bb:b6:0e:61:
fa:52:24:45:04:44:2a:91:a4:f6:e5:4c:06:e3:79:02:21:0e:
a1:d4:95:14:bf:d5:3b:71:95:c9:58:e1:fd:9c:0e:da:c0:fc:
ca:50:3e:b7:69:15:ac:6b:d1:6f:3e:40:e3:f3:22:1e:8a:11:
45:4a:fc:ae:e6:93:65:2b:52:c2:1a:c2:7c:37:37:9d:97:d4:
09:35:2d:95:89:d6:fa:20:2f:78:1b:46:59:af:74:d3:e8:92:
5a:0c:11:6d:86:12:4f:62:aa:01:c0:e4:7a:5a:ce:e6:5f:e4:
56:85:6e:aa:7f:09:e7:c4:d9:33:c5:23:94:3d:89:0b:ef:6d:
10:ed:7f:9b:3e:cc:28:af:73:d6:29:df:1d:5b:3d:3c:92:57:
ef:fd:d2:3a:37:ba:2d:da:ef:5c:76:80:f2:7a:b7:74:67:d0:
01:ba:a7:36:9b:c3:46:e6:96:51:59:09:ae:a4:d9:ad:dc:2d:
ad:1f:cf:2f:25:5b:0d:12:4b:7d:9b:f9:e8:10:7e:ab:7f:b8:
3d:6a:ca:f2:c5:c2:8a:eb:64:34:27:d6:e1:6f:dd:ab:a7:6b:
15:bc:5d:f1
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVxOeEoFFBvqCM+zjBlhk9/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5Y2VhZmU5MjNlMTk1ZGI2NDJhNjIwMjA2ODhkYmU1YjFk
MDY4N2YwHhcNMjMwMTAyMDY0NDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYTgyYjJjNTA5ZTMyYzZjNjhhZjFjNTRjYzlmYzAyOGE2ZTdkNDMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi+Ckzrgr2Cx3SdzzlFd9YfO41Hyz
ZK86JJI0AvyfKf2ihWLNkOHX3LH08b+aWk7xn6mYoCYuKLPV5l/6eCGypINDcIMW
LXv8aujqg22STw4AYCfo2uKyLad8z5B5k7XcIxX7HpSK58sC5DCdVDWY1XYp8XUe
D2/eBas5SymeC82P4Bzcje/Px7Ro5moQbA+69r3yhzwCkO8G/1+zssdWCN76tYHr
cZuyw0HnNOK2scQBU1gVGoh8FzIi2B2g5XPfDfPKlcm7WvlD/ez5tGTEv6VwpglO
aXyYSPVtz8vHk2TSr/fTPjQXGmvyg4XATTySB4yfGnaS0+WEnmSMMXFuDQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFAqCssUJ4yxsaK8cVMyfwCim59QxMB8GA1UdIwQY
MBaAFGnOr+kj4ZXbZCpiAgaI2+Wx0Gh/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWM2djZTUGhsZHRrS21JQ0JvamI1YkhRYUg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi85NWVkMWEtZTg4MC00NjAzLTg5ZjEt
NGRmOTY1YzkxZDY2LzEvQ29LeXhRbmpMR3hvcnh4VXpKX0FLS2JuMURFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMi85NWVkMWEtZTg4MC00NjAzLTg5ZjEtNGRmOTY1YzkxZDY2
LzEvYWM2djZTUGhsZHRrS21JQ0JvamI1YkhRYUg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBwvegAwQC
w+GkMA0GCSqGSIb3DQEBCwUAA4IBAQCZ5x9da9CwTkwkdtozymQGy0ih1yh/QHcS
grMH2uIu67u2DmH6UiRFBEQqkaT25UwG43kCIQ6h1JUUv9U7cZXJWOH9nA7awPzK
UD63aRWsa9FvPkDj8yIeihFFSvyu5pNlK1LCGsJ8Nzedl9QJNS2Vidb6IC94G0ZZ
r3TT6JJaDBFthhJPYqoBwOR6Ws7mX+RWhW6qfwnnxNkzxSOUPYkL720Q7X+bPswo
r3PWKd8dWz08klfv/dI6N7ot2u9cdoDyerd0Z9ABuqc2m8NG5pZRWQmupNmt3C2t
H88vJVsNEkt9m/noEH6rf7g9asryxcKK62Q0J9bhb92rp2sVvF3x
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:05 2024 by rpki-client on console-fra.rpki-client.org