Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/pj7O3WcLCNGko1HAdHiZQFvWhzw.roa
File: pj7O3WcLCNGko1HAdHiZQFvWhzw.roa (raw, json)
Hash identifier: l4DrtysT8KlRishyHPbjKxZdYkdwYXujfVcMjvho51I=
Subject key identifier: A6:3E:CE:DD:67:0B:08:D1:A4:A3:51:C0:74:78:99:40:5B:D6:87:3C
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01856CE65D45BB5CB240CA1739DEBFAC1731
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/pj7O3WcLCNGko1HAdHiZQFvWhzw.roa
Signing time: Sun 01 Jan 2023 10:35:14 +0000
ROA not before: Sun 01 Jan 2023 10:35:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50431
IP address blocks: 95.43.213.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:5d:45:bb:5c:b2:40:ca:17:39:de:bf:ac:17:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 10:35:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a63ecedd670b08d1a4a351c0747899405bd6873c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:db:c8:b2:9f:9a:66:38:9f:c1:14:fd:a5:cf:
f0:51:73:d4:5d:f7:7f:66:3e:77:be:4f:d5:4b:55:
19:e4:06:34:51:73:1d:d4:ca:26:e4:75:d0:c5:26:
44:a0:16:82:27:75:d0:ec:45:99:34:84:7b:11:84:
a1:e9:6f:34:70:ab:89:86:f2:b1:46:57:5f:f4:4f:
92:7f:41:1a:5b:65:7a:82:d7:60:85:3a:ce:50:0d:
1e:0a:71:37:8f:cb:aa:8b:c3:2c:05:f2:2d:a1:cc:
25:2c:34:e6:b2:55:d5:44:61:67:d0:15:7b:f5:fe:
71:12:cf:b9:8d:05:2b:d7:b7:af:c7:15:4e:80:1d:
44:8b:d5:bc:2c:e2:9a:3b:1e:fc:42:d0:53:7c:a6:
e3:15:dc:ea:5c:4b:2a:e3:c5:d8:34:f1:e1:f4:59:
2d:1a:1a:99:d8:e8:54:6c:22:15:b6:f3:5d:13:61:
e1:f6:63:a7:08:c4:dd:27:b6:18:f3:ca:12:ef:bf:
76:4f:1e:cc:21:35:db:07:fa:7f:e0:1d:8a:c2:c2:
51:bc:c3:26:37:b2:e1:e8:79:e7:11:9e:20:89:3a:
b6:ce:31:39:f0:6f:2c:76:d0:61:c9:61:94:67:64:
da:04:c4:86:b8:fa:cf:8d:aa:00:8c:24:40:c5:dd:
70:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:3E:CE:DD:67:0B:08:D1:A4:A3:51:C0:74:78:99:40:5B:D6:87:3C
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/pj7O3WcLCNGko1HAdHiZQFvWhzw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.43.213.0/24
Signature Algorithm: sha256WithRSAEncryption
61:e4:4c:d0:74:ff:3d:7a:5a:93:03:c3:59:31:71:ba:e0:a4:
91:94:83:00:6b:e4:78:98:c6:b3:bc:38:f0:a7:65:d0:26:a8:
f0:e8:85:97:bc:a0:64:98:3d:5f:54:37:bd:d1:72:ff:6a:d8:
da:0b:a0:c7:7c:ab:5e:5f:90:98:24:1c:ff:5b:80:bc:97:7d:
ac:08:e5:d7:25:59:6a:01:15:99:50:b7:31:1d:ff:c4:e8:c8:
17:14:0f:1d:6c:b1:1d:e4:e3:08:4d:9a:18:d5:46:44:32:f8:
7d:21:20:a2:09:4f:de:f7:ed:46:3f:ee:cc:12:b3:e3:04:a0:
5f:78:4a:31:d4:1a:88:20:e1:d0:12:0c:52:6e:6a:5b:38:a1:
9a:dd:8d:f8:4d:88:4d:82:4e:79:32:23:22:02:b5:8e:14:a8:
db:9d:93:3e:f1:45:c9:50:ee:83:2f:ab:2c:4a:4e:a1:24:b4:
a5:fc:f0:f0:fb:95:b9:1d:76:cd:cf:20:f5:12:dd:4b:75:b8:
63:f6:50:81:eb:d2:a0:47:42:f3:b6:22:39:2c:45:0e:04:76:
12:d5:c7:9f:35:9b:2a:92:2b:b6:74:40:29:fb:3f:04:c6:d0:
13:ab:3f:66:80:29:92:89:65:0e:23:61:93:0c:70:ff:ad:e6:
76:c6:8e:3a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVs5l1Fu1yyQMoXOd6/rBcxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0YjJmNGZhNTE2M2FmOTYxNjhlODhmYmY5Y2I0ZWQxZWQ4
ZmI0YzQwHhcNMjMwMTAxMTAzNTE0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNjNlY2VkZDY3MGIwOGQxYTRhMzUxYzA3NDc4OTk0MDViZDY4NzNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn9vIsp+aZjifwRT9pc/wUXPUXfd/
Zj53vk/VS1UZ5AY0UXMd1Mom5HXQxSZEoBaCJ3XQ7EWZNIR7EYSh6W80cKuJhvKx
Rldf9E+Sf0EaW2V6gtdghTrOUA0eCnE3j8uqi8MsBfItocwlLDTmslXVRGFn0BV7
9f5xEs+5jQUr17evxxVOgB1Ei9W8LOKaOx78QtBTfKbjFdzqXEsq48XYNPHh9Fkt
GhqZ2OhUbCIVtvNdE2Hh9mOnCMTdJ7YY88oS7792Tx7MITXbB/p/4B2KwsJRvMMm
N7Lh6HnnEZ4giTq2zjE58G8sdtBhyWGUZ2TaBMSGuPrPjaoAjCRAxd1wowIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKY+zt1nCwjRpKNRwHR4mUBb1oc8MB8GA1UdIwQY
MBaAFISy9PpRY6+WFo6I+/nLTtHtj7TEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDct
ODcyYmEyZDlmNDRjLzEvcGo3TzNXY0xDTkdrbzFIQWRIaVpRRnZXaHp3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDctODcyYmEyZDlmNDRj
LzEvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXyvVMA0G
CSqGSIb3DQEBCwUAA4IBAQBh5EzQdP89elqTA8NZMXG64KSRlIMAa+R4mMazvDjw
p2XQJqjw6IWXvKBkmD1fVDe90XL/atjaC6DHfKteX5CYJBz/W4C8l32sCOXXJVlq
ARWZULcxHf/E6MgXFA8dbLEd5OMITZoY1UZEMvh9ISCiCU/e9+1GP+7MErPjBKBf
eEox1BqIIOHQEgxSbmpbOKGa3Y34TYhNgk55MiMiArWOFKjbnZM+8UXJUO6DL6ss
Sk6hJLSl/PDw+5W5HXbNzyD1Et1Ldbhj9lCB69KgR0LztiI5LEUOBHYS1cefNZsq
kiu2dEAp+z8ExtATqz9mgCmSiWUOI2GTDHD/reZ2xo46
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:54 2024 by rpki-client on console-ams.rpki-client.org