Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/6c3d9f-8a4f-4a6c-8579-e92ece4d3cb3/1/b6Zie6SGjJnzVY_MIpYpeqdHMBU.roa
File: b6Zie6SGjJnzVY_MIpYpeqdHMBU.roa (raw, json)
Hash identifier: FB6CKskWzZx3ATQ/1dV5gz6fCcmNYnY+tQgLcUE1E+Q=
Subject key identifier: 6F:A6:62:7B:A4:86:8C:99:F3:55:8F:CC:22:96:29:7A:A7:47:30:15
Certificate issuer: /CN=21a00080cd2cb1bb073903b32b25ad660a366486
Certificate serial: 0191B1C6351F810FD0E923D2D24CAB72FC6B
Authority key identifier: 21:A0:00:80:CD:2C:B1:BB:07:39:03:B3:2B:25:AD:66:0A:36:64:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IaAAgM0ssbsHOQOzKyWtZgo2ZIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/6c3d9f-8a4f-4a6c-8579-e92ece4d3cb3/1/b6Zie6SGjJnzVY_MIpYpeqdHMBU.roa
Signing time: Mon 02 Sep 2024 08:07:22 +0000
ROA not before: Mon 02 Sep 2024 08:07:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51167
IP address blocks: 195.191.65.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Sep 2024 16:20:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b1:c6:35:1f:81:0f:d0:e9:23:d2:d2:4c:ab:72:fc:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21a00080cd2cb1bb073903b32b25ad660a366486
Validity
Not Before: Sep 2 08:07:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6fa6627ba4868c99f3558fcc2296297aa7473015
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:fe:5c:f7:c4:b3:e3:37:3a:ea:01:97:54:f4:
ff:95:18:ee:1e:41:9f:c5:4f:3b:52:99:1f:27:3d:
b0:d6:2c:1c:31:9c:aa:fc:fa:43:49:17:65:3e:92:
16:ce:c7:ed:17:22:80:89:b8:f3:7d:7e:77:64:4a:
fc:cc:8d:db:42:be:74:d4:c3:26:37:12:8e:4b:46:
e0:ce:24:c9:6c:48:e2:ea:29:d0:03:8a:41:13:14:
1a:ac:04:5d:be:a6:93:78:a4:1a:09:5b:b7:24:f1:
bf:3b:74:a7:22:db:2a:a1:79:2b:de:a8:39:3f:4a:
97:d2:d7:1e:ce:1f:26:53:22:6e:3e:c4:aa:48:3c:
51:70:9c:b8:d0:0b:4d:ab:9e:11:07:cf:c8:86:7d:
23:b8:90:01:80:ac:d4:c5:5b:34:6d:29:b9:f1:6a:
62:0c:d8:c0:56:ed:df:48:fa:5d:9a:29:b8:98:8d:
3d:c2:bb:17:bc:a6:a2:19:39:2b:67:b2:8e:55:d9:
c8:eb:e2:08:4c:b3:0e:c5:0f:10:7f:fb:1c:27:97:
69:8f:97:ae:b5:b4:ad:0c:ea:2d:15:c9:e8:9e:dc:
05:c8:98:c9:96:f0:8f:fa:8c:40:fe:a5:4f:d4:57:
26:a4:10:de:4c:03:83:6b:e2:ba:13:06:7e:da:ac:
6f:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:A6:62:7B:A4:86:8C:99:F3:55:8F:CC:22:96:29:7A:A7:47:30:15
X509v3 Authority Key Identifier:
keyid:21:A0:00:80:CD:2C:B1:BB:07:39:03:B3:2B:25:AD:66:0A:36:64:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IaAAgM0ssbsHOQOzKyWtZgo2ZIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6c3d9f-8a4f-4a6c-8579-e92ece4d3cb3/1/b6Zie6SGjJnzVY_MIpYpeqdHMBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6c3d9f-8a4f-4a6c-8579-e92ece4d3cb3/1/IaAAgM0ssbsHOQOzKyWtZgo2ZIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.191.65.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:da:3f:0f:ae:2b:24:8f:97:36:58:79:5e:fe:1e:a6:0b:62:
ef:51:fc:20:5d:d2:2d:f8:e2:41:08:38:af:a9:46:95:67:45:
f0:2b:91:48:a0:0a:65:12:4d:83:70:3b:7a:18:73:3d:f4:69:
d2:47:13:e9:ae:05:2a:ea:78:94:c2:b3:5a:c2:a2:03:43:43:
61:f3:07:84:fe:55:77:ba:cc:1d:2b:aa:9f:56:9b:07:1d:47:
18:a4:15:15:05:c1:87:08:b2:36:02:27:de:62:9a:4b:a5:68:
f7:03:e9:20:30:d6:36:90:01:b0:00:25:81:e2:ff:06:06:9c:
4c:94:7f:ab:39:53:4b:00:b4:72:4c:fc:c2:43:8b:e5:c6:d2:
ce:5c:ca:c1:b8:f7:76:ff:5e:f6:73:f4:6f:ac:fc:c5:dc:d5:
a4:59:ad:c4:db:cf:95:54:97:a8:94:43:33:b9:c9:5f:f2:bb:
91:73:65:88:a6:8e:77:8a:8b:e2:84:14:c1:29:5a:c1:01:69:
0b:1b:c7:f3:52:2c:c8:b9:d9:8a:8e:a0:89:be:5d:81:70:05:
e5:7c:75:34:da:47:28:57:63:2b:cf:19:ec:34:40:b9:fa:f8:
3b:59:2f:a2:ff:14:d9:b4:54:ea:a5:5a:ed:78:f5:12:85:47:
35:8f:89:ed
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZGxxjUfgQ/Q6SPS0kyrcvxrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxYTAwMDgwY2QyY2IxYmIwNzM5MDNiMzJiMjVhZDY2MGEz
NjY0ODYwHhcNMjQwOTAyMDgwNzIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZmE2NjI3YmE0ODY4Yzk5ZjM1NThmY2MyMjk2Mjk3YWE3NDczMDE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo/5c98Sz4zc66gGXVPT/lRjuHkGf
xU87UpkfJz2w1iwcMZyq/PpDSRdlPpIWzsftFyKAibjzfX53ZEr8zI3bQr501MMm
NxKOS0bgziTJbEji6inQA4pBExQarARdvqaTeKQaCVu3JPG/O3SnItsqoXkr3qg5
P0qX0tcezh8mUyJuPsSqSDxRcJy40AtNq54RB8/Ihn0juJABgKzUxVs0bSm58Wpi
DNjAVu3fSPpdmim4mI09wrsXvKaiGTkrZ7KOVdnI6+IITLMOxQ8Qf/scJ5dpj5eu
tbStDOotFcnontwFyJjJlvCP+oxA/qVP1FcmpBDeTAODa+K6EwZ+2qxvOQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG+mYnukhoyZ81WPzCKWKXqnRzAVMB8GA1UdIwQY
MBaAFCGgAIDNLLG7BzkDsyslrWYKNmSGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWFBQWdNMHNzYnNIT1FPekt5V3RaZ28yWklZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy82YzNkOWYtOGE0Zi00YTZjLTg1Nzkt
ZTkyZWNlNGQzY2IzLzEvYjZaaWU2U0dqSm56VllfTUlwWXBlcWRITUJVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy82YzNkOWYtOGE0Zi00YTZjLTg1NzktZTkyZWNlNGQzY2Iz
LzEvSWFBQWdNMHNzYnNIT1FPekt5V3RaZ28yWklZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw79BMA0G
CSqGSIb3DQEBCwUAA4IBAQBN2j8Priskj5c2WHle/h6mC2LvUfwgXdIt+OJBCDiv
qUaVZ0XwK5FIoAplEk2DcDt6GHM99GnSRxPprgUq6niUwrNawqIDQ0Nh8weE/lV3
uswdK6qfVpsHHUcYpBUVBcGHCLI2AifeYppLpWj3A+kgMNY2kAGwACWB4v8GBpxM
lH+rOVNLALRyTPzCQ4vlxtLOXMrBuPd2/172c/RvrPzF3NWkWa3E28+VVJeolEMz
uclf8ruRc2WIpo53iovihBTBKVrBAWkLG8fzUizIudmKjqCJvl2BcAXlfHU02kco
V2MrzxnsNEC5+vg7WS+i/xTZtFTqpVrtePUShUc1j4nt
-----END CERTIFICATE-----
Generated at Mon Sep 2 21:05:45 2024 by rpki-client on console-ams.rpki-client.org