Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/2c9b83-8cec-47a5-b40c-4a70b00e8556/1/LTO2NqzhBrhiEpnJqoyW0GY4g-w.roa
File: LTO2NqzhBrhiEpnJqoyW0GY4g-w.roa (raw, json)
Hash identifier: Wg+4thuDH5lhI7aq9TZP7PVFMJvJWi9O6xMQ89MGzRk=
Subject key identifier: 2D:33:B6:36:AC:E1:06:B8:62:12:99:C9:AA:8C:96:D0:66:38:83:EC
Certificate issuer: /CN=3085a82d9ffde0a4c7f8f72e31c30a8f09a0f1d8
Certificate serial: 0188CEB0FC79319C7099923E4314C8364830
Authority key identifier: 30:85:A8:2D:9F:FD:E0:A4:C7:F8:F7:2E:31:C3:0A:8F:09:A0:F1:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MIWoLZ_94KTH-PcuMcMKjwmg8dg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/2c9b83-8cec-47a5-b40c-4a70b00e8556/1/LTO2NqzhBrhiEpnJqoyW0GY4g-w.roa
Signing time: Sun 18 Jun 2023 13:28:05 +0000
ROA not before: Sun 18 Jun 2023 13:28:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213098
IP address blocks: 195.62.88.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:ce:b0:fc:79:31:9c:70:99:92:3e:43:14:c8:36:48:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3085a82d9ffde0a4c7f8f72e31c30a8f09a0f1d8
Validity
Not Before: Jun 18 13:28:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2d33b636ace106b8621299c9aa8c96d0663883ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:a1:37:c7:8d:e6:ef:d9:da:ac:e4:72:5b:ec:
75:c7:1d:2f:f3:41:e3:7e:72:7e:28:2d:60:be:0c:
eb:d7:14:75:e4:30:49:e2:e3:69:31:82:76:16:2a:
da:19:e2:f1:d3:c0:fd:b4:d3:07:92:f2:2d:9f:95:
5b:2c:7f:1b:c4:b2:d0:3a:f7:03:fd:a2:20:7b:7e:
65:56:c4:f2:98:05:a0:87:6f:f9:eb:21:ae:68:4c:
e2:9f:d3:af:65:ca:1d:72:6d:eb:90:47:30:85:c7:
ae:e0:4f:2f:24:81:34:e6:97:5c:9a:bc:1d:a6:dd:
31:13:c7:de:c2:00:1f:78:c9:b7:dd:0b:36:4b:82:
f0:09:3a:27:c5:30:35:9d:8c:c4:6b:76:4c:19:26:
d6:8d:74:70:42:d4:01:78:2b:e7:54:a4:4a:61:d6:
e3:3e:2b:18:87:63:86:5a:20:08:84:1c:7b:24:c0:
0c:f7:79:74:be:be:8a:03:a9:7e:80:2e:b4:ab:32:
60:38:a3:3e:61:c7:54:42:46:e5:e7:a1:10:58:de:
a2:5a:e5:5c:b7:0d:00:48:80:19:c7:3e:78:07:54:
e4:c3:6e:3d:d3:3d:29:81:8a:c2:a4:83:cf:f5:e3:
be:03:36:aa:ac:01:02:fc:98:c5:8c:1b:25:fc:ba:
36:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:33:B6:36:AC:E1:06:B8:62:12:99:C9:AA:8C:96:D0:66:38:83:EC
X509v3 Authority Key Identifier:
keyid:30:85:A8:2D:9F:FD:E0:A4:C7:F8:F7:2E:31:C3:0A:8F:09:A0:F1:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MIWoLZ_94KTH-PcuMcMKjwmg8dg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2c9b83-8cec-47a5-b40c-4a70b00e8556/1/LTO2NqzhBrhiEpnJqoyW0GY4g-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2c9b83-8cec-47a5-b40c-4a70b00e8556/1/MIWoLZ_94KTH-PcuMcMKjwmg8dg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.62.88.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:de:ca:3d:d6:c9:1d:90:7f:12:3d:9e:d8:bc:eb:be:a0:91:
4b:53:25:37:fe:d1:61:17:c7:53:a8:0b:89:07:82:6b:96:53:
86:30:00:7f:b9:e3:25:a6:82:df:a7:bd:0d:a5:ae:2d:b0:56:
c7:54:b3:6b:5b:12:3a:9b:35:cc:92:03:36:72:5a:84:19:ac:
fc:c8:04:f3:85:6b:5c:b8:3b:4b:fd:9d:7d:f9:a8:2e:2c:4b:
15:77:cc:d9:67:1f:fb:48:15:ef:30:c8:b7:34:48:14:10:02:
80:fd:89:17:66:06:47:72:1f:66:b4:f3:8f:b8:0e:46:db:07:
1d:ca:3e:5e:bd:dc:8e:48:56:6c:34:94:9b:c6:4c:7f:27:10:
37:22:c0:c2:00:31:48:0e:50:a8:64:e8:e8:d0:1d:e9:df:b5:
f1:55:2e:eb:1e:57:70:c0:ee:f5:d9:b2:b2:e7:c7:bf:d4:9b:
5b:07:f8:0e:a2:5e:e2:b9:10:1f:0f:34:9a:b3:81:8c:94:d8:
0d:ac:f6:02:e5:6b:0f:1f:ff:f0:76:5c:82:0b:46:94:ad:04:
a2:b6:c5:c1:1c:d3:29:4c:c2:00:cf:15:69:fe:b6:74:61:49:
84:af:8b:75:57:5c:62:a0:da:6c:62:ef:14:83:8b:96:62:35:
ca:1a:5d:d9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYjOsPx5MZxwmZI+QxTINkgwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwODVhODJkOWZmZGUwYTRjN2Y4ZjcyZTMxYzMwYThmMDlh
MGYxZDgwHhcNMjMwNjE4MTMyODA1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZDMzYjYzNmFjZTEwNmI4NjIxMjk5YzlhYThjOTZkMDY2Mzg4M2VjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4aE3x43m79narORyW+x1xx0v80Hj
fnJ+KC1gvgzr1xR15DBJ4uNpMYJ2FiraGeLx08D9tNMHkvItn5VbLH8bxLLQOvcD
/aIge35lVsTymAWgh2/56yGuaEzin9OvZcodcm3rkEcwhceu4E8vJIE05pdcmrwd
pt0xE8fewgAfeMm33Qs2S4LwCTonxTA1nYzEa3ZMGSbWjXRwQtQBeCvnVKRKYdbj
PisYh2OGWiAIhBx7JMAM93l0vr6KA6l+gC60qzJgOKM+YcdUQkbl56EQWN6iWuVc
tw0ASIAZxz54B1Tkw2490z0pgYrCpIPP9eO+AzaqrAEC/JjFjBsl/Lo2iwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC0ztjas4Qa4YhKZyaqMltBmOIPsMB8GA1UdIwQY
MBaAFDCFqC2f/eCkx/j3LjHDCo8JoPHYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUlXb0xaXzk0S1RILVBjdU1jTUtqd21nOGRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS8yYzliODMtOGNlYy00N2E1LWI0MGMt
NGE3MGIwMGU4NTU2LzEvTFRPMk5xemhCcmhpRXBuSnFveVcwR1k0Zy13LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS8yYzliODMtOGNlYy00N2E1LWI0MGMtNGE3MGIwMGU4NTU2
LzEvTUlXb0xaXzk0S1RILVBjdU1jTUtqd21nOGRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwz5YMA0G
CSqGSIb3DQEBCwUAA4IBAQBO3so91skdkH8SPZ7YvOu+oJFLUyU3/tFhF8dTqAuJ
B4JrllOGMAB/ueMlpoLfp70Npa4tsFbHVLNrWxI6mzXMkgM2clqEGaz8yATzhWtc
uDtL/Z19+aguLEsVd8zZZx/7SBXvMMi3NEgUEAKA/YkXZgZHch9mtPOPuA5G2wcd
yj5evdyOSFZsNJSbxkx/JxA3IsDCADFIDlCoZOjo0B3p37XxVS7rHldwwO712bKy
58e/1JtbB/gOol7iuRAfDzSas4GMlNgNrPYC5WsPH//wdlyCC0aUrQSitsXBHNMp
TMIAzxVp/rZ0YUmEr4t1V1xioNpsYu8Ug4uWYjXKGl3Z
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:06 2024 by rpki-client on console-ams.rpki-client.org