Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/470cb8-eb6a-4934-9d47-968d0c7f22bb/1/DSsN-t6ta7l-V3oC7-qAfy873mo.roa
File: DSsN-t6ta7l-V3oC7-qAfy873mo.roa (raw, json)
Hash identifier: cPpwBoFEDZFBYrPtAjgUK0OqK57yyu7j3JOPcZtJurI=
Subject key identifier: 0D:2B:0D:FA:DE:AD:6B:B9:7E:57:7A:02:EF:EA:80:7F:2F:3B:DE:6A
Certificate issuer: /CN=72e5b57bb398d5e1839a3fe4254df70d712ce14a
Certificate serial: 018CCA2BCF23588712EB0782C084DE9DF3BA
Authority key identifier: 72:E5:B5:7B:B3:98:D5:E1:83:9A:3F:E4:25:4D:F7:0D:71:2C:E1:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cuW1e7OY1eGDmj_kJU33DXEs4Uo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/470cb8-eb6a-4934-9d47-968d0c7f22bb/1/DSsN-t6ta7l-V3oC7-qAfy873mo.roa
Signing time: Tue 02 Jan 2024 12:35:17 +0000
ROA not before: Tue 02 Jan 2024 12:35:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211686
IP address blocks: 185.95.1.0/24 maxlen: 24
185.15.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Oct 2024 04:39:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:cf:23:58:87:12:eb:07:82:c0:84:de:9d:f3:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72e5b57bb398d5e1839a3fe4254df70d712ce14a
Validity
Not Before: Jan 2 12:35:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0d2b0dfadead6bb97e577a02efea807f2f3bde6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:78:41:ec:2d:33:70:fd:13:e7:f0:85:99:5c:
8e:a6:23:00:c4:c1:f0:f5:92:f5:dc:f4:95:d8:58:
b7:e0:f2:3a:ba:bc:64:f3:fb:78:87:21:03:6f:65:
7d:3c:cc:88:ee:39:78:3c:b4:48:f5:e2:fe:f4:dd:
1e:ea:97:e8:d1:9a:7e:2d:bf:e9:ac:0e:44:73:51:
01:c7:1a:ca:de:1b:3c:fb:ba:7d:04:82:6c:5d:1f:
61:ee:cd:8b:90:ce:99:b9:20:01:b6:0d:8f:36:4d:
a6:0b:a3:c6:e5:6b:4e:cf:1c:10:5d:58:3d:ff:99:
47:0f:56:c8:6c:00:87:6e:21:e4:b2:c8:bb:bd:93:
17:ee:bc:f6:77:52:f2:2e:70:39:0f:38:69:0a:6b:
ad:44:76:9b:09:44:c2:f5:90:95:91:1f:fc:f4:16:
6a:f8:a4:d3:2b:1f:a0:5f:e1:93:e7:83:0d:e2:a0:
e2:dd:ca:a3:ec:b6:35:40:ee:2c:c8:de:9f:98:d1:
5a:93:2f:d5:67:ab:cc:55:41:76:8c:b7:8a:b3:e7:
97:7a:fb:8c:d3:cd:66:12:e6:63:c0:e8:46:f3:ee:
f8:df:61:26:cf:83:19:9b:61:e8:26:96:1b:23:86:
4a:13:70:b1:46:4b:69:a4:79:6a:bd:b7:72:30:12:
b7:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:2B:0D:FA:DE:AD:6B:B9:7E:57:7A:02:EF:EA:80:7F:2F:3B:DE:6A
X509v3 Authority Key Identifier:
keyid:72:E5:B5:7B:B3:98:D5:E1:83:9A:3F:E4:25:4D:F7:0D:71:2C:E1:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cuW1e7OY1eGDmj_kJU33DXEs4Uo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/470cb8-eb6a-4934-9d47-968d0c7f22bb/1/DSsN-t6ta7l-V3oC7-qAfy873mo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/470cb8-eb6a-4934-9d47-968d0c7f22bb/1/cuW1e7OY1eGDmj_kJU33DXEs4Uo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.15.199.0/24
185.95.1.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:1a:fb:13:30:37:bd:eb:8a:31:ac:be:68:85:57:c9:53:48:
c1:11:e2:4b:54:ea:d1:ab:4f:98:0d:51:9b:e4:f4:53:dd:c6:
cb:ae:e0:f3:73:b4:84:bb:91:c6:13:4a:cd:e5:a9:67:77:07:
2a:fd:f9:7d:da:e3:46:fb:f7:f0:bb:d0:d8:60:56:ae:d8:c6:
01:d5:70:33:e3:fb:05:ec:7f:39:eb:d4:ba:01:4c:c6:5e:45:
e2:bf:b7:34:fb:74:0b:38:40:79:05:0f:6b:21:84:e1:43:b4:
6a:40:c5:42:7a:85:5b:4b:d9:52:be:7f:1e:d8:55:0b:67:3f:
7a:d1:d1:53:ed:14:2e:93:fd:5a:04:3b:a3:f2:5e:be:4f:22:
d0:43:56:49:e3:25:33:a4:27:3d:60:13:8d:5d:64:da:dd:3d:
22:ed:5e:87:7c:65:cb:cd:83:4e:1f:2e:35:07:55:15:f4:6f:
79:eb:12:e4:d2:9c:57:54:99:bc:f2:ad:be:a1:b6:8c:a3:1e:
cf:4c:e6:3e:02:4f:f4:e9:ef:41:4a:14:13:36:d8:ca:ce:52:
38:81:c1:af:55:89:ef:7a:c4:bc:0f:d9:b4:fc:fb:d1:03:01:
a3:97:44:6d:02:eb:c9:14:ab:53:ae:79:ab:77:9f:bd:f6:7a:
2e:59:db:d9
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzKK88jWIcS6weCwITenfO6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyZTViNTdiYjM5OGQ1ZTE4MzlhM2ZlNDI1NGRmNzBkNzEy
Y2UxNGEwHhcNMjQwMTAyMTIzNTE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZDJiMGRmYWRlYWQ2YmI5N2U1NzdhMDJlZmVhODA3ZjJmM2JkZTZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx3hB7C0zcP0T5/CFmVyOpiMAxMHw
9ZL13PSV2Fi34PI6urxk8/t4hyEDb2V9PMyI7jl4PLRI9eL+9N0e6pfo0Zp+Lb/p
rA5Ec1EBxxrK3hs8+7p9BIJsXR9h7s2LkM6ZuSABtg2PNk2mC6PG5WtOzxwQXVg9
/5lHD1bIbACHbiHkssi7vZMX7rz2d1LyLnA5DzhpCmutRHabCUTC9ZCVkR/89BZq
+KTTKx+gX+GT54MN4qDi3cqj7LY1QO4syN6fmNFaky/VZ6vMVUF2jLeKs+eXevuM
081mEuZjwOhG8+7432Emz4MZm2HoJpYbI4ZKE3CxRktppHlqvbdyMBK3jwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFA0rDfrerWu5fld6Au/qgH8vO95qMB8GA1UdIwQY
MBaAFHLltXuzmNXhg5o/5CVN9w1xLOFKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY3VXMWU3T1kxZUdEbWpfa0pVMzNEWEVzNFVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS80NzBjYjgtZWI2YS00OTM0LTlkNDct
OTY4ZDBjN2YyMmJiLzEvRFNzTi10NnRhN2wtVjNvQzctcUFmeTg3M21vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOS80NzBjYjgtZWI2YS00OTM0LTlkNDctOTY4ZDBjN2YyMmJi
LzEvY3VXMWU3T1kxZUdEbWpfa0pVMzNEWEVzNFVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuQ/HAwQA
uV8BMA0GCSqGSIb3DQEBCwUAA4IBAQAaGvsTMDe964oxrL5ohVfJU0jBEeJLVOrR
q0+YDVGb5PRT3cbLruDzc7SEu5HGE0rN5alndwcq/fl92uNG+/fwu9DYYFau2MYB
1XAz4/sF7H8569S6AUzGXkXiv7c0+3QLOEB5BQ9rIYThQ7RqQMVCeoVbS9lSvn8e
2FULZz960dFT7RQuk/1aBDuj8l6+TyLQQ1ZJ4yUzpCc9YBONXWTa3T0i7V6HfGXL
zYNOHy41B1UV9G956xLk0pxXVJm88q2+obaMox7PTOY+Ak/06e9BShQTNtjKzlI4
gcGvVYnvesS8D9m0/PvRAwGjl0RtAuvJFKtTrnmrd5+99nouWdvZ
-----END CERTIFICATE-----
Generated at Thu Oct 3 07:10:29 2024 by rpki-client on console-ams.rpki-client.org