Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/19d867-fd39-409e-b20a-ddcc25881128/1/4CaaL6KgxuTf_Tp10COl_NowT0Y.roa
File: 4CaaL6KgxuTf_Tp10COl_NowT0Y.roa (raw, json)
Hash identifier: xSTYK6E6ZQe/bRtwiJpXtpCx002c/IUO+sM37HdKDtA=
Subject key identifier: E0:26:9A:2F:A2:A0:C6:E4:DF:FD:3A:75:D0:23:A5:FC:DA:30:4F:46
Certificate issuer: /CN=000c9d5542a5aa8cd5e0198ab83fce0f9472a461
Certificate serial: 018755B7FEE0B5EA84996F2D33EE72F9A60A
Authority key identifier: 00:0C:9D:55:42:A5:AA:8C:D5:E0:19:8A:B8:3F:CE:0F:94:72:A4:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAydVUKlqozV4BmKuD_OD5RypGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/19d867-fd39-409e-b20a-ddcc25881128/1/4CaaL6KgxuTf_Tp10COl_NowT0Y.roa
Signing time: Thu 06 Apr 2023 08:38:54 +0000
ROA not before: Thu 06 Apr 2023 08:38:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209682
IP address blocks: 95.214.64.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:30:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:55:b7:fe:e0:b5:ea:84:99:6f:2d:33:ee:72:f9:a6:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=000c9d5542a5aa8cd5e0198ab83fce0f9472a461
Validity
Not Before: Apr 6 08:38:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e0269a2fa2a0c6e4dffd3a75d023a5fcda304f46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:a5:1a:a9:bd:44:b6:d3:b1:19:ae:b5:8b:6e:
c1:e8:1b:bf:78:c2:1d:99:48:d4:ce:fb:86:43:00:
e1:09:77:e4:e3:10:70:af:da:2b:33:26:1d:57:fd:
49:72:08:95:55:55:c3:07:a9:5d:95:21:66:ac:9c:
31:c8:5c:c9:cd:a1:4d:17:4d:b0:07:cc:f3:3f:1e:
11:cb:b9:15:b1:8e:d8:6f:37:cf:29:65:b1:05:98:
56:f3:ef:c9:d3:d7:7b:68:fe:bf:63:0e:81:88:26:
44:90:d7:31:a5:01:9e:ee:51:91:a1:a9:52:51:66:
f0:8e:1b:53:46:66:c3:28:53:74:a5:27:89:0b:c1:
0d:d3:04:91:b0:cc:b3:fb:28:66:d6:d0:a1:81:31:
3e:7c:db:4b:1a:36:0e:3c:7f:50:f8:82:32:40:06:
76:3e:b6:ef:ad:24:60:26:45:b9:f8:79:88:23:7a:
ae:9f:89:e6:85:15:e5:65:9d:29:b8:b9:b0:de:78:
4d:8b:11:4f:c7:4d:5c:cd:b5:7e:21:d6:b8:03:b1:
c9:60:5c:97:0e:39:4a:25:c8:31:4d:17:a5:a0:6f:
79:1f:c0:7d:e9:1b:f7:92:9e:c8:84:93:fa:1d:4e:
52:24:fa:b2:69:47:48:d6:68:c3:8e:83:a3:00:32:
32:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:26:9A:2F:A2:A0:C6:E4:DF:FD:3A:75:D0:23:A5:FC:DA:30:4F:46
X509v3 Authority Key Identifier:
keyid:00:0C:9D:55:42:A5:AA:8C:D5:E0:19:8A:B8:3F:CE:0F:94:72:A4:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAydVUKlqozV4BmKuD_OD5RypGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/19d867-fd39-409e-b20a-ddcc25881128/1/4CaaL6KgxuTf_Tp10COl_NowT0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/19d867-fd39-409e-b20a-ddcc25881128/1/AAydVUKlqozV4BmKuD_OD5RypGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.64.0/22
Signature Algorithm: sha256WithRSAEncryption
32:7c:c7:5b:e9:67:66:11:22:0c:28:e7:03:62:e1:c0:d1:55:
35:aa:ef:1a:96:e6:87:8a:a0:3c:92:a4:63:fc:a2:de:f5:c6:
ed:c1:3c:c7:94:6c:50:74:db:43:bc:56:96:96:96:03:8e:ad:
b6:e1:3e:0e:10:9b:25:4a:9d:05:63:5e:25:fb:87:8a:be:9b:
ec:6c:c4:b6:17:12:0a:59:34:ad:c5:2e:b7:dd:dd:28:12:c5:
71:ad:58:de:48:c9:6f:25:1d:38:7c:c1:71:ca:bc:a8:d1:25:
7d:0d:b1:75:0d:8c:5f:0d:56:50:df:e1:c1:19:67:49:05:fe:
08:76:e0:6f:2c:02:24:86:6e:ac:a2:4c:74:10:91:2a:c2:f8:
8d:8a:c0:00:38:a1:5c:04:b9:b0:79:74:b6:c8:c3:32:c2:e1:
14:9a:0c:31:ec:a6:d9:e1:7e:a8:bd:ab:96:d5:b5:29:cc:f0:
d4:ce:07:34:39:a2:f2:cf:a1:df:ba:89:68:81:f8:53:95:72:
d8:6e:c8:04:8e:7d:c1:1e:08:ef:9b:d2:ba:d5:83:7e:9a:42:
c9:c3:1c:e5:0e:b2:8f:a9:78:9f:ac:4d:55:77:ec:c7:14:50:
41:c4:40:03:7a:08:c3:d7:97:51:14:29:d5:b0:51:3e:b1:18:
67:86:89:fe
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYdVt/7gteqEmW8tM+5y+aYKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwMGM5ZDU1NDJhNWFhOGNkNWUwMTk4YWI4M2ZjZTBmOTQ3
MmE0NjEwHhcNMjMwNDA2MDgzODU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMDI2OWEyZmEyYTBjNmU0ZGZmZDNhNzVkMDIzYTVmY2RhMzA0ZjQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoKUaqb1EttOxGa61i27B6Bu/eMId
mUjUzvuGQwDhCXfk4xBwr9orMyYdV/1JcgiVVVXDB6ldlSFmrJwxyFzJzaFNF02w
B8zzPx4Ry7kVsY7YbzfPKWWxBZhW8+/J09d7aP6/Yw6BiCZEkNcxpQGe7lGRoalS
UWbwjhtTRmbDKFN0pSeJC8EN0wSRsMyz+yhm1tChgTE+fNtLGjYOPH9Q+IIyQAZ2
PrbvrSRgJkW5+HmII3qun4nmhRXlZZ0puLmw3nhNixFPx01czbV+Ida4A7HJYFyX
DjlKJcgxTReloG95H8B96Rv3kp7IhJP6HU5SJPqyaUdI1mjDjoOjADIymQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOAmmi+ioMbk3/06ddAjpfzaME9GMB8GA1UdIwQY
MBaAFAAMnVVCpaqM1eAZirg/zg+UcqRhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUF5ZFZVS2xxb3pWNEJtS3VEX09ENVJ5cEdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi8xOWQ4NjctZmQzOS00MDllLWIyMGEt
ZGRjYzI1ODgxMTI4LzEvNENhYUw2S2d4dVRmX1RwMTBDT2xfTm93VDBZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi8xOWQ4NjctZmQzOS00MDllLWIyMGEtZGRjYzI1ODgxMTI4
LzEvQUF5ZFZVS2xxb3pWNEJtS3VEX09ENVJ5cEdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCX9ZAMA0G
CSqGSIb3DQEBCwUAA4IBAQAyfMdb6WdmESIMKOcDYuHA0VU1qu8aluaHiqA8kqRj
/KLe9cbtwTzHlGxQdNtDvFaWlpYDjq224T4OEJslSp0FY14l+4eKvpvsbMS2FxIK
WTStxS633d0oEsVxrVjeSMlvJR04fMFxyryo0SV9DbF1DYxfDVZQ3+HBGWdJBf4I
duBvLAIkhm6sokx0EJEqwviNisAAOKFcBLmweXS2yMMywuEUmgwx7KbZ4X6ovauW
1bUpzPDUzgc0OaLyz6HfuologfhTlXLYbsgEjn3BHgjvm9K61YN+mkLJwxzlDrKP
qXifrE1Vd+zHFFBBxEADegjD15dRFCnVsFE+sRhnhon+
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:32 2024 by rpki-client on console-ams.rpki-client.org