Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/U7FsMq4F8iktS-EsyytcAQjOIdk.roa
File: U7FsMq4F8iktS-EsyytcAQjOIdk.roa (raw, json)
Hash identifier: TmuvK5K5jF3LXxVG1fQTYQZJ0bade3IJ4sX4WU7kZKI=
Subject key identifier: 53:B1:6C:32:AE:05:F2:29:2D:4B:E1:2C:CB:2B:5C:01:08:CE:21:D9
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0193B5B6989871FC14B037FA1E4B26FD170B
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/U7FsMq4F8iktS-EsyytcAQjOIdk.roa
Signing time: Wed 11 Dec 2024 12:34:22 +0000
ROA not before: Wed 11 Dec 2024 12:34:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 36680
IP address blocks: 95.214.27.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Dec 2024 15:20:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b5:b6:98:98:71:fc:14:b0:37:fa:1e:4b:26:fd:17:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Dec 11 12:34:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=53b16c32ae05f2292d4be12ccb2b5c0108ce21d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:66:c5:db:4b:a3:00:b4:31:db:28:47:6a:59:
24:13:76:80:69:07:c5:57:35:a0:a8:28:da:c3:50:
1e:88:38:d9:76:3d:6a:16:d6:05:ed:74:f1:53:d4:
8f:4a:86:a5:08:b7:55:ba:e4:1d:28:cb:3b:5f:3c:
06:2e:a1:8e:3a:0b:e4:be:de:3a:51:c1:c4:81:5e:
20:60:da:0f:48:cc:8c:d1:2c:48:c0:87:ba:dc:06:
2d:15:e9:30:40:0f:8d:ec:17:46:26:81:37:27:92:
80:ad:39:83:4e:e6:18:1d:ef:c7:99:c4:bc:38:05:
60:cc:ea:8b:78:90:88:61:4c:d1:51:7a:0f:bb:6d:
17:55:6b:49:54:d8:65:94:b0:26:95:1f:d7:c6:b4:
e9:af:1a:ef:a6:77:cd:d4:a9:68:97:59:7a:9b:6a:
48:fd:9c:09:92:8c:6d:df:e6:6f:c4:3d:20:bd:fd:
3d:b5:db:59:3a:70:d4:6d:6e:cf:59:ca:8d:09:dd:
52:49:7f:3e:fe:22:9a:fc:18:08:63:a7:9b:10:98:
ff:0b:07:52:90:77:b5:ac:30:dd:19:13:9d:a9:d8:
09:44:0b:80:4e:b4:ed:a7:e5:2a:40:e5:a7:41:5b:
96:75:50:d6:70:3a:43:57:a7:06:d3:28:ac:6a:c3:
55:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:B1:6C:32:AE:05:F2:29:2D:4B:E1:2C:CB:2B:5C:01:08:CE:21:D9
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/U7FsMq4F8iktS-EsyytcAQjOIdk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.27.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:3b:aa:a1:1c:4d:cc:ba:e1:cd:33:b3:90:b0:14:b4:80:d4:
61:51:85:fe:ef:61:49:5a:aa:ca:71:0d:6d:31:b4:40:58:a4:
0c:3b:3b:72:37:95:e5:df:ba:19:59:56:3e:ae:44:d2:e1:f2:
26:a8:b8:22:c9:91:2c:80:24:4c:41:66:ef:cf:be:5c:3e:ad:
b2:0e:5c:0a:e1:5d:f3:2e:57:d2:4b:71:c0:9d:5c:5c:f3:7e:
2b:af:57:48:df:a4:d8:a5:8e:ae:8e:64:1b:96:e3:f8:7a:80:
d6:84:84:38:24:35:d8:6d:6b:85:16:a7:ba:11:3c:6d:e3:40:
a7:39:0d:7c:27:28:9a:25:65:5f:6e:bd:8f:fa:d7:d1:63:24:
54:28:50:5e:c9:9d:7d:7f:43:91:f3:12:30:83:76:3f:42:f6:
f5:1b:50:82:0f:3d:82:76:9f:b1:28:f9:cd:1d:9c:34:de:c9:
22:60:af:3b:9a:af:5d:e2:f6:4e:ea:a8:4d:0a:d3:48:3f:25:
6f:2d:c5:34:08:53:3d:23:62:66:12:1a:f0:55:5b:d5:8d:e4:
94:ef:26:91:33:26:08:43:ee:33:b5:04:7f:ff:49:a6:89:c3:
a4:58:09:8d:bc:68:eb:ec:16:1c:05:41:57:f3:6f:0d:3d:dd:
19:18:64:45
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZO1tpiYcfwUsDf6Hksm/RcLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjQxMjExMTIzNDIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1M2IxNmMzMmFlMDVmMjI5MmQ0YmUxMmNjYjJiNWMwMTA4Y2UyMWQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr2bF20ujALQx2yhHalkkE3aAaQfF
VzWgqCjaw1AeiDjZdj1qFtYF7XTxU9SPSoalCLdVuuQdKMs7XzwGLqGOOgvkvt46
UcHEgV4gYNoPSMyM0SxIwIe63AYtFekwQA+N7BdGJoE3J5KArTmDTuYYHe/HmcS8
OAVgzOqLeJCIYUzRUXoPu20XVWtJVNhllLAmlR/XxrTprxrvpnfN1Klol1l6m2pI
/ZwJkoxt3+ZvxD0gvf09tdtZOnDUbW7PWcqNCd1SSX8+/iKa/BgIY6ebEJj/CwdS
kHe1rDDdGROdqdgJRAuATrTtp+UqQOWnQVuWdVDWcDpDV6cG0yisasNVjwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFOxbDKuBfIpLUvhLMsrXAEIziHZMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvVTdGc01xNEY4aWt0Uy1Fc3l5dGNBUWpPSWRrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAX9YbMA0G
CSqGSIb3DQEBCwUAA4IBAQCKO6qhHE3MuuHNM7OQsBS0gNRhUYX+72FJWqrKcQ1t
MbRAWKQMOztyN5Xl37oZWVY+rkTS4fImqLgiyZEsgCRMQWbvz75cPq2yDlwK4V3z
LlfSS3HAnVxc834rr1dI36TYpY6ujmQbluP4eoDWhIQ4JDXYbWuFFqe6ETxt40Cn
OQ18JyiaJWVfbr2P+tfRYyRUKFBeyZ19f0OR8xIwg3Y/Qvb1G1CCDz2Cdp+xKPnN
HZw03skiYK87mq9d4vZO6qhNCtNIPyVvLcU0CFM9I2JmEhrwVVvVjeSU7yaRMyYI
Q+4ztQR//0mmicOkWAmNvGjr7BYcBUFX828NPd0ZGGRF
-----END CERTIFICATE-----
Generated at Thu Apr 17 09:24:02 2025 by rpki-client