Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/CkUsbynI04Z9buJUwaSL1Is9gCA.roa
File: CkUsbynI04Z9buJUwaSL1Is9gCA.roa (raw, json)
Hash identifier: Aspr2cIGBeBOvZp+egP5miSDZB7/cJgp5HHY1b+Mat0=
Subject key identifier: 0A:45:2C:6F:29:C8:D3:86:7D:6E:E2:54:C1:A4:8B:D4:8B:3D:80:20
Certificate issuer: /CN=2b051ef23060eb51bfd8c79795f6a4daf48a3aa0
Certificate serial: 0189F7A6BAADCF983972D9D811D74D60F41C
Authority key identifier: 2B:05:1E:F2:30:60:EB:51:BF:D8:C7:97:95:F6:A4:DA:F4:8A:3A:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KwUe8jBg61G_2MeXlfak2vSKOqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/CkUsbynI04Z9buJUwaSL1Is9gCA.roa
Signing time: Tue 15 Aug 2023 05:24:06 +0000
ROA not before: Tue 15 Aug 2023 05:24:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 195.234.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 18 Aug 2023 21:07:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f7:a6:ba:ad:cf:98:39:72:d9:d8:11:d7:4d:60:f4:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b051ef23060eb51bfd8c79795f6a4daf48a3aa0
Validity
Not Before: Aug 15 05:24:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0a452c6f29c8d3867d6ee254c1a48bd48b3d8020
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c7:4f:90:25:5b:a4:a3:44:ff:b4:85:59:82:
41:09:1b:75:80:6b:ce:70:0f:6c:0e:5e:08:eb:f0:
4a:9f:72:df:83:19:34:20:84:9e:7a:af:6d:55:0d:
56:8a:de:db:76:e1:e6:87:4c:35:37:8e:b1:70:c1:
7b:fb:8f:7b:f9:eb:ca:da:09:2f:3f:3c:b4:a2:14:
9f:59:47:7d:b5:5b:bb:f9:54:5f:01:47:4a:70:45:
4a:1d:50:dc:58:8e:d1:62:c8:05:da:f6:fd:aa:bd:
0f:96:8e:fa:47:4f:63:fa:74:cc:e1:74:34:00:61:
ae:fa:c9:c6:12:2e:34:bf:7b:b1:af:34:b8:78:06:
57:3c:27:f7:26:a5:e7:a5:ae:27:95:6b:a8:74:c6:
8c:6e:0a:5c:24:f8:71:4c:3d:36:41:ba:b3:7f:be:
8a:f4:d8:18:66:12:3d:41:a9:7d:1d:5e:48:9b:79:
e3:9f:5a:96:c7:f1:a8:e2:22:4c:19:f6:cb:f5:8b:
63:f4:93:cd:99:fc:70:41:fd:9a:9c:43:15:b0:ca:
d1:b9:2f:b7:23:63:c5:ae:05:4a:7c:f5:18:f7:60:
2d:0c:a4:74:8b:86:cf:2e:9c:9d:d7:03:b5:de:b3:
34:84:14:8a:cd:e5:65:18:54:ec:c1:b4:70:b7:32:
a1:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:45:2C:6F:29:C8:D3:86:7D:6E:E2:54:C1:A4:8B:D4:8B:3D:80:20
X509v3 Authority Key Identifier:
keyid:2B:05:1E:F2:30:60:EB:51:BF:D8:C7:97:95:F6:A4:DA:F4:8A:3A:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KwUe8jBg61G_2MeXlfak2vSKOqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/CkUsbynI04Z9buJUwaSL1Is9gCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/KwUe8jBg61G_2MeXlfak2vSKOqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.234.153.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:a0:0b:5b:96:4b:b0:84:b0:f2:97:6e:64:ec:54:0f:12:b3:
c2:65:23:f8:f3:33:f6:3f:8a:a9:e2:bc:a9:02:e4:ec:a7:15:
bf:f5:5d:d8:08:a7:ed:c5:4e:2a:15:dc:39:e0:fc:9d:44:9f:
5d:f3:17:75:5d:be:13:9c:0d:6c:03:50:ca:9f:f8:34:ec:c1:
db:07:7d:39:f6:b7:cc:27:00:e3:52:14:87:66:fe:0a:cc:9e:
8b:5c:70:25:d7:79:e4:c9:5d:45:3b:fd:55:e9:a6:94:e3:d4:
fb:65:d0:ab:f7:ef:a2:64:f7:41:e5:9c:62:d0:e8:f9:1a:93:
0b:5f:c5:3f:ff:eb:25:38:07:13:a9:05:f9:c1:a4:da:26:02:
62:40:94:ce:d0:d1:08:2f:14:86:a5:1e:ee:64:95:60:5a:e6:
84:dd:89:b1:40:cc:5d:60:23:08:2c:01:ab:0b:2d:de:a5:21:
3a:6d:fc:93:04:cc:11:34:6c:7a:ec:b9:39:68:4f:ad:9f:40:
62:28:2a:31:f1:f8:c8:f1:14:b3:f6:b3:f9:5e:ba:0f:74:9f:
4a:fb:10:53:17:63:04:79:83:e3:ba:e9:ff:80:b6:bc:3a:93:
52:36:42:39:52:03:7e:c1:b8:2e:38:7d:42:7e:f9:b2:0f:78:
85:26:ad:78
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYn3prqtz5g5ctnYEddNYPQcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiMDUxZWYyMzA2MGViNTFiZmQ4Yzc5Nzk1ZjZhNGRhZjQ4
YTNhYTAwHhcNMjMwODE1MDUyNDA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYTQ1MmM2ZjI5YzhkMzg2N2Q2ZWUyNTRjMWE0OGJkNDhiM2Q4MDIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAucdPkCVbpKNE/7SFWYJBCRt1gGvO
cA9sDl4I6/BKn3Lfgxk0IISeeq9tVQ1Wit7bduHmh0w1N46xcMF7+497+evK2gkv
Pzy0ohSfWUd9tVu7+VRfAUdKcEVKHVDcWI7RYsgF2vb9qr0Plo76R09j+nTM4XQ0
AGGu+snGEi40v3uxrzS4eAZXPCf3JqXnpa4nlWuodMaMbgpcJPhxTD02Qbqzf76K
9NgYZhI9Qal9HV5Im3njn1qWx/Go4iJMGfbL9Ytj9JPNmfxwQf2anEMVsMrRuS+3
I2PFrgVKfPUY92AtDKR0i4bPLpyd1wO13rM0hBSKzeVlGFTswbRwtzKhXwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFApFLG8pyNOGfW7iVMGki9SLPYAgMB8GA1UdIwQY
MBaAFCsFHvIwYOtRv9jHl5X2pNr0ijqgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS3dVZThqQmc2MUdfMk1lWGxmYWsydlNLT3FBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi8zODE3OWMtMjVhYi00MzY4LThjZjgt
NTdlNTkzY2Y5YTRlLzEvQ2tVc2J5bkkwNFo5YnVKVXdhU0wxSXM5Z0NBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNi8zODE3OWMtMjVhYi00MzY4LThjZjgtNTdlNTkzY2Y5YTRl
LzEvS3dVZThqQmc2MUdfMk1lWGxmYWsydlNLT3FBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw+qZMA0G
CSqGSIb3DQEBCwUAA4IBAQBMoAtblkuwhLDyl25k7FQPErPCZSP48zP2P4qp4ryp
AuTspxW/9V3YCKftxU4qFdw54PydRJ9d8xd1Xb4TnA1sA1DKn/g07MHbB3059rfM
JwDjUhSHZv4KzJ6LXHAl13nkyV1FO/1V6aaU49T7ZdCr9++iZPdB5Zxi0Oj5GpML
X8U//+slOAcTqQX5waTaJgJiQJTO0NEILxSGpR7uZJVgWuaE3YmxQMxdYCMILAGr
Cy3epSE6bfyTBMwRNGx67Lk5aE+tn0BiKCox8fjI8RSz9rP5XroPdJ9K+xBTF2ME
eYPjuun/gLa8OpNSNkI5UgN+wbguOH1CfvmyD3iFJq14
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:18 2024 by rpki-client on console-ams.rpki-client.org