Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/OYSmpJXaOdMPNeo0J4bSC_Np4sQ.roa
File: OYSmpJXaOdMPNeo0J4bSC_Np4sQ.roa (raw, json)
Hash identifier: +kZPTgYrNW07TEHrpE75Gi6O03dFbKfvElBnUno+YNs=
Subject key identifier: 39:84:A6:A4:95:DA:39:D3:0F:35:EA:34:27:86:D2:0B:F3:69:E2:C4
Certificate issuer: /CN=1f61aa5d1befd7a0fe3e4dfe3aa8da73efcfba34
Certificate serial: 01921EC5A42C34B0B0476896CE04063A00AB
Authority key identifier: 1F:61:AA:5D:1B:EF:D7:A0:FE:3E:4D:FE:3A:A8:DA:73:EF:CF:BA:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H2GqXRvv16D-Pk3-Oqjac-_PujQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/OYSmpJXaOdMPNeo0J4bSC_Np4sQ.roa
Signing time: Mon 23 Sep 2024 12:05:21 +0000
ROA not before: Mon 23 Sep 2024 12:05:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 54252
IP address blocks: 45.95.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Sep 2024 10:41:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:1e:c5:a4:2c:34:b0:b0:47:68:96:ce:04:06:3a:00:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f61aa5d1befd7a0fe3e4dfe3aa8da73efcfba34
Validity
Not Before: Sep 23 12:05:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3984a6a495da39d30f35ea342786d20bf369e2c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:83:78:48:d0:61:3c:b7:20:7e:d1:1d:c4:f9:
34:a0:64:4e:2c:f5:f8:0a:a7:68:6c:69:68:3b:48:
bf:42:8b:1b:87:1e:a4:28:30:77:36:fe:da:62:39:
cc:67:08:72:40:bc:c1:22:8f:51:8d:9e:28:6a:45:
ac:1f:83:4f:8e:de:58:d1:e0:d1:82:ac:35:b8:31:
f4:0f:01:f4:ec:80:3f:94:e4:09:f1:cb:aa:0b:55:
ca:b0:34:32:75:c8:07:c1:a5:c9:d9:c2:b9:6b:13:
f8:69:a1:ec:74:fd:37:1f:6c:eb:63:6b:ce:c5:7e:
64:f7:0a:50:be:85:8c:11:ba:b0:39:2a:9b:47:0d:
da:a2:47:07:d9:61:d7:b6:1a:6f:65:17:9f:32:e1:
0d:e4:df:77:b7:a2:dd:76:e2:2b:6d:52:0f:2f:4c:
28:e1:79:c4:b2:2a:9e:67:36:16:51:3f:95:5e:25:
02:ad:77:f0:c2:fd:97:3a:0e:b2:95:b8:01:7a:4c:
3b:2c:21:87:dd:cc:e6:94:c1:7f:ee:89:c5:70:5b:
52:e1:a9:72:c6:c9:f1:28:ce:cb:be:c5:46:39:b4:
ac:75:82:d8:4c:1f:fc:13:c7:26:87:67:00:bf:d1:
94:3f:71:c7:07:c4:26:6c:39:c5:df:80:f3:f3:98:
a9:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:84:A6:A4:95:DA:39:D3:0F:35:EA:34:27:86:D2:0B:F3:69:E2:C4
X509v3 Authority Key Identifier:
keyid:1F:61:AA:5D:1B:EF:D7:A0:FE:3E:4D:FE:3A:A8:DA:73:EF:CF:BA:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H2GqXRvv16D-Pk3-Oqjac-_PujQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/OYSmpJXaOdMPNeo0J4bSC_Np4sQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/H2GqXRvv16D-Pk3-Oqjac-_PujQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.205.0/24
Signature Algorithm: sha256WithRSAEncryption
55:5e:f8:cf:9c:00:26:9f:a6:01:9b:85:a6:83:c6:69:77:58:
9e:42:bf:a5:63:2a:8b:0a:0b:f1:ae:3c:30:24:da:ba:80:c5:
37:19:70:56:1d:25:56:59:e1:b3:54:86:62:02:0c:fd:1f:69:
bc:04:d9:63:f8:e9:4b:2f:17:e3:d6:11:60:88:26:44:4d:79:
ba:a5:d4:c9:99:3b:ac:ef:0e:b2:88:40:05:9e:52:e7:1d:62:
82:46:d7:7c:25:3a:7b:bd:33:63:a6:ff:49:c7:60:80:fc:69:
e7:95:8f:45:11:a2:70:99:11:3a:c8:bf:cf:99:61:fd:e6:a6:
2e:9e:63:d7:b0:c5:41:b5:79:51:ee:27:cc:9b:ec:bc:b5:8a:
e0:24:02:38:e8:e8:6a:45:aa:57:4a:fe:13:43:cb:71:7e:2f:
e7:85:98:23:24:aa:18:33:20:0d:6e:2e:95:e1:6a:39:ce:35:
19:af:bf:ff:12:b7:12:69:b0:9f:45:c7:6b:c4:86:b4:da:63:
0e:85:9e:42:8a:92:87:cd:a5:96:41:bd:d0:6e:60:0b:e2:09:
65:b4:2e:93:f9:7c:9f:a8:cd:8c:2d:24:44:85:26:31:f0:47:
96:ff:66:cb:c3:97:75:c3:3e:ba:1f:ba:42:fa:06:76:22:d1:
60:b8:c5:a5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZIexaQsNLCwR2iWzgQGOgCrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmNjFhYTVkMWJlZmQ3YTBmZTNlNGRmZTNhYThkYTczZWZj
ZmJhMzQwHhcNMjQwOTIzMTIwNTIxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzOTg0YTZhNDk1ZGEzOWQzMGYzNWVhMzQyNzg2ZDIwYmYzNjllMmM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjYN4SNBhPLcgftEdxPk0oGROLPX4
CqdobGloO0i/Qosbhx6kKDB3Nv7aYjnMZwhyQLzBIo9RjZ4oakWsH4NPjt5Y0eDR
gqw1uDH0DwH07IA/lOQJ8cuqC1XKsDQydcgHwaXJ2cK5axP4aaHsdP03H2zrY2vO
xX5k9wpQvoWMEbqwOSqbRw3aokcH2WHXthpvZRefMuEN5N93t6LdduIrbVIPL0wo
4XnEsiqeZzYWUT+VXiUCrXfwwv2XOg6ylbgBekw7LCGH3czmlMF/7onFcFtS4aly
xsnxKM7LvsVGObSsdYLYTB/8E8cmh2cAv9GUP3HHB8QmbDnF34Dz85ipjQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDmEpqSV2jnTDzXqNCeG0gvzaeLEMB8GA1UdIwQY
MBaAFB9hql0b79eg/j5N/jqo2nPvz7o0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSDJHcVhSdnYxNkQtUGszLU9xamFjLV9QdWpRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy8wYWQ0MTQtM2RmMS00YjM4LTg2OWUt
YzYyMWU4ZGY5NWZmLzEvT1lTbXBKWGFPZE1QTmVvMEo0YlNDX05wNHNRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy8wYWQ0MTQtM2RmMS00YjM4LTg2OWUtYzYyMWU4ZGY5NWZm
LzEvSDJHcVhSdnYxNkQtUGszLU9xamFjLV9QdWpRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALV/NMA0G
CSqGSIb3DQEBCwUAA4IBAQBVXvjPnAAmn6YBm4Wmg8Zpd1ieQr+lYyqLCgvxrjww
JNq6gMU3GXBWHSVWWeGzVIZiAgz9H2m8BNlj+OlLLxfj1hFgiCZETXm6pdTJmTus
7w6yiEAFnlLnHWKCRtd8JTp7vTNjpv9Jx2CA/GnnlY9FEaJwmRE6yL/PmWH95qYu
nmPXsMVBtXlR7ifMm+y8tYrgJAI46OhqRapXSv4TQ8txfi/nhZgjJKoYMyANbi6V
4Wo5zjUZr7//ErcSabCfRcdrxIa02mMOhZ5CipKHzaWWQb3QbmAL4glltC6T+Xyf
qM2MLSREhSYx8EeW/2bLw5d1wz66H7pC+gZ2ItFguMWl
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:25:33 2025 by rpki-client