Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/4UTg7Y6dsaXcHVc_1WmLeU4VOW8.roa
File: 4UTg7Y6dsaXcHVc_1WmLeU4VOW8.roa (raw, json)
Hash identifier: +ajVJhhyFuBoB+aOWD/tAFBnlZmS1SezA2Gh8MC8A28=
Subject key identifier: E1:44:E0:ED:8E:9D:B1:A5:DC:1D:57:3F:D5:69:8B:79:4E:15:39:6F
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 01856FF977A4DEFA30DA947957DF01A2586B
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/4UTg7Y6dsaXcHVc_1WmLeU4VOW8.roa
Signing time: Mon 02 Jan 2023 00:54:58 +0000
ROA not before: Mon 02 Jan 2023 00:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51383
IP address blocks: 195.34.97.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:77:a4:de:fa:30:da:94:79:57:df:01:a2:58:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Jan 2 00:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e144e0ed8e9db1a5dc1d573fd5698b794e15396f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:47:69:5f:e3:6e:72:09:63:dc:30:ed:94:de:
36:14:4c:31:cb:d7:99:6d:f9:2e:10:31:11:1f:38:
7e:ba:0e:f9:3f:b5:05:ff:15:6b:8b:b0:e8:3e:22:
9c:ee:c7:0e:3c:3e:16:6b:20:f8:70:76:2a:cc:28:
25:ae:f1:5c:b6:7c:40:d5:4a:a9:d3:80:c5:82:d5:
3b:23:65:08:91:b5:01:a8:7b:a7:94:98:c4:3f:fd:
48:7a:fc:c1:ad:df:2b:e3:2d:ff:35:fa:d8:fe:81:
43:85:ef:03:d9:cd:33:95:2e:6c:f7:05:c9:1e:bb:
22:6a:ca:67:83:f7:7f:b3:9b:83:8b:a3:08:2b:32:
ae:90:c7:82:03:e9:07:fe:0c:08:c9:9c:aa:0b:07:
11:06:0e:95:d4:99:08:c2:1f:f4:06:2f:2c:25:e3:
d5:74:8b:74:ab:49:13:be:40:ca:66:58:f3:91:46:
c7:e5:29:72:b4:e3:e3:a1:bf:a2:3f:9b:a6:38:e2:
81:fc:eb:bf:c8:ea:58:88:a7:9b:fd:42:99:c2:48:
3a:2f:c5:99:24:73:94:f1:52:37:8e:e6:71:29:88:
a3:b4:6f:9f:3d:0c:17:83:b4:9e:00:f8:60:3e:22:
66:b1:69:5e:c6:11:4a:5d:fb:f8:90:1e:9c:de:8d:
d7:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:44:E0:ED:8E:9D:B1:A5:DC:1D:57:3F:D5:69:8B:79:4E:15:39:6F
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/4UTg7Y6dsaXcHVc_1WmLeU4VOW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.34.97.0/24
Signature Algorithm: sha256WithRSAEncryption
91:4d:b2:ab:a1:c8:2b:72:31:c5:38:ae:77:e1:51:a7:f5:db:
a4:61:8d:ae:51:3e:32:44:46:6c:35:da:35:65:52:a5:4d:4d:
c3:67:ad:82:48:45:a9:fb:e2:7b:93:08:0d:1e:26:40:6f:93:
7e:49:05:50:b6:6f:f8:c8:bf:85:d8:02:eb:0d:9b:8c:56:79:
71:67:72:5a:7a:c3:f8:11:a2:fe:0b:3a:53:5c:ce:e7:e0:e4:
8a:a5:10:64:66:58:2c:4d:d0:4c:84:53:63:fe:d2:6a:42:42:
c4:77:29:77:e2:bc:d5:99:e3:a3:45:4e:1c:9c:d6:1d:ef:40:
8b:ab:dd:cb:12:77:70:40:75:db:1a:42:1e:95:fa:aa:01:5c:
c5:08:bd:b0:fb:5d:ad:09:cc:ec:db:a8:81:23:30:e7:17:84:
72:b3:be:8b:03:0c:34:a6:f4:d0:b5:06:97:fd:d5:1d:3c:5b:
ce:cd:f5:c1:32:25:cc:d8:8a:f8:b8:4b:24:ac:fd:7a:14:d6:
4b:3a:c3:14:66:cc:dd:24:65:3f:d3:2e:ba:f1:f0:9e:75:ac:
bd:36:8f:3a:f4:8c:02:82:7b:0b:40:66:e9:16:c2:fd:0e:04:
25:91:f4:17:fc:cc:ef:ff:cd:07:9b:a1:31:cc:97:d8:04:63:
1f:ff:9c:83
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVv+Xek3vow2pR5V98BolhrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1NDhjZWRmMTcwMjllZDk4YTEwODExM2M2YzEwOWVjYWNj
ZDgyZWMwHhcNMjMwMTAyMDA1NDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMTQ0ZTBlZDhlOWRiMWE1ZGMxZDU3M2ZkNTY5OGI3OTRlMTUzOTZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyEdpX+Nucglj3DDtlN42FEwxy9eZ
bfkuEDERHzh+ug75P7UF/xVri7DoPiKc7scOPD4WayD4cHYqzCglrvFctnxA1Uqp
04DFgtU7I2UIkbUBqHunlJjEP/1IevzBrd8r4y3/NfrY/oFDhe8D2c0zlS5s9wXJ
Hrsiaspng/d/s5uDi6MIKzKukMeCA+kH/gwIyZyqCwcRBg6V1JkIwh/0Bi8sJePV
dIt0q0kTvkDKZljzkUbH5SlytOPjob+iP5umOOKB/Ou/yOpYiKeb/UKZwkg6L8WZ
JHOU8VI3juZxKYijtG+fPQwXg7SeAPhgPiJmsWlexhFKXfv4kB6c3o3X0QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOFE4O2OnbGl3B1XP9Vpi3lOFTlvMB8GA1UdIwQY
MBaAFAVIzt8XAp7ZihCBE8bBCeyszYLsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlVqTzN4Y0NudG1LRUlFVHhzRUo3S3pOZ3V3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS81NDFjMDUtOGQ3ZC00MmI4LWFiMDAt
N2ZiYmFlNmY5NDM3LzEvNFVUZzdZNmRzYVhjSFZjXzFXbUxlVTRWT1c4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS81NDFjMDUtOGQ3ZC00MmI4LWFiMDAtN2ZiYmFlNmY5NDM3
LzEvQlVqTzN4Y0NudG1LRUlFVHhzRUo3S3pOZ3V3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwyJhMA0G
CSqGSIb3DQEBCwUAA4IBAQCRTbKrocgrcjHFOK534VGn9dukYY2uUT4yREZsNdo1
ZVKlTU3DZ62CSEWp++J7kwgNHiZAb5N+SQVQtm/4yL+F2ALrDZuMVnlxZ3JaesP4
EaL+CzpTXM7n4OSKpRBkZlgsTdBMhFNj/tJqQkLEdyl34rzVmeOjRU4cnNYd70CL
q93LEndwQHXbGkIelfqqAVzFCL2w+12tCczs26iBIzDnF4Rys76LAww0pvTQtQaX
/dUdPFvOzfXBMiXM2Ir4uEskrP16FNZLOsMUZszdJGU/0y668fCeday9No869IwC
gnsLQGbpFsL9DgQlkfQX/Mzv/80Hm6ExzJfYBGMf/5yD
-----END CERTIFICATE-----
Generated at Mon Jan 1 21:18:43 2024 by rpki-client on console-ams.rpki-client.org