Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/19D3PI3NQ-NY5HE1Tu5f8luf5YA.roa
File: 19D3PI3NQ-NY5HE1Tu5f8luf5YA.roa (raw, json)
Hash identifier: YDZJQnLMlGyi1JxfxZLREYVlfvEKMIyF0WeW12R6K90=
Subject key identifier: D7:D0:F7:3C:8D:CD:43:E3:58:E4:71:35:4E:EE:5F:F2:5B:9F:E5:80
Certificate issuer: /CN=683b33dc7218b3fe883c49505134cb39a664fd28
Certificate serial: 01856CC146F1AFD0091E78B61048E549C237
Authority key identifier: 68:3B:33:DC:72:18:B3:FE:88:3C:49:50:51:34:CB:39:A6:64:FD:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/19D3PI3NQ-NY5HE1Tu5f8luf5YA.roa
Signing time: Sun 01 Jan 2023 09:54:44 +0000
ROA not before: Sun 01 Jan 2023 09:54:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29275
IP address blocks: 195.137.196.0/24 maxlen: 24
195.137.197.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 26 Oct 2023 12:55:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:c1:46:f1:af:d0:09:1e:78:b6:10:48:e5:49:c2:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=683b33dc7218b3fe883c49505134cb39a664fd28
Validity
Not Before: Jan 1 09:54:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d7d0f73c8dcd43e358e471354eee5ff25b9fe580
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:19:4e:aa:ed:99:89:90:2a:2f:d0:0d:21:4d:
eb:ac:01:24:8f:2e:6a:5f:48:3b:03:f8:19:7a:5b:
b9:a0:6e:e6:65:2a:d6:70:2c:c3:3b:4c:33:c4:01:
61:9c:30:51:ac:a4:38:fa:e1:a8:95:8b:35:4c:9c:
b4:8c:67:d4:6d:d0:a6:ad:62:8d:82:47:37:26:ac:
31:e4:04:76:33:aa:da:98:d5:ed:d5:53:7c:de:87:
77:18:3c:94:6a:dc:ba:06:5f:5e:d5:93:bb:b3:66:
ff:f0:28:0e:e9:7d:b4:25:db:27:b1:cb:67:99:91:
b0:60:6c:eb:ec:1f:f0:1e:35:54:e0:f3:bc:8b:97:
da:4e:3f:49:1c:67:a1:0a:c1:c1:ce:54:cc:be:45:
b5:ed:68:f9:02:ef:8a:cc:12:35:77:a2:cd:2c:ca:
ca:7f:54:d8:36:e3:0e:9c:70:c9:14:84:9e:e9:2d:
69:8c:09:b8:66:c1:cb:02:55:d6:17:8c:1a:6c:ad:
ae:a5:f1:9d:54:89:46:04:40:a0:1f:f0:0e:ad:0a:
59:3e:c1:08:8d:4d:8d:24:98:c5:7f:e3:dd:17:33:
5b:f7:af:c3:32:0e:11:1a:d7:63:76:bd:36:67:fd:
88:a7:f3:83:39:24:27:cf:6f:85:c6:9f:ff:9e:53:
7b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:D0:F7:3C:8D:CD:43:E3:58:E4:71:35:4E:EE:5F:F2:5B:9F:E5:80
X509v3 Authority Key Identifier:
keyid:68:3B:33:DC:72:18:B3:FE:88:3C:49:50:51:34:CB:39:A6:64:FD:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/19D3PI3NQ-NY5HE1Tu5f8luf5YA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.137.196.0/23
Signature Algorithm: sha256WithRSAEncryption
8e:35:c2:06:fa:a6:cf:00:1e:de:89:60:fe:c1:c0:80:ab:c1:
4b:a3:a2:45:bb:d7:8d:df:25:85:a5:b9:f8:8a:ba:01:96:d5:
b4:37:7e:f8:35:5c:fd:c1:c0:53:da:38:87:5b:a6:2c:00:70:
e4:da:fd:bb:5f:a6:f8:9f:df:b6:f2:c5:13:7d:2d:fb:62:73:
3a:f4:ba:50:ac:4e:54:f6:86:af:0b:63:de:28:8a:81:e7:63:
01:fb:5b:ac:ba:6a:b2:09:59:fb:e0:f2:68:2d:2c:81:cc:a6:
ed:ec:a9:d4:72:19:87:36:90:56:6c:d7:ed:02:0c:4c:f4:96:
58:bc:4f:50:12:bd:b8:9a:4f:65:0a:d4:63:b6:ba:4a:6b:ee:
b2:a9:68:60:2a:aa:64:b3:e2:31:f2:3f:8a:13:eb:96:a0:43:
40:db:f7:f6:ae:ca:ee:92:95:85:05:19:2b:83:0e:ce:a6:03:
12:46:49:e6:ee:c1:11:77:90:a6:c7:ed:e3:eb:dd:3c:a2:85:
d3:ab:f8:63:f8:9c:12:19:3e:47:48:96:38:27:1d:29:dd:50:
dc:dc:f6:43:78:b7:6b:80:5c:16:9b:74:6f:ef:a0:31:1e:db:
3e:fa:a5:6e:03:02:40:26:7f:03:cc:d0:6e:0d:8a:38:6d:59:
7f:d2:de:2b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVswUbxr9AJHni2EEjlScI3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4M2IzM2RjNzIxOGIzZmU4ODNjNDk1MDUxMzRjYjM5YTY2
NGZkMjgwHhcNMjMwMTAxMDk1NDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkN2QwZjczYzhkY2Q0M2UzNThlNDcxMzU0ZWVlNWZmMjViOWZlNTgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkhlOqu2ZiZAqL9ANIU3rrAEkjy5q
X0g7A/gZelu5oG7mZSrWcCzDO0wzxAFhnDBRrKQ4+uGolYs1TJy0jGfUbdCmrWKN
gkc3Jqwx5AR2M6ramNXt1VN83od3GDyUaty6Bl9e1ZO7s2b/8CgO6X20Jdsnsctn
mZGwYGzr7B/wHjVU4PO8i5faTj9JHGehCsHBzlTMvkW17Wj5Au+KzBI1d6LNLMrK
f1TYNuMOnHDJFISe6S1pjAm4ZsHLAlXWF4wabK2upfGdVIlGBECgH/AOrQpZPsEI
jU2NJJjFf+PdFzNb96/DMg4RGtdjdr02Z/2Ip/ODOSQnz2+Fxp//nlN7dQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNfQ9zyNzUPjWORxNU7uX/Jbn+WAMB8GA1UdIwQY
MBaAFGg7M9xyGLP+iDxJUFE0yzmmZP0oMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYURzejNISVlzXzZJUEVsUVVUVExPYVprX1NnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi9iZTNlMDAtM2M5Ni00Y2RlLWI4MWEt
MTRjNmI5NTRkOTc2LzEvMTlEM1BJM05RLU5ZNUhFMVR1NWY4bHVmNVlBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi9iZTNlMDAtM2M5Ni00Y2RlLWI4MWEtMTRjNmI5NTRkOTc2
LzEvYURzejNISVlzXzZJUEVsUVVUVExPYVprX1NnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBw4nEMA0G
CSqGSIb3DQEBCwUAA4IBAQCONcIG+qbPAB7eiWD+wcCAq8FLo6JFu9eN3yWFpbn4
iroBltW0N374NVz9wcBT2jiHW6YsAHDk2v27X6b4n9+28sUTfS37YnM69LpQrE5U
9oavC2PeKIqB52MB+1usumqyCVn74PJoLSyBzKbt7KnUchmHNpBWbNftAgxM9JZY
vE9QEr24mk9lCtRjtrpKa+6yqWhgKqpks+Ix8j+KE+uWoENA2/f2rsrukpWFBRkr
gw7OpgMSRknm7sERd5Cmx+3j6908ooXTq/hj+JwSGT5HSJY4Jx0p3VDc3PZDeLdr
gFwWm3Rv76AxHts++qVuAwJAJn8DzNBuDYo4bVl/0t4r
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:24 2024 by rpki-client on console-ams.rpki-client.org