Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/b57852-1fd7-40fd-91ff-12518429fa63/1/2Pis2CtIQHj1MyypUb0g9b7s71c.roa
File: 2Pis2CtIQHj1MyypUb0g9b7s71c.roa (raw, json)
Hash identifier: qkvzQcekCkE335NpQ4X9ZAt5lHMRxS7/to5EVP6Xmzs=
Subject key identifier: D8:F8:AC:D8:2B:48:40:78:F5:33:2C:A9:51:BD:20:F5:BE:EC:EF:57
Certificate issuer: /CN=a15b19638611f3e1f7644a7e3bb71d0ca374919e
Certificate serial: 0190C11CE39A963A552314F0B3479D8F26E2
Authority key identifier: A1:5B:19:63:86:11:F3:E1:F7:64:4A:7E:3B:B7:1D:0C:A3:74:91:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oVsZY4YR8-H3ZEp-O7cdDKN0kZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/b57852-1fd7-40fd-91ff-12518429fa63/1/2Pis2CtIQHj1MyypUb0g9b7s71c.roa
Signing time: Wed 17 Jul 2024 14:33:34 +0000
ROA not before: Wed 17 Jul 2024 14:33:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34918
IP address blocks: 195.158.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 27 Aug 2024 10:14:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:c1:1c:e3:9a:96:3a:55:23:14:f0:b3:47:9d:8f:26:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a15b19638611f3e1f7644a7e3bb71d0ca374919e
Validity
Not Before: Jul 17 14:33:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d8f8acd82b484078f5332ca951bd20f5beecef57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b2:bd:77:cd:b1:e2:3e:a7:7c:71:3f:f0:ab:
b0:87:63:88:7c:4a:9d:18:b3:d7:f9:27:36:62:e5:
01:e4:a9:77:04:a2:17:fb:67:a5:24:32:8a:53:97:
e4:25:b1:13:ad:12:78:30:90:a8:93:22:f0:03:13:
f5:10:6c:fd:c3:a4:84:68:17:56:9a:ef:2e:02:f7:
2d:21:2a:81:7f:12:aa:6d:87:7f:57:df:7c:dc:23:
25:9c:9c:22:1c:d1:2d:f1:f2:bd:4b:98:39:43:00:
c8:53:3b:52:9a:13:57:dd:85:85:4d:21:26:97:09:
f6:27:62:a1:8f:28:55:09:13:3e:72:97:33:fd:2e:
5b:1b:3b:f8:b7:fd:f7:a9:b8:6c:aa:f5:0f:3e:cc:
68:f0:bb:c7:eb:80:57:c4:b0:21:78:bc:4d:a3:82:
69:b6:d5:2f:17:bf:e1:01:1f:4a:8a:b8:9c:94:69:
d8:ad:19:6b:0d:50:3a:16:38:f3:a5:4a:66:83:66:
be:e8:34:d0:80:a0:c8:43:13:ff:20:43:fd:f1:f8:
72:4d:2f:34:8d:97:03:45:52:28:13:a5:15:e5:90:
6d:47:1f:f0:ce:9d:1d:22:d9:8f:2d:3c:c2:7f:3e:
99:e2:90:61:77:94:11:05:1d:91:7b:b3:1d:9a:aa:
9a:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:F8:AC:D8:2B:48:40:78:F5:33:2C:A9:51:BD:20:F5:BE:EC:EF:57
X509v3 Authority Key Identifier:
keyid:A1:5B:19:63:86:11:F3:E1:F7:64:4A:7E:3B:B7:1D:0C:A3:74:91:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oVsZY4YR8-H3ZEp-O7cdDKN0kZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b57852-1fd7-40fd-91ff-12518429fa63/1/2Pis2CtIQHj1MyypUb0g9b7s71c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b57852-1fd7-40fd-91ff-12518429fa63/1/oVsZY4YR8-H3ZEp-O7cdDKN0kZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.158.230.0/24
Signature Algorithm: sha256WithRSAEncryption
86:a1:43:6c:4f:7f:bf:54:e5:5c:cb:45:fc:90:43:0e:44:bb:
40:59:4b:f5:4d:c4:ae:f8:8f:74:99:b1:a9:cc:86:f8:21:56:
70:d2:a3:11:4b:f6:a7:f9:8b:84:cc:f8:2a:72:02:9a:45:36:
12:63:81:54:38:e7:8d:3a:9d:fc:dc:9c:5e:5c:e7:60:4f:6d:
93:91:52:49:f4:e5:7f:88:80:8b:2c:35:62:c3:53:bc:19:52:
65:72:ce:d2:4a:c0:ba:a9:17:8e:89:bb:43:f7:4c:b8:42:e8:
80:0a:80:82:22:83:aa:85:67:70:91:81:ae:4e:8f:b5:5e:56:
64:86:0d:74:48:7d:d9:2c:dd:6b:db:4f:22:a9:31:10:e5:6a:
53:8a:62:58:b2:ea:a6:c3:83:1f:5e:70:6c:c3:42:ca:8f:80:
c9:41:5f:b2:16:e6:70:f2:fe:32:4e:59:bc:e9:6c:e4:2a:7d:
90:03:c7:cd:17:d3:19:81:b7:bd:ca:e8:e0:15:19:90:6d:46:
3c:42:6a:fe:05:a4:43:ea:8e:59:e0:42:2c:9c:0f:f9:bf:ba:
2f:9a:0b:f9:df:8e:c7:9b:b1:ab:25:85:0a:10:1d:fa:24:f0:
3b:02:a8:b7:53:89:a6:d6:76:01:a9:61:19:98:2d:b7:82:ae:
f0:f2:71:fe
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZDBHOOaljpVIxTws0edjybiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExNWIxOTYzODYxMWYzZTFmNzY0NGE3ZTNiYjcxZDBjYTM3
NDkxOWUwHhcNMjQwNzE3MTQzMzM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkOGY4YWNkODJiNDg0MDc4ZjUzMzJjYTk1MWJkMjBmNWJlZWNlZjU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqLK9d82x4j6nfHE/8Kuwh2OIfEqd
GLPX+Sc2YuUB5Kl3BKIX+2elJDKKU5fkJbETrRJ4MJCokyLwAxP1EGz9w6SEaBdW
mu8uAvctISqBfxKqbYd/V9983CMlnJwiHNEt8fK9S5g5QwDIUztSmhNX3YWFTSEm
lwn2J2KhjyhVCRM+cpcz/S5bGzv4t/33qbhsqvUPPsxo8LvH64BXxLAheLxNo4Jp
ttUvF7/hAR9KiriclGnYrRlrDVA6FjjzpUpmg2a+6DTQgKDIQxP/IEP98fhyTS80
jZcDRVIoE6UV5ZBtRx/wzp0dItmPLTzCfz6Z4pBhd5QRBR2Re7MdmqqaXwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNj4rNgrSEB49TMsqVG9IPW+7O9XMB8GA1UdIwQY
MBaAFKFbGWOGEfPh92RKfju3HQyjdJGeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1ZzWlk0WVI4LUgzWkVwLU83Y2RES04wa1o0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9iNTc4NTItMWZkNy00MGZkLTkxZmYt
MTI1MTg0MjlmYTYzLzEvMlBpczJDdElRSGoxTXl5cFViMGc5YjdzNzFjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC9iNTc4NTItMWZkNy00MGZkLTkxZmYtMTI1MTg0MjlmYTYz
LzEvb1ZzWlk0WVI4LUgzWkVwLU83Y2RES04wa1o0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw57mMA0G
CSqGSIb3DQEBCwUAA4IBAQCGoUNsT3+/VOVcy0X8kEMORLtAWUv1TcSu+I90mbGp
zIb4IVZw0qMRS/an+YuEzPgqcgKaRTYSY4FUOOeNOp383JxeXOdgT22TkVJJ9OV/
iICLLDViw1O8GVJlcs7SSsC6qReOibtD90y4QuiACoCCIoOqhWdwkYGuTo+1XlZk
hg10SH3ZLN1r208iqTEQ5WpTimJYsuqmw4MfXnBsw0LKj4DJQV+yFuZw8v4yTlm8
6WzkKn2QA8fNF9MZgbe9yujgFRmQbUY8Qmr+BaRD6o5Z4EIsnA/5v7ovmgv5347H
m7GrJYUKEB36JPA7Aqi3U4mm1nYBqWEZmC23gq7w8nH+
-----END CERTIFICATE-----
Generated at Tue Apr 22 04:12:31 2025 by rpki-client