Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/2710b0-6c4a-4a94-b92a-b1cefc995379/1/Le4yGib_rMhNVhJk7X19Ox87F20.roa
File: Le4yGib_rMhNVhJk7X19Ox87F20.roa (raw, json)
Hash identifier: QL4Ll32RMAgpLfF5O3qe6dU+dU4liuvqX+3h96FofSw=
Subject key identifier: 2D:EE:32:1A:26:FF:AC:C8:4D:56:12:64:ED:7D:7D:3B:1F:3B:17:6D
Certificate issuer: /CN=3ec2c20d6b3acf84802c2b7ca0722deb72c670bb
Certificate serial: 018572A7FA95E54A94091A329D57D59C7C7A
Authority key identifier: 3E:C2:C2:0D:6B:3A:CF:84:80:2C:2B:7C:A0:72:2D:EB:72:C6:70:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PsLCDWs6z4SALCt8oHIt63LGcLs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/2710b0-6c4a-4a94-b92a-b1cefc995379/1/Le4yGib_rMhNVhJk7X19Ox87F20.roa
Signing time: Mon 02 Jan 2023 13:24:49 +0000
ROA not before: Mon 02 Jan 2023 13:24:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 195.211.167.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 16 Jan 2023 10:43:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:a7:fa:95:e5:4a:94:09:1a:32:9d:57:d5:9c:7c:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ec2c20d6b3acf84802c2b7ca0722deb72c670bb
Validity
Not Before: Jan 2 13:24:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2dee321a26ffacc84d561264ed7d7d3b1f3b176d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:2c:75:06:3d:1b:0d:24:18:4e:bf:ba:f1:c1:
36:58:b0:eb:13:85:56:36:2a:78:9b:77:25:18:72:
46:f3:7c:51:90:af:f0:42:28:f1:ae:6b:20:f7:50:
d6:90:df:e4:c2:c8:12:ba:fe:9f:37:c1:e9:ec:3f:
8f:cb:86:55:55:09:09:d7:cb:b6:aa:6f:28:f4:d0:
77:35:96:ef:91:bf:19:9f:79:e3:21:00:82:f7:ed:
12:77:a6:2a:f4:5c:37:ad:cb:18:52:1b:b2:b5:e5:
83:1a:93:08:05:a4:f5:7c:bf:be:eb:51:b6:b7:aa:
8c:46:86:0c:d0:8f:93:97:32:5d:bc:ca:83:76:89:
f9:c1:79:89:06:bd:21:d1:97:0b:e6:93:8f:1c:a0:
a6:de:9f:31:25:c6:88:4b:59:b5:82:88:41:80:88:
a2:f2:c7:7d:33:8e:bb:ca:57:82:59:3e:ff:d8:05:
0e:7d:62:9c:55:ac:23:ad:62:9b:dd:e7:2a:db:8a:
06:08:f7:04:df:3e:5d:60:3b:cd:70:3d:db:77:7d:
07:be:66:a7:1b:22:fe:16:d5:a8:57:41:d7:f0:bd:
38:6e:1e:00:92:f2:cc:04:4e:dc:49:8f:35:8f:7a:
d0:26:43:ac:06:fb:e9:a1:a3:a5:86:35:89:8f:85:
b8:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:EE:32:1A:26:FF:AC:C8:4D:56:12:64:ED:7D:7D:3B:1F:3B:17:6D
X509v3 Authority Key Identifier:
keyid:3E:C2:C2:0D:6B:3A:CF:84:80:2C:2B:7C:A0:72:2D:EB:72:C6:70:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PsLCDWs6z4SALCt8oHIt63LGcLs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/2710b0-6c4a-4a94-b92a-b1cefc995379/1/Le4yGib_rMhNVhJk7X19Ox87F20.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/2710b0-6c4a-4a94-b92a-b1cefc995379/1/PsLCDWs6z4SALCt8oHIt63LGcLs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.211.167.0/24
Signature Algorithm: sha256WithRSAEncryption
56:3f:0e:b4:8b:b5:3d:f1:24:a9:34:e5:66:17:14:7e:87:91:
35:52:2f:b8:e3:c6:f4:00:45:bb:90:23:3c:6d:ca:6e:a5:71:
82:db:e0:54:97:69:58:21:19:19:0c:85:a6:c4:9f:b7:ab:d8:
1d:68:1f:da:4b:41:65:08:51:b8:bc:bf:59:4f:af:84:29:a5:
39:87:ac:3f:91:6e:4c:0e:56:cc:55:37:c2:bf:cf:c5:e1:a5:
f9:05:d2:fb:0e:4e:bd:90:9f:1e:0f:3c:47:ce:6c:3a:8a:48:
86:82:58:08:28:42:af:5d:d3:6f:a8:e0:3e:76:74:d4:1c:a8:
71:39:15:66:ed:b4:8b:82:45:3a:4d:14:7b:26:76:6f:07:d1:
44:d9:e6:6a:4b:a1:e6:af:1f:d0:97:07:f2:80:59:66:eb:be:
fb:a3:47:09:92:b7:0f:48:23:df:29:84:dc:51:e4:58:9c:2e:
e1:5e:a9:4a:8d:a4:06:b7:cc:48:a5:07:fc:f4:88:14:14:17:
7f:25:70:94:0c:ae:9c:2f:7b:49:f5:81:5a:2e:80:47:cf:d9:
c1:93:5c:6d:1b:7f:f6:41:b5:76:e0:6d:bd:8a:56:bd:00:c2:
68:ce:d7:93:b3:f0:30:a4:d8:08:b6:fc:5e:c2:cf:0e:48:a6:
74:54:5f:d0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyp/qV5UqUCRoynVfVnHx6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlYzJjMjBkNmIzYWNmODQ4MDJjMmI3Y2EwNzIyZGViNzJj
NjcwYmIwHhcNMjMwMTAyMTMyNDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZGVlMzIxYTI2ZmZhY2M4NGQ1NjEyNjRlZDdkN2QzYjFmM2IxNzZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtix1Bj0bDSQYTr+68cE2WLDrE4VW
Nip4m3clGHJG83xRkK/wQijxrmsg91DWkN/kwsgSuv6fN8Hp7D+Py4ZVVQkJ18u2
qm8o9NB3NZbvkb8Zn3njIQCC9+0Sd6Yq9Fw3rcsYUhuyteWDGpMIBaT1fL++61G2
t6qMRoYM0I+TlzJdvMqDdon5wXmJBr0h0ZcL5pOPHKCm3p8xJcaIS1m1gohBgIii
8sd9M467yleCWT7/2AUOfWKcVawjrWKb3ecq24oGCPcE3z5dYDvNcD3bd30Hvman
GyL+FtWoV0HX8L04bh4AkvLMBE7cSY81j3rQJkOsBvvpoaOlhjWJj4W4RwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC3uMhom/6zITVYSZO19fTsfOxdtMB8GA1UdIwQY
MBaAFD7Cwg1rOs+EgCwrfKByLetyxnC7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUHNMQ0RXczZ6NFNBTEN0OG9ISXQ2M0xHY0xzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC8yNzEwYjAtNmM0YS00YTk0LWI5MmEt
YjFjZWZjOTk1Mzc5LzEvTGU0eUdpYl9yTWhOVmhKazdYMTlPeDg3RjIwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC8yNzEwYjAtNmM0YS00YTk0LWI5MmEtYjFjZWZjOTk1Mzc5
LzEvUHNMQ0RXczZ6NFNBTEN0OG9ISXQ2M0xHY0xzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw9OnMA0G
CSqGSIb3DQEBCwUAA4IBAQBWPw60i7U98SSpNOVmFxR+h5E1Ui+448b0AEW7kCM8
bcpupXGC2+BUl2lYIRkZDIWmxJ+3q9gdaB/aS0FlCFG4vL9ZT6+EKaU5h6w/kW5M
DlbMVTfCv8/F4aX5BdL7Dk69kJ8eDzxHzmw6ikiGglgIKEKvXdNvqOA+dnTUHKhx
ORVm7bSLgkU6TRR7JnZvB9FE2eZqS6Hmrx/QlwfygFlm6777o0cJkrcPSCPfKYTc
UeRYnC7hXqlKjaQGt8xIpQf89IgUFBd/JXCUDK6cL3tJ9YFaLoBHz9nBk1xtG3/2
QbV24G29ila9AMJozteTs/AwpNgItvxews8OSKZ0VF/Q
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:28 2024 by rpki-client on console-fra.rpki-client.org