Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/lUzcL42BudJ08VCQjG9RrSe8958.roa
File: lUzcL42BudJ08VCQjG9RrSe8958.roa (raw, json)
Hash identifier: /lT66qcskLb1ZbRrAcKswoWQzODwjQW8qd53Oqhk8HA=
Subject key identifier: 95:4C:DC:2F:8D:81:B9:D2:74:F1:50:90:8C:6F:51:AD:27:BC:F7:9F
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 01856DEF6A7EB48BE56A1E697131DC80F3D7
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/lUzcL42BudJ08VCQjG9RrSe8958.roa
Signing time: Sun 01 Jan 2023 15:24:44 +0000
ROA not before: Sun 01 Jan 2023 15:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35275
IP address blocks: 195.187.154.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ef:6a:7e:b4:8b:e5:6a:1e:69:71:31:dc:80:f3:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Jan 1 15:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=954cdc2f8d81b9d274f150908c6f51ad27bcf79f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ef:34:a5:87:a4:03:01:8c:4c:7f:ae:89:3d:
12:17:b6:70:18:83:e7:33:8b:3f:12:0f:96:61:4d:
95:bd:c1:e1:1b:70:60:89:d1:2c:9d:80:9e:12:bb:
61:2e:86:5b:e4:0a:98:cf:5a:c3:cf:51:fe:43:e5:
02:1a:bb:db:2e:aa:73:39:36:6b:74:df:1c:0a:41:
91:5a:40:85:91:5e:96:59:2c:df:37:21:76:3e:fa:
ff:69:0e:e8:fd:75:bd:5b:4d:be:83:79:91:08:4a:
b8:1d:51:bc:9c:0a:ce:bc:89:df:ae:86:5b:df:e2:
49:15:9c:4a:50:49:38:a4:68:3c:4f:e3:54:67:12:
fd:a5:4f:91:74:c2:c5:05:cd:89:72:b8:45:c6:f4:
b8:cd:db:04:48:c8:65:72:9f:4d:d5:79:0a:dd:39:
18:ea:0a:b3:a9:c1:0a:3e:0a:5b:d7:d4:bf:4c:38:
78:ad:2b:55:c9:4d:71:47:20:39:1f:10:eb:77:3c:
ec:04:9a:27:83:cd:83:b1:1e:b6:2e:c0:9f:61:a6:
02:da:8a:c6:39:b9:7a:49:97:07:8a:a7:30:ad:af:
b9:51:69:e8:c0:8f:29:72:e9:b9:2d:42:79:40:66:
99:f5:eb:0a:f2:b4:d6:1a:5f:0d:af:b9:f2:39:ce:
9f:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:4C:DC:2F:8D:81:B9:D2:74:F1:50:90:8C:6F:51:AD:27:BC:F7:9F
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/lUzcL42BudJ08VCQjG9RrSe8958.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.187.154.0/24
Signature Algorithm: sha256WithRSAEncryption
65:4c:49:43:98:a4:9f:d0:27:7c:46:3a:ca:99:4d:69:8c:90:
52:68:90:b2:b2:4c:9d:16:31:36:66:86:3b:14:20:2c:31:49:
c2:13:5e:17:bb:b7:61:9f:fc:02:ed:29:d9:c7:fe:ba:70:6e:
f3:25:89:e3:e4:9d:4d:04:99:5e:8b:85:56:17:94:51:bd:91:
44:5c:6a:bd:ee:fb:52:c6:73:a5:ca:6d:b4:e7:63:d7:4f:98:
58:b9:f3:30:ab:ca:e7:2c:4a:7f:73:65:01:65:5e:d5:c4:90:
25:cc:1a:a0:3d:02:b9:18:d2:7d:a1:4a:11:49:31:e9:95:ff:
1c:15:99:81:55:cd:d9:bb:8b:80:02:b0:cb:58:b2:b2:bf:26:
96:9b:c0:ef:25:da:5a:51:38:2c:95:61:49:51:d1:54:e7:fc:
f5:a0:35:e4:52:c5:b3:04:29:b8:91:0e:e6:22:37:c4:38:d0:
2b:01:0b:ce:d3:ba:08:82:d4:20:02:c6:38:86:3c:ee:5c:01:
96:f3:ec:23:c0:c0:77:55:93:41:d0:bc:77:e5:ef:87:e2:93:
ad:da:b8:cc:fb:8c:bc:4d:52:b1:47:d4:bc:f5:92:25:5e:70:
ff:dc:df:8b:42:f2:b3:f6:52:e6:cd:6a:c8:0f:79:f2:38:35:
d2:1e:81:d0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVt72p+tIvlah5pcTHcgPPXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwYzQwOTYxM2ZlYTBhMmI0NDJjZTExMmU5Y2JkYjQ4NWUw
MTE4OGYwHhcNMjMwMTAxMTUyNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NTRjZGMyZjhkODFiOWQyNzRmMTUwOTA4YzZmNTFhZDI3YmNmNzlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx+80pYekAwGMTH+uiT0SF7ZwGIPn
M4s/Eg+WYU2VvcHhG3BgidEsnYCeErthLoZb5AqYz1rDz1H+Q+UCGrvbLqpzOTZr
dN8cCkGRWkCFkV6WWSzfNyF2Pvr/aQ7o/XW9W02+g3mRCEq4HVG8nArOvInfroZb
3+JJFZxKUEk4pGg8T+NUZxL9pU+RdMLFBc2JcrhFxvS4zdsESMhlcp9N1XkK3TkY
6gqzqcEKPgpb19S/TDh4rStVyU1xRyA5HxDrdzzsBJong82DsR62LsCfYaYC2orG
Obl6SZcHiqcwra+5UWnowI8pcum5LUJ5QGaZ9esK8rTWGl8Nr7nyOc6f8wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJVM3C+NgbnSdPFQkIxvUa0nvPefMB8GA1UdIwQY
MBaAFDDECWE/6gorRCzhEunL20heARiPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTU1RSllUX3FDaXRFTE9FUzZjdmJTRjRCR0k4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9iNzhmYjUtYWZjYS00ZGI3LTg4ODYt
YzA2NzFiZjRjZjNlLzEvbFV6Y0w0MkJ1ZEowOFZDUWpHOVJyU2U4OTU4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS9iNzhmYjUtYWZjYS00ZGI3LTg4ODYtYzA2NzFiZjRjZjNl
LzEvTU1RSllUX3FDaXRFTE9FUzZjdmJTRjRCR0k4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw7uaMA0G
CSqGSIb3DQEBCwUAA4IBAQBlTElDmKSf0Cd8RjrKmU1pjJBSaJCyskydFjE2ZoY7
FCAsMUnCE14Xu7dhn/wC7SnZx/66cG7zJYnj5J1NBJlei4VWF5RRvZFEXGq97vtS
xnOlym2052PXT5hYufMwq8rnLEp/c2UBZV7VxJAlzBqgPQK5GNJ9oUoRSTHplf8c
FZmBVc3Zu4uAArDLWLKyvyaWm8DvJdpaUTgslWFJUdFU5/z1oDXkUsWzBCm4kQ7m
IjfEONArAQvO07oIgtQgAsY4hjzuXAGW8+wjwMB3VZNB0Lx35e+H4pOt2rjM+4y8
TVKxR9S89ZIlXnD/3N+LQvKz9lLmzWrID3nyODXSHoHQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:05 2024 by rpki-client on console-ams.rpki-client.org