Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/tA3UhlBskkwXadA0bf9ch780FnE.roa
File: tA3UhlBskkwXadA0bf9ch780FnE.roa (raw, json)
Hash identifier: M6SJKFKN7ZXcwTj/49G4UPgsHWX729+b2OUV6rtpxcY=
Subject key identifier: B4:0D:D4:86:50:6C:92:4C:17:69:D0:34:6D:FF:5C:87:BF:34:16:71
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 01882AAEBAB3911817EF422F69A210EC7A5C
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/tA3UhlBskkwXadA0bf9ch780FnE.roa
Signing time: Wed 17 May 2023 17:07:53 +0000
ROA not before: Wed 17 May 2023 17:07:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212837
IP address blocks: 195.187.108.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:2a:ae:ba:b3:91:18:17:ef:42:2f:69:a2:10:ec:7a:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: May 17 17:07:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b40dd486506c924c1769d0346dff5c87bf341671
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:21:5b:af:1f:0d:7b:a0:c9:ad:35:cd:06:2b:
b0:60:b0:84:b0:6a:49:c9:00:8d:ba:58:d8:19:76:
45:d5:00:70:6d:63:12:85:f4:10:ef:3f:8d:e2:14:
b7:03:0b:08:0a:b7:d8:af:57:02:cc:88:3b:bb:0f:
2f:2c:18:ed:22:54:5c:f7:dd:40:97:3f:0a:15:4b:
ee:38:df:79:9a:84:24:24:31:cc:c6:4e:93:8a:8b:
12:9f:6f:55:17:a1:b5:e5:ea:f3:d2:df:f9:df:36:
53:4a:4f:2f:d3:f6:65:0a:5e:80:f7:ac:e6:fc:a2:
31:b1:93:0a:e5:77:23:4c:e9:9c:ee:80:e9:81:35:
73:79:32:c8:9f:17:2f:da:00:f0:da:0f:70:80:d4:
93:08:f9:38:97:6b:eb:5f:72:a9:95:e0:6a:98:e0:
0e:8b:39:de:7c:c5:0c:04:85:58:38:74:b6:e0:93:
74:f2:f6:65:33:f3:a4:56:53:95:ab:22:90:6f:6e:
8b:20:03:be:27:62:ba:79:6b:d8:7f:3e:61:8e:d9:
b4:bb:c4:7b:6e:7a:9e:dc:e3:20:ee:24:7b:8a:cb:
c9:45:d0:e6:4b:ed:ed:98:0b:71:44:d0:b1:83:00:
f4:85:3a:14:68:1e:09:d3:06:4f:12:d9:77:f1:df:
2f:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:0D:D4:86:50:6C:92:4C:17:69:D0:34:6D:FF:5C:87:BF:34:16:71
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/tA3UhlBskkwXadA0bf9ch780FnE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.187.108.0/24
Signature Algorithm: sha256WithRSAEncryption
69:9f:c4:ae:0c:33:33:04:06:d2:0f:8e:0f:c3:82:65:92:b7:
9d:86:71:c2:7e:f7:d1:e4:ae:53:2c:b3:79:ab:ae:a9:20:4b:
88:49:2f:9d:29:e8:d5:c8:43:c1:5f:c3:0a:b2:6e:6f:59:d2:
87:61:ff:7c:74:f4:4a:2c:48:1a:2e:c3:59:6f:34:28:21:59:
cf:3d:eb:ab:ed:0b:94:a2:49:55:09:ea:7b:a1:e1:fb:30:b2:
82:8e:68:c6:31:15:85:74:93:74:e0:f1:a0:5f:2c:94:b4:54:
3f:74:31:b2:9b:73:53:7f:fa:70:4d:af:e7:8b:2f:20:00:17:
aa:2c:24:a1:4f:b2:f1:93:60:61:10:01:b3:0d:26:90:59:30:
c9:ff:31:8e:dc:97:a2:0b:ca:2b:84:bb:53:54:1d:74:c1:12:
fe:c4:a4:db:66:80:cd:33:5a:a6:56:58:c7:cb:a1:a5:30:89:
6d:22:76:c5:88:e4:2d:e5:39:6c:44:19:7c:a2:4a:67:c0:e0:
80:31:5c:64:a3:dd:66:63:a6:47:41:6f:48:04:95:0e:e3:56:
96:3e:b6:f0:5f:a4:7d:e8:06:a6:51:b4:80:91:e9:f6:a9:00:
83:b9:db:bb:18:19:b0:ac:2e:f8:15:03:1e:8c:b2:08:bd:be:
22:49:86:5b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYgqrrqzkRgX70IvaaIQ7HpcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwYzQwOTYxM2ZlYTBhMmI0NDJjZTExMmU5Y2JkYjQ4NWUw
MTE4OGYwHhcNMjMwNTE3MTcwNzUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNDBkZDQ4NjUwNmM5MjRjMTc2OWQwMzQ2ZGZmNWM4N2JmMzQxNjcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnCFbrx8Ne6DJrTXNBiuwYLCEsGpJ
yQCNuljYGXZF1QBwbWMShfQQ7z+N4hS3AwsICrfYr1cCzIg7uw8vLBjtIlRc991A
lz8KFUvuON95moQkJDHMxk6TiosSn29VF6G15erz0t/53zZTSk8v0/ZlCl6A96zm
/KIxsZMK5XcjTOmc7oDpgTVzeTLInxcv2gDw2g9wgNSTCPk4l2vrX3KpleBqmOAO
iznefMUMBIVYOHS24JN08vZlM/OkVlOVqyKQb26LIAO+J2K6eWvYfz5hjtm0u8R7
bnqe3OMg7iR7isvJRdDmS+3tmAtxRNCxgwD0hToUaB4J0wZPEtl38d8vzQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLQN1IZQbJJMF2nQNG3/XIe/NBZxMB8GA1UdIwQY
MBaAFDDECWE/6gorRCzhEunL20heARiPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTU1RSllUX3FDaXRFTE9FUzZjdmJTRjRCR0k4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9iNzhmYjUtYWZjYS00ZGI3LTg4ODYt
YzA2NzFiZjRjZjNlLzEvdEEzVWhsQnNra3dYYWRBMGJmOWNoNzgwRm5FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS9iNzhmYjUtYWZjYS00ZGI3LTg4ODYtYzA2NzFiZjRjZjNl
LzEvTU1RSllUX3FDaXRFTE9FUzZjdmJTRjRCR0k4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw7tsMA0G
CSqGSIb3DQEBCwUAA4IBAQBpn8SuDDMzBAbSD44Pw4JlkredhnHCfvfR5K5TLLN5
q66pIEuISS+dKejVyEPBX8MKsm5vWdKHYf98dPRKLEgaLsNZbzQoIVnPPeur7QuU
oklVCep7oeH7MLKCjmjGMRWFdJN04PGgXyyUtFQ/dDGym3NTf/pwTa/niy8gABeq
LCShT7Lxk2BhEAGzDSaQWTDJ/zGO3JeiC8orhLtTVB10wRL+xKTbZoDNM1qmVljH
y6GlMIltInbFiOQt5TlsRBl8okpnwOCAMVxko91mY6ZHQW9IBJUO41aWPrbwX6R9
6AamUbSAken2qQCDudu7GBmwrC74FQMejLIIvb4iSYZb
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:05 2024 by rpki-client on console-ams.rpki-client.org