Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/456eac-65df-4dd1-bf9c-0103a899c2de/1/Cf0oQUgsVmEsxWPkD67htMJZYAM.roa
File: Cf0oQUgsVmEsxWPkD67htMJZYAM.roa (raw, json)
Hash identifier: g3Qv389IxTT8zTiYALHHeJEkNEuje49Dj2wD8wW6oGw=
Subject key identifier: 09:FD:28:41:48:2C:56:61:2C:C5:63:E4:0F:AE:E1:B4:C2:59:60:03
Certificate issuer: /CN=99fad2527eafa95215a8fed67a27fad3cfb2d37f
Certificate serial: 019118135050E1EA6ACCFE012A42969D09B1
Authority key identifier: 99:FA:D2:52:7E:AF:A9:52:15:A8:FE:D6:7A:27:FA:D3:CF:B2:D3:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mfrSUn6vqVIVqP7Weif608-y038.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/456eac-65df-4dd1-bf9c-0103a899c2de/1/Cf0oQUgsVmEsxWPkD67htMJZYAM.roa
Signing time: Sat 03 Aug 2024 11:50:04 +0000
ROA not before: Sat 03 Aug 2024 11:50:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 195.184.76.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Sep 2024 09:49:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:18:13:50:50:e1:ea:6a:cc:fe:01:2a:42:96:9d:09:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99fad2527eafa95215a8fed67a27fad3cfb2d37f
Validity
Not Before: Aug 3 11:50:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=09fd2841482c56612cc563e40faee1b4c2596003
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:88:85:0d:99:ce:cc:fd:93:e4:05:dc:52:93:
b6:77:91:06:87:85:fb:83:8b:d8:d8:21:f6:b1:ae:
09:14:e4:5d:05:d4:8f:a1:33:b0:51:ec:5c:e4:1b:
aa:40:c0:42:41:3a:61:c7:19:0b:ab:d4:dd:12:98:
cd:1a:56:6b:4d:a9:f9:66:e3:ee:a8:21:82:75:fe:
39:55:47:2c:b8:67:13:9d:04:9f:ba:ed:53:3b:44:
20:87:97:4e:f5:08:48:d0:76:a0:32:a1:17:16:2e:
70:c4:81:9a:86:8a:4c:d3:2d:b7:ad:0e:c0:f6:bd:
ed:62:a5:2d:a8:97:10:45:3c:72:fb:8a:f2:df:16:
86:c2:e5:42:3a:52:30:b1:15:c5:66:7d:1f:3c:49:
f0:23:e3:85:04:ba:89:78:cc:0b:d4:8e:db:c8:7d:
7c:4b:58:ae:a7:51:b2:ff:ca:dd:20:83:84:0d:60:
28:1a:e0:dc:85:01:dc:fe:db:05:6f:0d:33:c3:4f:
c1:1b:b4:9e:08:a4:cb:2e:aa:2b:0f:e2:88:cc:5b:
db:a2:15:20:a0:15:1a:db:8c:64:bc:08:32:6d:f7:
98:31:ac:23:51:bf:da:70:b7:e2:c4:63:59:e8:3f:
a1:8a:3c:97:8c:ce:ee:50:53:fa:9a:5d:86:51:ea:
8d:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:FD:28:41:48:2C:56:61:2C:C5:63:E4:0F:AE:E1:B4:C2:59:60:03
X509v3 Authority Key Identifier:
keyid:99:FA:D2:52:7E:AF:A9:52:15:A8:FE:D6:7A:27:FA:D3:CF:B2:D3:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mfrSUn6vqVIVqP7Weif608-y038.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/456eac-65df-4dd1-bf9c-0103a899c2de/1/Cf0oQUgsVmEsxWPkD67htMJZYAM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/456eac-65df-4dd1-bf9c-0103a899c2de/1/mfrSUn6vqVIVqP7Weif608-y038.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.184.76.0/24
Signature Algorithm: sha256WithRSAEncryption
03:1b:0e:a6:54:ba:4f:0d:bc:a6:31:7c:f9:f4:ae:f0:be:a9:
7e:49:55:1c:bc:af:cc:ca:75:87:69:24:e2:a1:6e:20:f0:82:
9b:1e:f8:fe:26:86:a0:54:0c:1b:e0:dc:77:42:ce:58:21:85:
b8:7c:1d:df:29:09:12:97:ea:bf:bb:31:85:dd:8a:4e:5e:52:
c3:e3:1c:cb:0a:b0:11:fd:9e:1b:ed:ee:2e:0f:3b:75:0c:28:
19:1f:cc:c6:3d:02:2d:dd:af:d5:89:8e:40:51:b2:c2:c0:d2:
34:95:04:12:f2:68:d0:52:21:ec:96:ae:12:1a:8d:2d:e0:aa:
d3:1e:10:41:3e:10:82:91:47:69:a2:d4:36:0e:37:6b:2e:0f:
8c:f3:5c:67:45:f9:aa:5c:f3:02:be:fb:be:00:51:62:d5:11:
59:f6:32:10:c2:74:27:13:bf:2e:a2:82:13:3d:c9:18:63:af:
5b:49:95:95:76:51:6f:d4:35:44:10:0e:6f:0e:2f:36:7d:79:
a9:e2:59:de:d1:0a:85:8c:e7:be:b3:2f:a8:b7:2f:5b:9f:15:
d7:aa:da:c5:c9:da:2b:57:f6:9c:03:77:f3:2e:e2:01:18:41:
9e:67:4b:9c:89:c0:7b:ab:b8:82:71:6c:43:29:5d:ee:3d:95:
7c:9d:2b:89
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZEYE1BQ4epqzP4BKkKWnQmxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5ZmFkMjUyN2VhZmE5NTIxNWE4ZmVkNjdhMjdmYWQzY2Zi
MmQzN2YwHhcNMjQwODAzMTE1MDA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwOWZkMjg0MTQ4MmM1NjYxMmNjNTYzZTQwZmFlZTFiNGMyNTk2MDAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv4iFDZnOzP2T5AXcUpO2d5EGh4X7
g4vY2CH2sa4JFORdBdSPoTOwUexc5BuqQMBCQTphxxkLq9TdEpjNGlZrTan5ZuPu
qCGCdf45VUcsuGcTnQSfuu1TO0Qgh5dO9QhI0HagMqEXFi5wxIGahopM0y23rQ7A
9r3tYqUtqJcQRTxy+4ry3xaGwuVCOlIwsRXFZn0fPEnwI+OFBLqJeMwL1I7byH18
S1iup1Gy/8rdIIOEDWAoGuDchQHc/tsFbw0zw0/BG7SeCKTLLqorD+KIzFvbohUg
oBUa24xkvAgybfeYMawjUb/acLfixGNZ6D+hijyXjM7uUFP6ml2GUeqN+wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAn9KEFILFZhLMVj5A+u4bTCWWADMB8GA1UdIwQY
MBaAFJn60lJ+r6lSFaj+1non+tPPstN/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbWZyU1VuNnZxVklWcVA3V2VpZjYwOC15MDM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi80NTZlYWMtNjVkZi00ZGQxLWJmOWMt
MDEwM2E4OTljMmRlLzEvQ2Ywb1FVZ3NWbUVzeFdQa0Q2N2h0TUpaWUFNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi80NTZlYWMtNjVkZi00ZGQxLWJmOWMtMDEwM2E4OTljMmRl
LzEvbWZyU1VuNnZxVklWcVA3V2VpZjYwOC15MDM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw7hMMA0G
CSqGSIb3DQEBCwUAA4IBAQADGw6mVLpPDbymMXz59K7wvql+SVUcvK/MynWHaSTi
oW4g8IKbHvj+JoagVAwb4Nx3Qs5YIYW4fB3fKQkSl+q/uzGF3YpOXlLD4xzLCrAR
/Z4b7e4uDzt1DCgZH8zGPQIt3a/ViY5AUbLCwNI0lQQS8mjQUiHslq4SGo0t4KrT
HhBBPhCCkUdpotQ2DjdrLg+M81xnRfmqXPMCvvu+AFFi1RFZ9jIQwnQnE78uooIT
PckYY69bSZWVdlFv1DVEEA5vDi82fXmp4lne0QqFjOe+sy+oty9bnxXXqtrFydor
V/acA3fzLuIBGEGeZ0ucicB7q7iCcWxDKV3uPZV8nSuJ
-----END CERTIFICATE-----
Generated at Wed Sep 4 12:08:43 2024 by rpki-client on console-fra.rpki-client.org