Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/d6c86d-6c65-4a25-a8fa-38d4f3211896/1/C9nYPBV3F_HmsVOacB9e0fl8N0I.roa
File: C9nYPBV3F_HmsVOacB9e0fl8N0I.roa (raw, json)
Hash identifier: 5y0j4meJ3nG4gVRCaXKP4JexOiPtCfeKP8PYc7N4F64=
Subject key identifier: 0B:D9:D8:3C:15:77:17:F1:E6:B1:53:9A:70:1F:5E:D1:F9:7C:37:42
Certificate issuer: /CN=1a4f8001c30cac546e3f92103b4b12732dfcbf52
Certificate serial: 01857227EB0E9B6F4CE76A8FAFF084DD5C97
Authority key identifier: 1A:4F:80:01:C3:0C:AC:54:6E:3F:92:10:3B:4B:12:73:2D:FC:BF:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gk-AAcMMrFRuP5IQO0sScy38v1I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/d6c86d-6c65-4a25-a8fa-38d4f3211896/1/C9nYPBV3F_HmsVOacB9e0fl8N0I.roa
Signing time: Mon 02 Jan 2023 11:04:56 +0000
ROA not before: Mon 02 Jan 2023 11:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34984
IP address blocks: 195.49.236.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:27:eb:0e:9b:6f:4c:e7:6a:8f:af:f0:84:dd:5c:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a4f8001c30cac546e3f92103b4b12732dfcbf52
Validity
Not Before: Jan 2 11:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0bd9d83c157717f1e6b1539a701f5ed1f97c3742
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:91:23:52:59:12:eb:de:ce:40:e0:bc:d6:8e:
8e:46:ea:03:e0:47:45:c7:a8:a7:1b:42:b1:76:2c:
87:17:44:6b:8e:b8:7a:a5:51:c5:24:ad:a5:51:68:
6b:4e:00:a8:09:81:7a:73:97:b5:72:76:06:fe:af:
f7:df:d5:44:0d:a0:19:7e:85:80:ad:ff:ad:c7:3f:
14:d4:9a:4f:03:19:e0:35:e7:bc:7b:3e:be:b7:e0:
bf:63:b3:ea:99:09:9a:fe:69:96:b5:d0:52:aa:b5:
9e:b6:17:42:0b:cc:97:14:3e:6f:e3:12:eb:2f:3f:
5d:e9:52:77:46:c0:29:cf:9a:81:8e:6d:a2:d0:01:
02:4e:8c:ce:2f:a0:57:1a:c0:32:63:4d:c4:25:e6:
2c:5b:44:a8:d0:78:8f:38:6f:e5:68:bc:15:65:fa:
6c:dc:95:39:1b:5e:c9:05:42:3a:05:e6:83:f4:bc:
03:e6:fe:53:8a:54:50:c5:f4:f1:59:2f:c0:29:63:
e5:65:75:b7:1e:e3:e1:da:a2:e8:e3:7f:32:81:9f:
16:78:55:af:dd:42:a1:50:13:d3:24:36:de:a8:3f:
a6:4f:6c:9c:f1:f5:4f:28:3e:3f:01:90:a6:f6:78:
cc:75:a0:00:f4:87:2f:47:16:64:6d:b1:7c:c6:0a:
06:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:D9:D8:3C:15:77:17:F1:E6:B1:53:9A:70:1F:5E:D1:F9:7C:37:42
X509v3 Authority Key Identifier:
keyid:1A:4F:80:01:C3:0C:AC:54:6E:3F:92:10:3B:4B:12:73:2D:FC:BF:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gk-AAcMMrFRuP5IQO0sScy38v1I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d6c86d-6c65-4a25-a8fa-38d4f3211896/1/C9nYPBV3F_HmsVOacB9e0fl8N0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d6c86d-6c65-4a25-a8fa-38d4f3211896/1/Gk-AAcMMrFRuP5IQO0sScy38v1I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.49.236.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:21:42:7a:3f:37:e8:21:c0:6c:7f:eb:9a:cf:fb:61:de:65:
0f:fb:a4:53:a1:00:2d:66:7f:9f:a7:82:20:17:b6:28:fb:b9:
05:0f:e7:10:76:6a:fc:2b:8e:f0:27:62:b4:7f:2f:50:80:41:
3d:d6:0a:38:53:96:02:a4:3a:21:8b:ee:62:7c:7f:d8:34:24:
97:1c:3c:8f:d2:d7:73:46:88:b3:0c:bc:12:8e:d9:fc:49:54:
d1:d9:d6:9a:52:3f:14:2a:cd:e5:e7:b6:f6:e7:e2:8b:55:ee:
bd:d0:1a:a7:b4:83:76:e9:03:a1:e2:68:98:2b:5c:c2:fc:0c:
93:01:3c:ab:46:f6:06:ab:9a:58:d5:7c:0e:1b:c9:24:0e:76:
7a:0f:ae:0c:1f:69:c9:00:cd:6f:10:30:b4:0c:0f:26:1d:cd:
d5:f4:ca:c4:7c:b8:e3:e1:2d:15:12:a8:10:d1:f2:0a:55:8c:
dc:f2:f3:3b:fe:b5:96:19:55:67:74:16:d5:4c:8c:c5:8b:2e:
2a:ce:66:80:38:31:56:75:f3:b8:3a:7b:03:c9:4f:00:ca:b4:
5f:ed:63:ac:a2:c7:06:a1:7e:26:14:cd:38:6b:47:33:e7:a3:
5c:2c:81:a9:17:ae:b4:87:ee:4c:5d:29:9f:42:4c:7f:54:da:
01:1e:2e:89
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyJ+sOm29M52qPr/CE3VyXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFhNGY4MDAxYzMwY2FjNTQ2ZTNmOTIxMDNiNGIxMjczMmRm
Y2JmNTIwHhcNMjMwMTAyMTEwNDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYmQ5ZDgzYzE1NzcxN2YxZTZiMTUzOWE3MDFmNWVkMWY5N2MzNzQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApZEjUlkS697OQOC81o6ORuoD4EdF
x6inG0KxdiyHF0Rrjrh6pVHFJK2lUWhrTgCoCYF6c5e1cnYG/q/339VEDaAZfoWA
rf+txz8U1JpPAxngNee8ez6+t+C/Y7PqmQma/mmWtdBSqrWethdCC8yXFD5v4xLr
Lz9d6VJ3RsApz5qBjm2i0AECTozOL6BXGsAyY03EJeYsW0So0HiPOG/laLwVZfps
3JU5G17JBUI6BeaD9LwD5v5TilRQxfTxWS/AKWPlZXW3HuPh2qLo438ygZ8WeFWv
3UKhUBPTJDbeqD+mT2yc8fVPKD4/AZCm9njMdaAA9IcvRxZkbbF8xgoGawIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAvZ2DwVdxfx5rFTmnAfXtH5fDdCMB8GA1UdIwQY
MBaAFBpPgAHDDKxUbj+SEDtLEnMt/L9SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR2stQUFjTU1yRlJ1UDVJUU8wc1NjeTM4djFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS9kNmM4NmQtNmM2NS00YTI1LWE4ZmEt
MzhkNGYzMjExODk2LzEvQzluWVBCVjNGX0htc1ZPYWNCOWUwZmw4TjBJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOS9kNmM4NmQtNmM2NS00YTI1LWE4ZmEtMzhkNGYzMjExODk2
LzEvR2stQUFjTU1yRlJ1UDVJUU8wc1NjeTM4djFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwzHsMA0G
CSqGSIb3DQEBCwUAA4IBAQAvIUJ6PzfoIcBsf+uaz/th3mUP+6RToQAtZn+fp4Ig
F7Yo+7kFD+cQdmr8K47wJ2K0fy9QgEE91go4U5YCpDohi+5ifH/YNCSXHDyP0tdz
RoizDLwSjtn8SVTR2daaUj8UKs3l57b25+KLVe690BqntIN26QOh4miYK1zC/AyT
ATyrRvYGq5pY1XwOG8kkDnZ6D64MH2nJAM1vEDC0DA8mHc3V9MrEfLjj4S0VEqgQ
0fIKVYzc8vM7/rWWGVVndBbVTIzFiy4qzmaAODFWdfO4OnsDyU8AyrRf7WOsoscG
oX4mFM04a0cz56NcLIGpF660h+5MXSmfQkx/VNoBHi6J
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:05 2024 by rpki-client on console-fra.rpki-client.org