Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/iz3IRo6GhIXqv7cljz4gxQRoZlU.roa
File: iz3IRo6GhIXqv7cljz4gxQRoZlU.roa (raw, json)
Hash identifier: r+FrpyV9MLw/gEKY1Bzv0symX7n6Lk0Z9gzrXJNGtKE=
Subject key identifier: 8B:3D:C8:46:8E:86:84:85:EA:BF:B7:25:8F:3E:20:C5:04:68:66:55
Certificate issuer: /CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Certificate serial: 018CC94D0BCCA500FFE142CC0A46696133EC
Authority key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/iz3IRo6GhIXqv7cljz4gxQRoZlU.roa
Signing time: Tue 02 Jan 2024 08:31:58 +0000
ROA not before: Tue 02 Jan 2024 08:31:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206271
IP address blocks: 195.93.226.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 17 Feb 2024 06:25:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4d:0b:cc:a5:00:ff:e1:42:cc:0a:46:69:61:33:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Validity
Not Before: Jan 2 08:31:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8b3dc8468e868485eabfb7258f3e20c504686655
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:8d:b1:02:c0:70:8d:59:e4:6b:99:b6:d3:17:
a5:ac:65:9a:ad:dc:3c:f5:d2:ab:d3:da:06:cc:49:
2c:2f:a5:d2:87:c4:63:53:c9:25:df:bd:02:42:5b:
50:3f:a7:1d:ba:3e:8b:8a:89:01:cb:98:d3:42:fc:
8e:5e:b7:66:01:6f:a2:8f:c3:16:99:67:3a:1d:66:
0e:93:d9:71:f6:46:38:15:e5:88:f3:7a:bf:02:e0:
cb:97:0e:16:3f:de:f4:26:f8:42:84:5d:28:ba:7b:
2c:0d:f3:10:55:5c:9c:45:2a:b9:1a:9a:31:2e:87:
d8:72:55:a3:01:2a:2e:d1:c4:4f:cf:98:b1:35:66:
ff:b2:b7:58:ab:9c:e1:35:d5:fe:ea:45:fa:78:6a:
d6:f1:10:db:0c:b6:44:2e:9d:ea:30:0a:98:d5:fd:
29:6d:1d:22:99:f6:e2:c1:90:9b:75:03:d1:a9:73:
88:07:de:bd:65:8f:03:b2:02:22:de:91:ac:f0:fb:
82:8a:d1:47:06:c8:b4:25:28:67:39:12:ac:21:f2:
79:5d:00:20:e4:0d:ff:c2:de:6f:c0:2f:aa:6c:e7:
f4:a2:b2:8d:c4:dc:f0:3a:61:b8:19:9d:6e:d6:de:
bc:df:fb:f1:6a:78:65:b0:dc:ac:aa:6d:c1:71:3b:
9e:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:3D:C8:46:8E:86:84:85:EA:BF:B7:25:8F:3E:20:C5:04:68:66:55
X509v3 Authority Key Identifier:
keyid:1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/iz3IRo6GhIXqv7cljz4gxQRoZlU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.93.226.0/24
Signature Algorithm: sha256WithRSAEncryption
67:e0:bf:bc:99:3a:6f:c0:2a:09:a4:33:9d:9b:7a:ee:da:03:
af:9c:04:d9:1a:ef:5c:4f:70:63:7b:4f:b3:36:71:71:69:77:
bf:e7:6f:73:aa:4e:aa:ad:43:80:25:37:c4:c7:ab:69:e6:c6:
e1:bd:a1:4e:30:d7:8d:ec:1e:a5:b7:cb:cf:d6:db:80:55:93:
a6:d8:8c:f8:07:34:4f:08:11:31:91:5d:4e:4b:da:4d:1b:7c:
e2:09:87:96:8e:28:5b:fc:d1:8a:23:02:27:ac:8b:b5:4c:e7:
1c:a5:fe:40:85:c2:47:b9:c8:75:4f:3b:69:21:1d:03:2a:af:
1e:bf:79:ae:d8:4b:17:cc:b3:4e:64:ec:f7:be:15:74:53:c3:
8d:81:1c:5e:9a:43:1a:e7:ff:90:b0:63:cf:92:7a:74:2b:62:
61:1f:be:20:72:f4:f0:6d:f1:9e:c3:5d:bf:76:b3:75:56:24:
67:53:61:6c:4f:9b:f8:d9:04:c1:94:a1:60:ca:42:52:f0:79:
e3:dc:2c:33:91:b3:61:69:86:28:d2:b4:67:12:b2:6b:f7:5b:
72:58:75:f9:36:0e:d9:51:16:f2:98:0b:b4:3e:aa:bd:d4:02:
9c:be:cb:c7:d3:85:39:65:40:ba:e5:98:07:35:cd:a2:90:90:
ba:9a:0a:9a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzJTQvMpQD/4ULMCkZpYTPsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiOWYyMWJhMDRlNWUzMDc3YjM5MWUzZDQ4ZmY1YjBhNTBi
MzM2OWYwHhcNMjQwMTAyMDgzMTU4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YjNkYzg0NjhlODY4NDg1ZWFiZmI3MjU4ZjNlMjBjNTA0Njg2NjU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwI2xAsBwjVnka5m20xelrGWardw8
9dKr09oGzEksL6XSh8RjU8kl370CQltQP6cduj6LiokBy5jTQvyOXrdmAW+ij8MW
mWc6HWYOk9lx9kY4FeWI83q/AuDLlw4WP970JvhChF0ounssDfMQVVycRSq5Gpox
LofYclWjASou0cRPz5ixNWb/srdYq5zhNdX+6kX6eGrW8RDbDLZELp3qMAqY1f0p
bR0imfbiwZCbdQPRqXOIB969ZY8DsgIi3pGs8PuCitFHBsi0JShnORKsIfJ5XQAg
5A3/wt5vwC+qbOf0orKNxNzwOmG4GZ1u1t683/vxanhlsNysqm3BcTue/wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIs9yEaOhoSF6r+3JY8+IMUEaGZVMB8GA1UdIwQY
MBaAFBufIboE5eMHezkePUj/WwpQszafMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRzU4aHVnVGw0d2Q3T1I0OVNQOWJDbEN6TnA4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9mNjdhNzgtMTgzZC00OTRhLTk5NWUt
ZjUxYzVmYjNkZjlhLzEvaXozSVJvNkdoSVhxdjdjbGp6NGd4UVJvWmxVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi9mNjdhNzgtMTgzZC00OTRhLTk5NWUtZjUxYzVmYjNkZjlh
LzEvRzU4aHVnVGw0d2Q3T1I0OVNQOWJDbEN6TnA4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw13iMA0G
CSqGSIb3DQEBCwUAA4IBAQBn4L+8mTpvwCoJpDOdm3ru2gOvnATZGu9cT3Bje0+z
NnFxaXe/529zqk6qrUOAJTfEx6tp5sbhvaFOMNeN7B6lt8vP1tuAVZOm2Iz4BzRP
CBExkV1OS9pNG3ziCYeWjihb/NGKIwInrIu1TOccpf5AhcJHuch1TztpIR0DKq8e
v3mu2EsXzLNOZOz3vhV0U8ONgRxemkMa5/+QsGPPknp0K2JhH74gcvTwbfGew12/
drN1ViRnU2FsT5v42QTBlKFgykJS8Hnj3CwzkbNhaYYo0rRnErJr91tyWHX5Ng7Z
URbymAu0Pqq91AKcvsvH04U5ZUC65ZgHNc2ikJC6mgqa
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:22 2024 by rpki-client on console-fra.rpki-client.org