Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/11dca8-23d4-424a-8965-3b1c55e3de97/1/WSCLWTjGZmGh9Pp3pMTx4aUbgcE.roa
File: WSCLWTjGZmGh9Pp3pMTx4aUbgcE.roa (raw, json)
Hash identifier: 8M8/8xcjJj8v7wBvRqR0gHI6GYmAu9fU55W0iDQpVP8=
Subject key identifier: 59:20:8B:59:38:C6:66:61:A1:F4:FA:77:A4:C4:F1:E1:A5:1B:81:C1
Certificate issuer: /CN=1083f3f195974f0e90084e0e327ff5b667e6fd90
Certificate serial: 0193895B1CC67AC93AF0CB79177CA72C5723
Authority key identifier: 10:83:F3:F1:95:97:4F:0E:90:08:4E:0E:32:7F:F5:B6:67:E6:FD:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EIPz8ZWXTw6QCE4OMn_1tmfm_ZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/11dca8-23d4-424a-8965-3b1c55e3de97/1/WSCLWTjGZmGh9Pp3pMTx4aUbgcE.roa
Signing time: Mon 02 Dec 2024 21:51:09 +0000
ROA not before: Mon 02 Dec 2024 21:51:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15731
IP address blocks: 185.237.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 21:47:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:89:5b:1c:c6:7a:c9:3a:f0:cb:79:17:7c:a7:2c:57:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1083f3f195974f0e90084e0e327ff5b667e6fd90
Validity
Not Before: Dec 2 21:51:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=59208b5938c66661a1f4fa77a4c4f1e1a51b81c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a3:ab:49:d7:16:00:16:bb:ff:53:f6:67:ef:
d8:05:10:cf:03:29:c7:58:79:35:b6:f4:c2:08:95:
a2:ba:90:f2:0e:24:bd:4a:28:e3:55:05:54:30:bc:
49:98:05:2e:d2:54:0d:7b:e2:8b:6d:49:81:27:fb:
90:e2:e5:97:96:c0:6c:3d:b7:18:a2:eb:eb:d5:25:
36:04:47:ed:a1:17:3f:7c:dc:52:7b:b8:ff:a2:2f:
c4:df:cc:61:4c:13:92:80:47:d2:37:72:78:bb:af:
09:6d:3d:f3:da:30:57:aa:57:ec:f6:36:54:31:59:
86:16:76:cf:2c:34:a8:95:ad:37:63:9d:c3:df:6d:
b3:b0:b3:8b:63:b8:fc:75:0a:dd:22:dd:3f:93:4c:
0f:24:40:d6:79:02:7d:e9:2c:91:bf:94:ed:68:6f:
74:0b:2d:59:ac:10:68:7f:55:f7:c8:9f:3d:fd:2e:
20:62:1a:2d:6b:df:b3:f3:66:8d:1e:74:58:a2:0a:
21:59:b8:60:d0:68:54:fb:21:b3:84:d2:b4:fc:85:
65:a6:fa:d7:92:aa:26:8a:15:db:a8:27:26:3a:b1:
e2:ae:b2:8e:4e:ba:3c:60:4f:0c:9f:c5:03:c4:33:
ab:25:7d:10:ea:11:d0:0c:21:60:c8:b8:be:54:eb:
17:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:20:8B:59:38:C6:66:61:A1:F4:FA:77:A4:C4:F1:E1:A5:1B:81:C1
X509v3 Authority Key Identifier:
keyid:10:83:F3:F1:95:97:4F:0E:90:08:4E:0E:32:7F:F5:B6:67:E6:FD:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EIPz8ZWXTw6QCE4OMn_1tmfm_ZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/11dca8-23d4-424a-8965-3b1c55e3de97/1/WSCLWTjGZmGh9Pp3pMTx4aUbgcE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/11dca8-23d4-424a-8965-3b1c55e3de97/1/EIPz8ZWXTw6QCE4OMn_1tmfm_ZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.237.95.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:a4:f1:52:92:a9:a6:18:47:ad:51:21:16:00:8e:e9:c7:ca:
c6:79:ed:03:21:78:72:59:82:ac:f3:60:93:a8:f3:9d:da:be:
6b:f3:d8:fa:1e:32:8b:a9:b0:a1:98:0a:a9:75:62:dc:33:04:
c9:57:2a:a0:61:a0:14:56:d9:0f:dc:08:91:91:44:41:c1:65:
76:a0:99:f4:95:af:c6:b5:c9:02:f9:6f:36:42:c2:76:16:0b:
e7:d1:93:5b:e5:52:e4:dc:c8:a7:b1:09:32:f9:d5:9c:0c:6f:
b2:a7:6f:8d:7e:da:d1:ee:6a:55:46:5b:13:17:b0:37:44:56:
fd:4d:88:89:98:59:06:63:16:b1:8f:5a:f6:e3:e5:75:a0:e0:
dd:11:42:d2:0e:03:94:58:d6:71:13:26:4e:61:61:0e:b8:de:
52:35:b3:ed:7b:b4:2b:21:2e:32:0b:17:ec:08:51:6f:9d:92:
b6:5b:da:b1:8a:a4:4c:16:f7:2f:ca:d2:7a:b7:b8:90:58:cc:
7a:c6:8f:f6:3e:b0:9f:75:cb:f5:b6:53:22:64:80:04:df:84:
d4:59:08:e3:d9:08:f8:22:56:b7:19:a6:d0:72:e7:5f:52:33:
ed:cb:1e:a8:7d:ff:bd:a9:e3:6f:3a:2b:ce:a3:4a:74:36:ff:
75:6d:23:17
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZOJWxzGesk68Mt5F3ynLFcjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEwODNmM2YxOTU5NzRmMGU5MDA4NGUwZTMyN2ZmNWI2Njdl
NmZkOTAwHhcNMjQxMjAyMjE1MTA5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OTIwOGI1OTM4YzY2NjYxYTFmNGZhNzdhNGM0ZjFlMWE1MWI4MWMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu6OrSdcWABa7/1P2Z+/YBRDPAynH
WHk1tvTCCJWiupDyDiS9SijjVQVUMLxJmAUu0lQNe+KLbUmBJ/uQ4uWXlsBsPbcY
ouvr1SU2BEftoRc/fNxSe7j/oi/E38xhTBOSgEfSN3J4u68JbT3z2jBXqlfs9jZU
MVmGFnbPLDSola03Y53D322zsLOLY7j8dQrdIt0/k0wPJEDWeQJ96SyRv5TtaG90
Cy1ZrBBof1X3yJ89/S4gYhota9+z82aNHnRYogohWbhg0GhU+yGzhNK0/IVlpvrX
kqomihXbqCcmOrHirrKOTro8YE8Mn8UDxDOrJX0Q6hHQDCFgyLi+VOsXHwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFkgi1k4xmZhofT6d6TE8eGlG4HBMB8GA1UdIwQY
MBaAFBCD8/GVl08OkAhODjJ/9bZn5v2QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRUlQejhaV1hUdzZRQ0U0T01uXzF0bWZtX1pBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS8xMWRjYTgtMjNkNC00MjRhLTg5NjUt
M2IxYzU1ZTNkZTk3LzEvV1NDTFdUakdabUdoOVBwM3BNVHg0YVViZ2NFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS8xMWRjYTgtMjNkNC00MjRhLTg5NjUtM2IxYzU1ZTNkZTk3
LzEvRUlQejhaV1hUdzZRQ0U0T01uXzF0bWZtX1pBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAue1fMA0G
CSqGSIb3DQEBCwUAA4IBAQCepPFSkqmmGEetUSEWAI7px8rGee0DIXhyWYKs82CT
qPOd2r5r89j6HjKLqbChmAqpdWLcMwTJVyqgYaAUVtkP3AiRkURBwWV2oJn0la/G
tckC+W82QsJ2Fgvn0ZNb5VLk3MinsQky+dWcDG+yp2+NftrR7mpVRlsTF7A3RFb9
TYiJmFkGYxaxj1r24+V1oODdEULSDgOUWNZxEyZOYWEOuN5SNbPte7QrIS4yCxfs
CFFvnZK2W9qxiqRMFvcvytJ6t7iQWMx6xo/2PrCfdcv1tlMiZIAE34TUWQjj2Qj4
Ila3GabQcudfUjPtyx6off+9qeNvOivOo0p0Nv91bSMX
-----END CERTIFICATE-----
Generated at Sun Apr 13 10:17:51 2025 by rpki-client