Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/GksuGsX3FPTpBQTw1TTaV4-7dZ0.roa
File: GksuGsX3FPTpBQTw1TTaV4-7dZ0.roa (raw, json)
Hash identifier: MvB14Xm/swL7voDztwBS9QBigmp18DTkoHfnC93X3KI=
Subject key identifier: 1A:4B:2E:1A:C5:F7:14:F4:E9:05:04:F0:D5:34:DA:57:8F:BB:75:9D
Certificate issuer: /CN=de0d9d6b697ca1c86570c256862e6858b4799c85
Certificate serial: 018963788BF1AC0B62ECAC6D0FDEAA886C61
Authority key identifier: DE:0D:9D:6B:69:7C:A1:C8:65:70:C2:56:86:2E:68:58:B4:79:9C:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3g2da2l8ochlcMJWhi5oWLR5nIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/GksuGsX3FPTpBQTw1TTaV4-7dZ0.roa
Signing time: Mon 17 Jul 2023 10:49:51 +0000
ROA not before: Mon 17 Jul 2023 10:49:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 36351
IP address blocks: 95.142.120.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:63:78:8b:f1:ac:0b:62:ec:ac:6d:0f:de:aa:88:6c:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de0d9d6b697ca1c86570c256862e6858b4799c85
Validity
Not Before: Jul 17 10:49:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a4b2e1ac5f714f4e90504f0d534da578fbb759d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:29:55:22:a7:ea:c5:a0:e9:47:82:fd:22:97:
c3:98:64:49:21:a3:f6:18:53:b0:eb:03:22:9c:0e:
6a:95:28:f7:22:68:7a:f1:b2:07:d0:86:60:03:e1:
4c:3e:6e:c6:58:63:ff:35:04:54:94:46:11:92:02:
11:2e:d7:1f:58:2f:0a:82:ab:29:f7:f0:81:a4:e2:
54:c6:f2:46:27:e6:da:a5:65:2e:e0:07:8c:d5:01:
7f:62:71:3b:35:d8:9e:e2:48:67:0c:59:0f:ac:0b:
ae:cb:77:8b:a2:b9:03:0d:4a:f6:91:e2:e7:ce:02:
8e:82:ae:1b:ff:77:32:67:54:3d:03:5c:ec:01:14:
46:03:17:67:e5:74:fb:06:da:2b:1f:94:e3:da:08:
17:b0:c7:bf:22:5b:72:f5:99:84:7c:b5:ed:b9:42:
23:17:5b:1b:3f:c3:1f:a4:5a:be:2b:ed:c9:a1:98:
ab:dd:74:91:b0:d2:03:98:3e:e6:cb:ef:55:c0:74:
11:aa:eb:02:8b:70:37:ad:fc:f6:c7:ad:3b:ee:83:
09:c4:61:19:03:6e:0b:5f:5e:20:42:26:d3:55:95:
c0:92:76:76:08:57:64:a9:fa:5d:4d:e4:91:88:56:
09:d0:9a:62:50:94:35:2f:36:b8:65:62:bc:d5:38:
4d:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:4B:2E:1A:C5:F7:14:F4:E9:05:04:F0:D5:34:DA:57:8F:BB:75:9D
X509v3 Authority Key Identifier:
keyid:DE:0D:9D:6B:69:7C:A1:C8:65:70:C2:56:86:2E:68:58:B4:79:9C:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3g2da2l8ochlcMJWhi5oWLR5nIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/GksuGsX3FPTpBQTw1TTaV4-7dZ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.142.120.0/24
Signature Algorithm: sha256WithRSAEncryption
14:9c:e7:c4:2d:fd:c3:ba:14:93:9a:b3:f1:7a:a2:fa:12:8c:
cd:c5:95:d4:ea:eb:4e:17:20:ce:d2:b7:1b:23:ae:9a:93:82:
3c:be:e6:60:c3:9d:70:50:c1:71:50:e6:ea:5d:dc:90:16:6a:
91:a5:cf:83:20:43:e9:91:3c:96:86:bd:7e:5e:de:1a:ed:e8:
5c:4c:b7:66:e9:02:f6:8f:f0:82:66:af:6f:38:2c:65:06:e4:
24:f7:3e:18:70:1f:a3:52:e9:c1:e0:4b:30:37:44:82:ae:e8:
5b:e7:3c:94:78:9e:f3:e5:dd:d1:82:02:65:3b:49:f0:36:d6:
1a:ae:65:3f:62:2d:85:16:84:23:76:af:71:43:85:57:85:1b:
22:c1:c0:c2:54:ce:ba:99:29:f3:62:d7:2e:2a:83:ca:9d:5c:
54:e9:ac:e0:5c:5f:13:5a:77:ab:af:20:c9:e5:12:3a:93:61:
30:11:d8:19:47:c4:4a:2d:4b:fb:26:e7:86:c0:df:d5:26:e7:
ae:f5:d6:fd:e5:6d:48:a0:30:2a:b4:96:d4:ac:6e:9d:a9:14:
fc:6f:f8:0b:57:c7:b5:4c:d0:65:e9:55:4a:70:da:d1:c4:9c:
6e:17:34:74:40:72:00:c1:ce:d5:2a:75:6c:ef:18:31:6e:e4:
5c:e8:b5:8f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYljeIvxrAti7KxtD96qiGxhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlMGQ5ZDZiNjk3Y2ExYzg2NTcwYzI1Njg2MmU2ODU4YjQ3
OTljODUwHhcNMjMwNzE3MTA0OTUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYTRiMmUxYWM1ZjcxNGY0ZTkwNTA0ZjBkNTM0ZGE1NzhmYmI3NTlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnylVIqfqxaDpR4L9IpfDmGRJIaP2
GFOw6wMinA5qlSj3Imh68bIH0IZgA+FMPm7GWGP/NQRUlEYRkgIRLtcfWC8Kgqsp
9/CBpOJUxvJGJ+bapWUu4AeM1QF/YnE7Ndie4khnDFkPrAuuy3eLorkDDUr2keLn
zgKOgq4b/3cyZ1Q9A1zsARRGAxdn5XT7BtorH5Tj2ggXsMe/Ilty9ZmEfLXtuUIj
F1sbP8MfpFq+K+3JoZir3XSRsNIDmD7my+9VwHQRqusCi3A3rfz2x6077oMJxGEZ
A24LX14gQibTVZXAknZ2CFdkqfpdTeSRiFYJ0JpiUJQ1Lza4ZWK81ThNxwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBpLLhrF9xT06QUE8NU02lePu3WdMB8GA1UdIwQY
MBaAFN4NnWtpfKHIZXDCVoYuaFi0eZyFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2cyZGEybDhvY2hsY01KV2hpNW9XTFI1bklVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy82OGRjM2MtZGYyZS00NDYxLWI3YTYt
MDFjYmZjMGU5NGU3LzEvR2tzdUdzWDNGUFRwQlFUdzFUVGFWNC03ZFowLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy82OGRjM2MtZGYyZS00NDYxLWI3YTYtMDFjYmZjMGU5NGU3
LzEvM2cyZGEybDhvY2hsY01KV2hpNW9XTFI1bklVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAX454MA0G
CSqGSIb3DQEBCwUAA4IBAQAUnOfELf3DuhSTmrPxeqL6EozNxZXU6utOFyDO0rcb
I66ak4I8vuZgw51wUMFxUObqXdyQFmqRpc+DIEPpkTyWhr1+Xt4a7ehcTLdm6QL2
j/CCZq9vOCxlBuQk9z4YcB+jUunB4EswN0SCruhb5zyUeJ7z5d3RggJlO0nwNtYa
rmU/Yi2FFoQjdq9xQ4VXhRsiwcDCVM66mSnzYtcuKoPKnVxU6azgXF8TWnerryDJ
5RI6k2EwEdgZR8RKLUv7JueGwN/VJueu9db95W1IoDAqtJbUrG6dqRT8b/gLV8e1
TNBl6VVKcNrRxJxuFzR0QHIAwc7VKnVs7xgxbuRc6LWP
-----END CERTIFICATE-----
Generated at Mon Jan 1 15:14:41 2024 by rpki-client on console-fra.rpki-client.org