Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/IxHMfSv95guBDLelFWei6ZHXmUc.roa
File: IxHMfSv95guBDLelFWei6ZHXmUc.roa (raw, json)
Hash identifier: 1dWlN7vJhDiWE7/9BNeY0LdTVoot8vIon1Fq5xbiRT8=
Subject key identifier: 23:11:CC:7D:2B:FD:E6:0B:81:0C:B7:A5:15:67:A2:E9:91:D7:99:47
Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Certificate serial: 018B13653F04E9B38501992130404AA7087B
Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/IxHMfSv95guBDLelFWei6ZHXmUc.roa
Signing time: Mon 09 Oct 2023 07:44:44 +0000
ROA not before: Mon 09 Oct 2023 07:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211936
IP address blocks: 195.242.241.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:13:65:3f:04:e9:b3:85:01:99:21:30:40:4a:a7:08:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Validity
Not Before: Oct 9 07:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2311cc7d2bfde60b810cb7a51567a2e991d79947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:ba:e2:fe:e9:45:3a:fd:30:79:f4:d8:27:95:
62:33:54:10:b0:68:c0:2e:df:b5:fa:6b:4f:db:7b:
f1:5c:7f:81:5e:65:76:da:7c:a9:49:e8:95:14:27:
62:67:85:4a:9c:e4:03:8b:b9:2d:a7:da:d4:54:81:
12:6f:27:d1:6a:b5:f8:8b:46:56:fa:ec:45:76:a4:
c1:d2:71:0e:c2:69:8c:30:71:cd:20:d2:7c:9a:26:
60:46:18:f8:25:bc:c0:b2:17:57:55:ad:44:65:37:
30:86:33:19:8e:2e:11:7e:35:0b:f6:cb:69:36:fd:
59:7c:f9:55:5c:fe:c6:82:b7:bf:e9:71:19:15:c2:
da:38:d8:0a:1f:57:82:f5:73:d6:26:c9:dd:1f:43:
75:ee:8d:f5:ef:b6:e2:a4:db:d4:6b:cf:06:78:a6:
a7:c1:de:56:73:ed:2c:11:84:87:4a:3a:fc:9f:53:
dd:fb:4b:88:ec:ba:2e:22:c3:60:51:2e:62:8b:4b:
bd:dc:ed:1c:ac:1e:7b:47:37:22:22:6a:6a:a6:3a:
f1:f7:30:75:61:e5:45:fb:4a:a1:57:d5:6d:a7:f0:
7d:fb:ec:0d:26:c6:f7:f6:ac:7a:7a:3d:00:25:32:
06:4e:a1:b0:09:1d:47:0b:0f:2d:19:92:68:58:9a:
42:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:11:CC:7D:2B:FD:E6:0B:81:0C:B7:A5:15:67:A2:E9:91:D7:99:47
X509v3 Authority Key Identifier:
keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/IxHMfSv95guBDLelFWei6ZHXmUc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.242.241.0/24
Signature Algorithm: sha256WithRSAEncryption
29:21:2c:b9:2c:c2:5d:d3:58:36:45:e7:ef:2b:c7:96:a4:ff:
c7:e9:95:ef:35:c0:fc:8d:f3:cb:ff:57:3c:8c:f3:b3:79:b0:
7a:6b:93:a2:6d:c4:bb:51:ee:a4:ea:8a:17:f9:e9:73:dc:25:
24:11:d2:17:8d:5a:75:78:c5:a9:a9:67:8a:11:41:33:96:57:
4c:49:6a:1a:7b:2c:7e:80:5e:e2:f2:bb:d6:79:28:95:af:8a:
88:ef:1f:3a:ad:c8:d2:50:b6:8b:f5:3f:9d:73:99:b1:01:96:
5b:1d:ed:f1:cd:68:af:dc:fd:bd:07:53:66:e0:be:54:c1:fc:
f2:1c:5d:a7:c0:49:06:cb:56:eb:cd:b3:b9:a6:d0:42:cd:7e:
9a:d0:a2:5a:72:a3:ac:48:9e:40:5c:f7:fd:1e:15:9b:fc:65:
59:8e:73:d5:7e:95:6b:08:bb:8d:5b:c9:c6:d9:81:2e:2b:d9:
94:c1:64:cd:18:51:7b:0f:f4:b4:8c:f7:15:d4:8a:a2:b0:73:
a8:ed:77:49:6a:a3:bd:58:27:37:47:9a:9f:14:6d:47:f9:df:
dd:cc:65:a2:a8:aa:a8:15:ac:26:0a:77:eb:1c:1c:34:a0:ce:
53:f0:33:2f:d5:1a:39:50:04:31:06:39:1a:23:01:c8:b8:9e:
76:a4:68:13
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYsTZT8E6bOFAZkhMEBKpwh7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwYWZmNmI0ZWZmZTdjMzYzZWYyMDBmNmYzZTU4ODhiOTE1
YmE2ODEwHhcNMjMxMDA5MDc0NDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMzExY2M3ZDJiZmRlNjBiODEwY2I3YTUxNTY3YTJlOTkxZDc5OTQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgbri/ulFOv0wefTYJ5ViM1QQsGjA
Lt+1+mtP23vxXH+BXmV22nypSeiVFCdiZ4VKnOQDi7ktp9rUVIESbyfRarX4i0ZW
+uxFdqTB0nEOwmmMMHHNINJ8miZgRhj4JbzAshdXVa1EZTcwhjMZji4RfjUL9stp
Nv1ZfPlVXP7Ggre/6XEZFcLaONgKH1eC9XPWJsndH0N17o3177bipNvUa88GeKan
wd5Wc+0sEYSHSjr8n1Pd+0uI7LouIsNgUS5ii0u93O0crB57RzciImpqpjrx9zB1
YeVF+0qhV9Vtp/B9++wNJsb39qx6ej0AJTIGTqGwCR1HCw8tGZJoWJpCPQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCMRzH0r/eYLgQy3pRVnoumR15lHMB8GA1UdIwQY
MBaAFACv9rTv/nw2PvIA9vPliIuRW6aBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUtfMnRPXy1mRFktOGdEMjgtV0lpNUZicG9FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8wOThkMTMtNmQ2ZC00Mjk0LTk3NTMt
YTg3NzNkZTc2OGY3LzEvSXhITWZTdjk1Z3VCRExlbEZXZWk2WkhYbVVjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC8wOThkMTMtNmQ2ZC00Mjk0LTk3NTMtYTg3NzNkZTc2OGY3
LzEvQUtfMnRPXy1mRFktOGdEMjgtV0lpNUZicG9FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw/LxMA0G
CSqGSIb3DQEBCwUAA4IBAQApISy5LMJd01g2RefvK8eWpP/H6ZXvNcD8jfPL/1c8
jPOzebB6a5OibcS7Ue6k6ooX+elz3CUkEdIXjVp1eMWpqWeKEUEzlldMSWoaeyx+
gF7i8rvWeSiVr4qI7x86rcjSULaL9T+dc5mxAZZbHe3xzWiv3P29B1Nm4L5Uwfzy
HF2nwEkGy1brzbO5ptBCzX6a0KJacqOsSJ5AXPf9HhWb/GVZjnPVfpVrCLuNW8nG
2YEuK9mUwWTNGFF7D/S0jPcV1IqisHOo7XdJaqO9WCc3R5qfFG1H+d/dzGWiqKqo
FawmCnfrHBw0oM5T8DMv1Ro5UAQxBjkaIwHIuJ52pGgT
-----END CERTIFICATE-----
Generated at Mon Oct 30 11:31:01 2023 by rpki-client on console-ams.rpki-client.org