Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/Lh-tK_9Jc8X_ZSgtk41ClBvQ-WA.roa
File: Lh-tK_9Jc8X_ZSgtk41ClBvQ-WA.roa (raw, json)
Hash identifier: mkPSFClcudENeUqA0rLjrON/hfSFnk4AbZb5bVKuXXY=
Subject key identifier: 2E:1F:AD:2B:FF:49:73:C5:FF:65:28:2D:93:8D:42:94:1B:D0:F9:60
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018D65BF121F7BF3481D717D26C23CBFC250
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/Lh-tK_9Jc8X_ZSgtk41ClBvQ-WA.roa
Signing time: Thu 01 Feb 2024 17:37:17 +0000
ROA not before: Thu 01 Feb 2024 17:37:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202656
IP address blocks: 194.107.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Feb 2024 09:34:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:65:bf:12:1f:7b:f3:48:1d:71:7d:26:c2:3c:bf:c2:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Feb 1 17:37:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2e1fad2bff4973c5ff65282d938d42941bd0f960
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:03:f6:e2:9c:f6:47:b3:af:a9:a3:a1:24:60:
83:e8:5d:40:fc:a5:4d:09:28:a9:68:50:b0:fe:f8:
e8:ff:da:d3:47:7d:cf:77:af:22:f4:c5:68:0c:08:
aa:ea:75:bf:76:a7:5d:13:5a:92:f3:ac:7c:bb:a6:
64:f8:14:06:18:c7:79:48:98:02:94:11:a4:3e:2f:
60:1b:f5:d1:29:77:d6:8e:c3:33:78:ea:cd:e7:2c:
85:eb:f0:72:0d:ba:e1:45:1d:9e:64:bf:9b:a5:c2:
f3:ec:be:e6:d1:e2:d5:b4:3a:82:1a:41:5c:a8:17:
99:13:45:ed:82:1f:71:ac:92:db:65:44:08:d0:3a:
b8:6c:e2:c1:3f:2e:be:30:72:4c:81:70:91:bc:c4:
65:36:98:f8:16:e6:94:9f:64:35:e6:73:71:04:75:
07:d1:7c:f4:f2:aa:7b:b5:9a:ab:ab:72:d4:88:63:
16:3b:c5:ed:10:dc:a0:5f:e9:02:79:f6:fc:b6:de:
ee:ed:04:95:27:d0:0b:d6:c0:aa:ea:21:ff:f4:5a:
45:a3:96:39:88:8c:66:56:27:9e:7a:d4:52:92:2d:
62:a2:3c:f5:51:97:ec:61:68:e5:e0:29:82:0f:75:
dd:91:36:26:80:81:18:e0:3d:25:88:19:2d:d1:08:
d5:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:1F:AD:2B:FF:49:73:C5:FF:65:28:2D:93:8D:42:94:1B:D0:F9:60
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/Lh-tK_9Jc8X_ZSgtk41ClBvQ-WA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.107.200.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:94:a7:9e:ec:04:8d:65:f8:9e:3d:b5:12:c2:5f:9b:48:65:
e3:d6:a7:9e:69:22:1a:63:cc:ac:f8:c7:8e:ea:d8:db:e0:00:
2e:5e:03:d1:16:9f:87:4f:0b:a2:30:5a:c6:86:a3:97:78:69:
2b:d3:72:11:6c:d7:6c:4b:3b:c1:0d:ef:40:f5:f5:95:68:1e:
c0:31:e1:dd:4a:5b:62:71:f8:e5:ae:70:05:70:c5:7b:03:ac:
ba:06:3f:8e:8c:44:9d:e3:2b:e4:52:a2:7c:d3:a1:6f:f7:3f:
58:b5:81:90:18:ce:a1:8d:05:2e:04:38:a5:ab:31:fd:2b:0a:
cc:a1:c6:9c:12:8d:4e:2b:6d:a1:67:3a:3f:26:bc:05:96:da:
a4:6b:07:e5:b5:48:2f:d8:b2:04:d3:2d:a0:b9:bf:12:be:3a:
e4:c8:af:d1:b3:57:ef:6f:7b:38:a7:fc:84:41:44:33:5f:9b:
88:e0:53:6b:ce:e2:c4:12:76:7d:3a:2d:5b:b4:f9:75:77:af:
85:3f:12:34:50:c2:ec:f5:ac:85:53:e4:d5:1c:87:16:4a:b3:
2f:5e:8f:78:69:26:84:a2:db:0f:76:16:86:de:69:96:d5:77:
92:a6:c4:e5:ae:2e:80:e1:b0:97:dc:ff:76:58:82:fb:de:6c:
cd:54:ab:ac
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY1lvxIfe/NIHXF9JsI8v8JQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3NmJiNDhlOTNlOGEwMDU4YzVjNzJhODFhODc5OTQ1NTMw
N2VlNTYwHhcNMjQwMjAxMTczNzE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZTFmYWQyYmZmNDk3M2M1ZmY2NTI4MmQ5MzhkNDI5NDFiZDBmOTYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkQP24pz2R7OvqaOhJGCD6F1A/KVN
CSipaFCw/vjo/9rTR33Pd68i9MVoDAiq6nW/dqddE1qS86x8u6Zk+BQGGMd5SJgC
lBGkPi9gG/XRKXfWjsMzeOrN5yyF6/ByDbrhRR2eZL+bpcLz7L7m0eLVtDqCGkFc
qBeZE0Xtgh9xrJLbZUQI0Dq4bOLBPy6+MHJMgXCRvMRlNpj4FuaUn2Q15nNxBHUH
0Xz08qp7tZqrq3LUiGMWO8XtENygX+kCefb8tt7u7QSVJ9AL1sCq6iH/9FpFo5Y5
iIxmVieeetRSki1iojz1UZfsYWjl4CmCD3XdkTYmgIEY4D0liBkt0QjVCQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC4frSv/SXPF/2UoLZONQpQb0PlgMB8GA1UdIwQY
MBaAFNdrtI6T6KAFjFxyqBqHmUVTB+5WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgt
OGJmYmRkNDVjYjYyLzEvTGgtdEtfOUpjOFhfWlNndGs0MUNsQnZRLVdBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgtOGJmYmRkNDVjYjYy
LzEvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwmvIMA0G
CSqGSIb3DQEBCwUAA4IBAQA9lKee7ASNZfiePbUSwl+bSGXj1qeeaSIaY8ys+MeO
6tjb4AAuXgPRFp+HTwuiMFrGhqOXeGkr03IRbNdsSzvBDe9A9fWVaB7AMeHdSlti
cfjlrnAFcMV7A6y6Bj+OjESd4yvkUqJ806Fv9z9YtYGQGM6hjQUuBDilqzH9KwrM
ocacEo1OK22hZzo/JrwFltqkawfltUgv2LIE0y2gub8SvjrkyK/Rs1fvb3s4p/yE
QUQzX5uI4FNrzuLEEnZ9Oi1btPl1d6+FPxI0UMLs9ayFU+TVHIcWSrMvXo94aSaE
otsPdhaG3mmW1XeSpsTlri6A4bCX3P92WIL73mzNVKus
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:22 2024 by rpki-client on console-fra.rpki-client.org