Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/8b5f7c-b3ae-4b58-81bb-25a40c075f12/1/MiASmVhNwVikTBXX34tvab0VvE8.roa
File: MiASmVhNwVikTBXX34tvab0VvE8.roa (raw, json)
Hash identifier: za8SFmVTECLvKdTh54xfGUI8mHkkdYJkkPaPxQrkXpI=
Subject key identifier: 32:20:12:99:58:4D:C1:58:A4:4C:15:D7:DF:8B:6F:69:BD:15:BC:4F
Certificate issuer: /CN=463f917077f8f3d0e338c742ea21d64358d19d52
Certificate serial: 01905731796E0EB0378C3BDA5D567E4FC28A
Authority key identifier: 46:3F:91:70:77:F8:F3:D0:E3:38:C7:42:EA:21:D6:43:58:D1:9D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rj-RcHf489DjOMdC6iHWQ1jRnVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/8b5f7c-b3ae-4b58-81bb-25a40c075f12/1/MiASmVhNwVikTBXX34tvab0VvE8.roa
Signing time: Thu 27 Jun 2024 00:56:18 +0000
ROA not before: Thu 27 Jun 2024 00:56:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 195.2.202.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 27 Jun 2024 12:50:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:57:31:79:6e:0e:b0:37:8c:3b:da:5d:56:7e:4f:c2:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=463f917077f8f3d0e338c742ea21d64358d19d52
Validity
Not Before: Jun 27 00:56:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=32201299584dc158a44c15d7df8b6f69bd15bc4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:91:bb:e3:01:67:37:e5:25:dd:c6:ec:a5:82:
de:c6:3b:c2:93:ce:a8:dc:5f:66:19:a4:f8:07:89:
a3:d5:dc:4d:06:7d:d9:4e:9a:0b:70:54:9e:85:84:
87:d3:6f:7f:63:80:ac:99:f5:50:b1:13:eb:79:08:
04:a5:23:aa:c4:d3:06:78:f0:f3:5c:03:f7:b9:a5:
c5:33:95:de:cf:cc:07:41:e5:5c:ff:56:f3:91:80:
c5:ce:e8:64:77:cb:80:e6:35:f6:cb:61:83:f5:01:
2b:a1:50:b3:c7:bb:55:18:9f:f9:1d:7e:83:85:3b:
ab:54:c8:cb:f5:b8:4c:7f:bb:6c:88:66:03:34:2f:
fe:08:6d:43:e7:8a:73:3e:72:0f:bc:a4:1d:f3:09:
c7:7c:55:0c:b4:27:cb:79:e0:72:36:de:88:29:f0:
0d:bf:25:e9:c0:17:ef:6c:1e:d9:c3:aa:d2:ca:5c:
10:4e:ae:dc:1d:4c:01:5a:c6:7e:8a:a6:f0:7c:5a:
7a:f6:03:34:fc:04:0e:58:47:66:a9:be:1f:18:12:
b4:b7:bc:80:a1:ef:8d:e0:59:e3:6a:0d:6f:3f:be:
6f:2a:4b:1b:3a:0a:af:8b:5c:8a:aa:43:75:1d:f0:
30:d3:59:0e:bb:81:e0:29:05:8d:a7:95:c7:e3:19:
e7:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:20:12:99:58:4D:C1:58:A4:4C:15:D7:DF:8B:6F:69:BD:15:BC:4F
X509v3 Authority Key Identifier:
keyid:46:3F:91:70:77:F8:F3:D0:E3:38:C7:42:EA:21:D6:43:58:D1:9D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rj-RcHf489DjOMdC6iHWQ1jRnVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/8b5f7c-b3ae-4b58-81bb-25a40c075f12/1/MiASmVhNwVikTBXX34tvab0VvE8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/8b5f7c-b3ae-4b58-81bb-25a40c075f12/1/Rj-RcHf489DjOMdC6iHWQ1jRnVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.2.202.0/23
Signature Algorithm: sha256WithRSAEncryption
17:0b:19:c2:5d:b2:12:67:71:b5:3b:33:49:f6:d9:56:e2:59:
dc:6b:a1:bb:d4:d3:c4:8f:7e:70:7f:a8:bd:ba:7d:5b:5c:1a:
0e:f2:76:30:cd:c6:26:7d:e2:42:5a:58:28:c9:c0:e1:06:44:
85:a2:52:28:f1:64:a4:32:15:ac:1b:59:be:7b:77:41:60:c2:
8c:e0:0d:99:d2:46:12:2a:5b:33:90:85:db:13:1b:a7:3f:24:
8b:15:0a:40:5e:9f:0e:d1:be:16:4e:f5:d3:f6:b8:da:fe:e7:
b3:c5:5d:27:d4:42:8d:d2:f7:f8:5a:c1:67:80:47:47:38:42:
12:51:91:a4:c9:db:08:89:6f:2f:da:2e:91:77:43:dc:30:b3:
c4:c3:f7:ce:3d:f5:09:ff:1f:d8:de:8d:d9:47:20:c3:3b:1b:
a9:1a:58:ea:31:f8:d6:56:55:bd:bb:a4:a9:bc:a9:4b:b5:f6:
0b:68:c5:77:79:0e:24:dc:f1:09:38:35:e5:6b:e3:83:d3:d5:
e3:cd:b7:d2:ed:ad:08:c0:f8:86:60:c9:5a:a7:c6:0f:c3:e9:
aa:42:b9:f1:ad:3d:a0:1d:37:6b:2f:eb:34:a2:7e:e1:48:f5:
77:c0:d6:82:59:5e:de:e3:64:a2:70:e8:3f:1a:82:41:d2:8b:
56:81:4b:cc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZBXMXluDrA3jDvaXVZ+T8KKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ2M2Y5MTcwNzdmOGYzZDBlMzM4Yzc0MmVhMjFkNjQzNThk
MTlkNTIwHhcNMjQwNjI3MDA1NjE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMjIwMTI5OTU4NGRjMTU4YTQ0YzE1ZDdkZjhiNmY2OWJkMTViYzRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy5G74wFnN+Ul3cbspYLexjvCk86o
3F9mGaT4B4mj1dxNBn3ZTpoLcFSehYSH029/Y4CsmfVQsRPreQgEpSOqxNMGePDz
XAP3uaXFM5Xez8wHQeVc/1bzkYDFzuhkd8uA5jX2y2GD9QEroVCzx7tVGJ/5HX6D
hTurVMjL9bhMf7tsiGYDNC/+CG1D54pzPnIPvKQd8wnHfFUMtCfLeeByNt6IKfAN
vyXpwBfvbB7Zw6rSylwQTq7cHUwBWsZ+iqbwfFp69gM0/AQOWEdmqb4fGBK0t7yA
oe+N4Fnjag1vP75vKksbOgqvi1yKqkN1HfAw01kOu4HgKQWNp5XH4xnnIQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDIgEplYTcFYpEwV19+Lb2m9FbxPMB8GA1UdIwQY
MBaAFEY/kXB3+PPQ4zjHQuoh1kNY0Z1SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUmotUmNIZjQ4OURqT01kQzZpSFdRMWpSblZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC84YjVmN2MtYjNhZS00YjU4LTgxYmIt
MjVhNDBjMDc1ZjEyLzEvTWlBU21WaE53VmlrVEJYWDM0dHZhYjBWdkU4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC84YjVmN2MtYjNhZS00YjU4LTgxYmItMjVhNDBjMDc1ZjEy
LzEvUmotUmNIZjQ4OURqT01kQzZpSFdRMWpSblZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwwLKMA0G
CSqGSIb3DQEBCwUAA4IBAQAXCxnCXbISZ3G1OzNJ9tlW4lnca6G71NPEj35wf6i9
un1bXBoO8nYwzcYmfeJCWlgoycDhBkSFolIo8WSkMhWsG1m+e3dBYMKM4A2Z0kYS
KlszkIXbExunPySLFQpAXp8O0b4WTvXT9rja/uezxV0n1EKN0vf4WsFngEdHOEIS
UZGkydsIiW8v2i6Rd0PcMLPEw/fOPfUJ/x/Y3o3ZRyDDOxupGljqMfjWVlW9u6Sp
vKlLtfYLaMV3eQ4k3PEJODXla+OD09XjzbfS7a0IwPiGYMlap8YPw+mqQrnxrT2g
HTdrL+s0on7hSPV3wNaCWV7e42SicOg/GoJB0otWgUvM
-----END CERTIFICATE-----
Generated at Thu Jun 27 17:22:26 2024 by rpki-client on console-fra.rpki-client.org