Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/8d1e2b-319f-44ac-b969-e4a50f71da0c/1/7HNqIXd_iLkdNkNP4nsoKJjPzXk.roa
File: 7HNqIXd_iLkdNkNP4nsoKJjPzXk.roa (raw, json)
Hash identifier: ZRLZvfzRj67mzv2727pB3a23E63P71ZjPuZbVht5Yws=
Subject key identifier: EC:73:6A:21:77:7F:88:B9:1D:36:43:4F:E2:7B:28:28:98:CF:CD:79
Certificate issuer: /CN=208fa2b8733f5318267ad13bec0794346277cf25
Certificate serial: 018C20834051AD1A03C72FF90AFF57E5ECE7
Authority key identifier: 20:8F:A2:B8:73:3F:53:18:26:7A:D1:3B:EC:07:94:34:62:77:CF:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/II-iuHM_UxgmetE77AeUNGJ3zyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/8d1e2b-319f-44ac-b969-e4a50f71da0c/1/7HNqIXd_iLkdNkNP4nsoKJjPzXk.roa
Signing time: Thu 30 Nov 2023 13:55:21 +0000
ROA not before: Thu 30 Nov 2023 13:55:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 215921
IP address blocks: 195.28.188.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:20:83:40:51:ad:1a:03:c7:2f:f9:0a:ff:57:e5:ec:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=208fa2b8733f5318267ad13bec0794346277cf25
Validity
Not Before: Nov 30 13:55:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ec736a21777f88b91d36434fe27b282898cfcd79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:3d:bd:43:6c:89:41:c2:8b:c9:34:9b:43:bd:
1f:fe:36:cf:f8:73:f4:55:53:69:af:ad:35:00:0c:
e8:ce:91:cc:ef:9f:57:75:45:eb:1b:e3:b7:f8:3f:
13:63:ac:d5:84:17:fa:70:90:03:4d:7c:c6:a8:ba:
cd:4d:2d:79:44:ce:ab:13:16:77:8a:e2:af:e5:49:
2a:79:c7:c4:1e:0b:b7:8a:e4:c8:55:6f:be:53:7e:
a0:68:46:96:da:98:97:ba:8d:62:4a:4b:77:7d:5c:
d6:31:69:14:40:33:42:7e:e5:fd:a1:1f:eb:04:d8:
12:3a:0d:4e:50:25:24:c1:89:2f:ae:7e:6e:8f:2b:
03:e2:af:ee:fa:04:bb:e5:e8:7a:a4:d8:f0:26:53:
72:bb:24:2d:39:53:18:3e:eb:5c:a9:ed:7d:3b:0f:
5b:26:e0:5d:93:91:70:f5:19:64:73:82:09:26:48:
04:00:11:01:69:dc:f7:c1:ed:9b:74:cc:83:e9:07:
71:71:98:6a:d8:da:c3:ed:51:1d:d8:2c:a4:21:39:
20:98:d0:82:de:fa:9c:7d:68:d0:4d:20:bf:e9:00:
15:81:ae:c0:ac:87:21:63:67:58:f5:83:94:ec:bd:
d0:34:cb:fb:97:28:99:06:aa:9f:5c:a0:66:c4:6b:
c4:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:73:6A:21:77:7F:88:B9:1D:36:43:4F:E2:7B:28:28:98:CF:CD:79
X509v3 Authority Key Identifier:
keyid:20:8F:A2:B8:73:3F:53:18:26:7A:D1:3B:EC:07:94:34:62:77:CF:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/II-iuHM_UxgmetE77AeUNGJ3zyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/8d1e2b-319f-44ac-b969-e4a50f71da0c/1/7HNqIXd_iLkdNkNP4nsoKJjPzXk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/8d1e2b-319f-44ac-b969-e4a50f71da0c/1/II-iuHM_UxgmetE77AeUNGJ3zyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.28.188.0/24
Signature Algorithm: sha256WithRSAEncryption
31:e5:87:f8:a4:e4:bc:3a:5b:d3:bd:3d:7c:01:c3:83:ab:db:
5d:25:81:e1:34:b0:53:e1:f7:61:7c:a8:36:2b:54:84:19:bd:
1e:e1:6c:63:33:fe:d3:63:cf:28:aa:f2:39:87:ca:6c:9f:21:
43:29:43:5b:3f:8b:7b:89:67:3f:22:1f:d0:e2:c8:b0:99:63:
c9:88:bf:d2:2e:3e:fd:32:3d:cd:68:63:a1:ea:04:70:3e:91:
f8:1d:d4:bb:2d:81:a7:62:a4:0b:e2:6d:ce:c8:d7:d4:0e:cd:
fe:ab:eb:db:d0:ff:89:f6:06:d2:56:39:ac:dd:58:36:54:55:
dd:9b:25:a8:7d:9f:00:b3:7e:82:c8:e9:61:ff:0a:49:ab:87:
70:59:dd:17:6e:8a:0a:d0:b7:db:48:e9:8d:7d:75:df:a7:a4:
26:bf:30:c3:3a:28:5d:04:35:17:8c:04:62:95:6c:40:88:86:
bf:73:11:c2:92:16:db:97:5e:7e:6a:b2:c7:63:6f:fc:58:2d:
9a:2d:a5:02:38:fd:00:1b:d2:d7:7c:25:e1:29:ba:10:fd:65:
38:07:68:14:d4:6c:5d:2f:8e:68:1b:83:36:0f:44:7e:d8:ca:
09:c3:55:f3:fb:c2:8b:6f:6b:00:f7:78:79:f9:a9:1e:68:bb:
a6:cc:a9:fd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYwgg0BRrRoDxy/5Cv9X5eznMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwOGZhMmI4NzMzZjUzMTgyNjdhZDEzYmVjMDc5NDM0NjI3
N2NmMjUwHhcNMjMxMTMwMTM1NTIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYzczNmEyMTc3N2Y4OGI5MWQzNjQzNGZlMjdiMjgyODk4Y2ZjZDc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnj29Q2yJQcKLyTSbQ70f/jbP+HP0
VVNpr601AAzozpHM759XdUXrG+O3+D8TY6zVhBf6cJADTXzGqLrNTS15RM6rExZ3
iuKv5UkqecfEHgu3iuTIVW++U36gaEaW2piXuo1iSkt3fVzWMWkUQDNCfuX9oR/r
BNgSOg1OUCUkwYkvrn5ujysD4q/u+gS75eh6pNjwJlNyuyQtOVMYPutcqe19Ow9b
JuBdk5Fw9Rlkc4IJJkgEABEBadz3we2bdMyD6QdxcZhq2NrD7VEd2CykITkgmNCC
3vqcfWjQTSC/6QAVga7ArIchY2dY9YOU7L3QNMv7lyiZBqqfXKBmxGvE2wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOxzaiF3f4i5HTZDT+J7KCiYz815MB8GA1UdIwQY
MBaAFCCPorhzP1MYJnrRO+wHlDRid88lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSUktaXVITV9VeGdtZXRFNzdBZVVOR0ozenlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi84ZDFlMmItMzE5Zi00NGFjLWI5Njkt
ZTRhNTBmNzFkYTBjLzEvN0hOcUlYZF9pTGtkTmtOUDRuc29LSmpQelhrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZi84ZDFlMmItMzE5Zi00NGFjLWI5NjktZTRhNTBmNzFkYTBj
LzEvSUktaXVITV9VeGdtZXRFNzdBZVVOR0ozenlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwxy8MA0G
CSqGSIb3DQEBCwUAA4IBAQAx5Yf4pOS8OlvTvT18AcODq9tdJYHhNLBT4fdhfKg2
K1SEGb0e4WxjM/7TY88oqvI5h8psnyFDKUNbP4t7iWc/Ih/Q4siwmWPJiL/SLj79
Mj3NaGOh6gRwPpH4HdS7LYGnYqQL4m3OyNfUDs3+q+vb0P+J9gbSVjms3Vg2VFXd
myWofZ8As36CyOlh/wpJq4dwWd0XbooK0LfbSOmNfXXfp6QmvzDDOihdBDUXjARi
lWxAiIa/cxHCkhbbl15+arLHY2/8WC2aLaUCOP0AG9LXfCXhKboQ/WU4B2gU1Gxd
L45oG4M2D0R+2MoJw1Xz+8KLb2sA93h5+akeaLumzKn9
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:10 2024 by rpki-client on console-ams.rpki-client.org