Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/PsJn6ZefdBvd_N1wI_pi3PJZkp0.roa
File: PsJn6ZefdBvd_N1wI_pi3PJZkp0.roa (raw, json)
Hash identifier: GRADXhSdFlC0nARyqUTx8rNnraPQlCfLvmcfVRigtBg=
Subject key identifier: 3E:C2:67:E9:97:9F:74:1B:DD:FC:DD:70:23:FA:62:DC:F2:59:92:9D
Certificate issuer: /CN=fb987244611b5230536744b6a89f044f32f462ea
Certificate serial: 018570E74EB10ED9E407C40AE8C64B181228
Authority key identifier: FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/PsJn6ZefdBvd_N1wI_pi3PJZkp0.roa
Signing time: Mon 02 Jan 2023 05:14:45 +0000
ROA not before: Mon 02 Jan 2023 05:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24825
IP address blocks: 195.22.173.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:4e:b1:0e:d9:e4:07:c4:0a:e8:c6:4b:18:12:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb987244611b5230536744b6a89f044f32f462ea
Validity
Not Before: Jan 2 05:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3ec267e9979f741bddfcdd7023fa62dcf259929d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:5d:47:43:24:f4:45:97:be:8a:f9:e8:27:01:
d0:52:66:68:ba:d2:f3:c4:a7:7b:79:43:cf:9c:ab:
d3:d3:94:51:43:22:95:cf:a2:bd:c0:ab:ff:38:66:
0e:17:10:c2:31:15:23:45:69:db:d0:21:26:79:77:
ad:aa:c5:b3:b4:89:4a:ca:6d:24:d2:b6:a9:20:8c:
d4:3f:06:d8:22:7d:d7:fe:ff:b3:88:72:7e:ec:2a:
91:33:6a:57:d9:76:ff:f4:d6:b4:48:d2:a4:e6:77:
e5:ae:c2:18:a2:5e:37:25:05:b2:ee:00:8c:e3:17:
dd:83:1e:3a:aa:73:8f:88:b3:3f:73:2a:f8:7f:d5:
2c:9d:28:89:65:bd:76:60:cc:f4:5c:77:b0:88:5a:
db:78:6e:0b:93:3d:78:23:af:29:bd:80:45:97:4e:
38:0f:77:25:5b:73:c4:ba:53:6c:b2:4f:9a:5e:dd:
b6:4e:29:aa:1b:3c:6f:90:64:9f:78:48:6e:6d:8b:
f8:4c:ba:d1:f4:9a:9c:ca:e8:d6:6d:ee:78:ed:c6:
ce:94:fd:af:4e:fb:d6:89:14:bd:19:8b:5a:05:f7:
45:bc:55:66:d2:00:1f:0a:a9:ec:e0:96:8b:5e:81:
c7:4d:a4:8f:1d:97:f6:ab:a9:46:7d:9d:de:8f:ff:
60:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:C2:67:E9:97:9F:74:1B:DD:FC:DD:70:23:FA:62:DC:F2:59:92:9D
X509v3 Authority Key Identifier:
keyid:FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/PsJn6ZefdBvd_N1wI_pi3PJZkp0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.22.173.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:45:e9:66:cd:d2:89:16:a6:53:a8:3e:5e:e1:21:da:d2:c7:
71:88:bc:99:cb:2e:b3:03:ce:23:2e:78:3a:0d:03:9b:66:ae:
ac:f9:96:15:c9:a9:a1:1f:7b:8d:98:fd:46:c4:06:3e:43:14:
1d:09:97:31:ea:e5:51:1a:72:84:a3:92:16:71:7e:1a:4a:3f:
53:54:11:eb:72:9d:86:67:02:5a:81:1a:c4:46:9d:61:f0:0a:
37:7e:01:1d:dc:2f:f9:67:be:4d:f7:54:1e:4b:80:66:e9:59:
2a:cb:d9:90:41:6f:e3:31:f5:b1:46:90:85:23:70:fb:bb:90:
7f:e8:14:cf:dc:e7:92:9d:16:70:e7:d6:f0:ad:33:f9:05:06:
02:2d:fb:64:ae:fb:b3:d1:71:b3:5a:6c:fe:03:7c:3f:6b:c7:
2a:61:5f:68:e5:ee:04:01:7b:ff:71:12:b0:11:90:f5:65:29:
7d:62:c7:f1:04:83:9c:74:92:52:c8:ac:1d:23:d3:08:3d:eb:
db:4e:b1:22:bc:6f:23:1a:ae:3e:d1:5e:a2:57:2e:e6:11:07:
02:13:25:68:57:d6:db:5e:6f:9c:b6:ee:4d:17:10:40:fa:93:
71:6d:d7:6a:84:d9:1e:a1:23:b1:00:50:16:5c:90:df:b5:c2:
b3:ce:8f:26
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYVw506xDtnkB8QK6MZLGBIoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZiOTg3MjQ0NjExYjUyMzA1MzY3NDRiNmE4OWYwNDRmMzJm
NDYyZWEwHhcNMjMwMTAyMDUxNDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZWMyNjdlOTk3OWY3NDFiZGRmY2RkNzAyM2ZhNjJkY2YyNTk5MjlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkV1HQyT0RZe+ivnoJwHQUmZoutLz
xKd7eUPPnKvT05RRQyKVz6K9wKv/OGYOFxDCMRUjRWnb0CEmeXetqsWztIlKym0k
0rapIIzUPwbYIn3X/v+ziHJ+7CqRM2pX2Xb/9Na0SNKk5nflrsIYol43JQWy7gCM
4xfdgx46qnOPiLM/cyr4f9UsnSiJZb12YMz0XHewiFrbeG4Lkz14I68pvYBFl044
D3clW3PEulNssk+aXt22TimqGzxvkGSfeEhubYv4TLrR9JqcyujWbe547cbOlP2v
TvvWiRS9GYtaBfdFvFVm0gAfCqns4JaLXoHHTaSPHZf2q6lGfZ3ej/9gvQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFD7CZ+mXn3Qb3fzdcCP6YtzyWZKdMB8GA1UdIwQY
MBaAFPuYckRhG1IwU2dEtqifBE8y9GLqMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS01aHlSR0ViVWpCVFowUzJxSjhFVHpMMFl1by5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDQvMzE5ZDdjLTdlNzYtNDMwOC1iYzAw
LWJlNTgzMmQ1ZjdhYS8xL1BzSm42WmVmZEJ2ZF9OMXdJX3BpM1BKWmtwMC5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNDQvMzE5ZDdjLTdlNzYtNDMwOC1iYzAwLWJlNTgzMmQ1Zjdh
YS8xLzEtNWh5UkdFYlVqQlRaMFMycUo4RVR6TDBZdW8uY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADDFq0w
DQYJKoZIhvcNAQELBQADggEBAEtF6WbN0okWplOoPl7hIdrSx3GIvJnLLrMDziMu
eDoNA5tmrqz5lhXJqaEfe42Y/UbEBj5DFB0JlzHq5VEacoSjkhZxfhpKP1NUEety
nYZnAlqBGsRGnWHwCjd+AR3cL/lnvk33VB5LgGbpWSrL2ZBBb+Mx9bFGkIUjcPu7
kH/oFM/c55KdFnDn1vCtM/kFBgIt+2Su+7PRcbNabP4DfD9rxyphX2jl7gQBe/9x
ErARkPVlKX1ix/EEg5x0klLIrB0j0wg969tOsSK8byMarj7RXqJXLuYRBwITJWhX
1tteb5y27k0XEED6k3Ft12qE2R6hI7EAUBZckN+1wrPOjyY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:42 2024 by rpki-client on console-ams.rpki-client.org