Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/p84SLYd798rXc1F9C5xB2fXYc3M.roa
File: p84SLYd798rXc1F9C5xB2fXYc3M.roa (raw, json)
Hash identifier: l2Pv/DEfGcxtC3PJylowIJOWcVjZGIlUZ6tvVc2lOD0=
Subject key identifier: A7:CE:12:2D:87:7B:F7:CA:D7:73:51:7D:0B:9C:41:D9:F5:D8:73:73
Certificate issuer: /CN=44422eaa3daedf6b902159eedbe94ca9b7d2284f
Certificate serial: 018D319D57EDEB9B18E9AD025543ACA3FAAD
Authority key identifier: 44:42:2E:AA:3D:AE:DF:6B:90:21:59:EE:DB:E9:4C:A9:B7:D2:28:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/REIuqj2u32uQIVnu2-lMqbfSKE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/p84SLYd798rXc1F9C5xB2fXYc3M.roa
Signing time: Mon 22 Jan 2024 14:40:11 +0000
ROA not before: Mon 22 Jan 2024 14:40:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204105
IP address blocks: 95.215.59.0/24 maxlen: 24
2a13:c640::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 27 Jan 2024 12:07:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:31:9d:57:ed:eb:9b:18:e9:ad:02:55:43:ac:a3:fa:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44422eaa3daedf6b902159eedbe94ca9b7d2284f
Validity
Not Before: Jan 22 14:40:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a7ce122d877bf7cad773517d0b9c41d9f5d87373
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:88:f4:c8:81:41:d6:87:44:f1:51:86:2c:c3:
e6:29:2c:14:ee:03:90:4c:07:df:18:d0:7a:84:bf:
36:b1:e3:18:b7:7d:a7:54:5d:2a:e4:48:a2:c1:92:
4e:79:e1:dd:be:42:51:77:fd:25:e2:7a:be:44:12:
5a:d8:77:06:f1:cc:4f:b8:36:ab:86:42:ce:ab:8f:
7e:d0:7d:7e:53:af:ce:76:bb:67:bc:a1:c0:bc:ca:
e4:c1:fe:22:71:5e:9f:e3:97:3d:ac:10:f8:0b:2d:
31:5a:78:74:68:b1:53:cb:66:51:22:d4:23:47:c3:
32:0f:08:56:8c:6d:92:1f:7f:d6:8f:29:3b:a7:df:
e9:8a:f5:df:d7:32:e6:46:a3:6e:99:89:40:37:22:
16:41:4a:6a:2e:17:32:2b:86:21:7d:c8:2d:54:c5:
6e:a8:27:a3:3c:42:90:58:26:58:98:f6:91:ec:af:
b7:8d:59:da:f7:49:56:28:52:9f:b5:03:3d:20:2d:
09:ed:e6:46:07:d4:a1:05:81:08:54:c5:e8:e4:50:
e0:1a:7a:30:ce:9f:30:1e:45:b2:70:79:57:97:51:
56:ab:85:7b:7a:89:f4:81:20:5b:e6:3b:16:4b:25:
bd:bc:ad:25:6f:fc:84:c0:1a:b6:4e:d6:89:e3:82:
e8:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:CE:12:2D:87:7B:F7:CA:D7:73:51:7D:0B:9C:41:D9:F5:D8:73:73
X509v3 Authority Key Identifier:
keyid:44:42:2E:AA:3D:AE:DF:6B:90:21:59:EE:DB:E9:4C:A9:B7:D2:28:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/REIuqj2u32uQIVnu2-lMqbfSKE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/p84SLYd798rXc1F9C5xB2fXYc3M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.215.59.0/24
IPv6:
2a13:c640::/32
Signature Algorithm: sha256WithRSAEncryption
9e:f0:15:62:12:a7:db:03:7d:e9:1a:ec:5d:64:19:b9:f2:9b:
92:fe:66:f8:a7:09:2c:1a:56:e7:b2:b7:10:de:6d:73:d7:5f:
93:04:77:69:58:d4:ed:81:30:c9:90:02:2d:19:3a:c0:ba:f5:
57:3a:d7:1b:ee:2f:91:d0:99:e0:5b:fd:87:1b:e2:a8:f7:f2:
99:59:66:15:49:7c:66:0c:c0:b9:c3:b0:ed:b1:b6:e4:14:3d:
3c:33:ae:ca:88:f1:9e:8a:4d:0c:2b:ed:a0:a9:b2:d2:58:a7:
b6:75:e1:df:04:01:27:ec:2e:8c:fd:0d:01:ef:61:a9:02:3e:
1a:77:29:42:53:9c:87:8a:e2:bf:ef:c1:29:f7:1e:fa:2c:9a:
49:a3:f8:a0:fb:45:15:f9:f5:65:3c:70:87:50:dc:66:7e:60:
83:b6:ba:20:41:5c:1a:c6:f5:4e:ef:30:87:89:e1:20:09:cc:
e5:aa:9d:e0:48:88:ef:04:fa:d4:d7:4b:61:d3:ef:0b:01:01:
6f:09:83:e5:55:d3:0b:7e:cc:7e:ec:7f:5b:7f:9c:b0:f3:11:
42:b5:60:5a:a8:57:bb:de:fb:8e:18:75:68:37:41:7f:08:82:
10:0d:fe:e3:08:bb:a1:a4:48:2e:d6:9f:a8:65:d0:d7:e4:34:
b1:35:00:0a
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAY0xnVft65sY6a0CVUOso/qtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0NDIyZWFhM2RhZWRmNmI5MDIxNTllZWRiZTk0Y2E5Yjdk
MjI4NGYwHhcNMjQwMTIyMTQ0MDExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhN2NlMTIyZDg3N2JmN2NhZDc3MzUxN2QwYjljNDFkOWY1ZDg3MzczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiIj0yIFB1odE8VGGLMPmKSwU7gOQ
TAffGNB6hL82seMYt32nVF0q5EiiwZJOeeHdvkJRd/0l4nq+RBJa2HcG8cxPuDar
hkLOq49+0H1+U6/OdrtnvKHAvMrkwf4icV6f45c9rBD4Cy0xWnh0aLFTy2ZRItQj
R8MyDwhWjG2SH3/Wjyk7p9/pivXf1zLmRqNumYlANyIWQUpqLhcyK4YhfcgtVMVu
qCejPEKQWCZYmPaR7K+3jVna90lWKFKftQM9IC0J7eZGB9ShBYEIVMXo5FDgGnow
zp8wHkWycHlXl1FWq4V7eon0gSBb5jsWSyW9vK0lb/yEwBq2TtaJ44LoPwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFKfOEi2He/fK13NRfQucQdn12HNzMB8GA1UdIwQY
MBaAFERCLqo9rt9rkCFZ7tvpTKm30ihPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUkVJdXFqMnUzMnVRSVZudTItbE1xYmZTS0U4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC9kZDk0NGQtOGZhYS00Y2NlLWFhZmUt
YzA1MGY0YzA1ZjI5LzEvcDg0U0xZZDc5OHJYYzFGOUM1eEIyZlhZYzNNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC9kZDk0NGQtOGZhYS00Y2NlLWFhZmUtYzA1MGY0YzA1ZjI5
LzEvUkVJdXFqMnUzMnVRSVZudTItbE1xYmZTS0U4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAX9c7MA0E
AgACMAcDBQAqE8ZAMA0GCSqGSIb3DQEBCwUAA4IBAQCe8BViEqfbA33pGuxdZBm5
8puS/mb4pwksGlbnsrcQ3m1z11+TBHdpWNTtgTDJkAItGTrAuvVXOtcb7i+R0Jng
W/2HG+Ko9/KZWWYVSXxmDMC5w7DtsbbkFD08M67KiPGeik0MK+2gqbLSWKe2deHf
BAEn7C6M/Q0B72GpAj4adylCU5yHiuK/78Ep9x76LJpJo/ig+0UV+fVlPHCHUNxm
fmCDtrogQVwaxvVO7zCHieEgCczlqp3gSIjvBPrU10th0+8LAQFvCYPlVdMLfsx+
7H9bf5yw8xFCtWBaqFe73vuOGHVoN0F/CIIQDf7jCLuhpEgu1p+oZdDX5DSxNQAK
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:49 2024 by rpki-client on console-ams.rpki-client.org