Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/t2pbN1LWK_a6yupsk_lrT41AJI0.roa
File: t2pbN1LWK_a6yupsk_lrT41AJI0.roa (raw, json)
Hash identifier: OU5AP48iYTmYOADaiE+WhHfaOIloxmUWgF7i5hZiW24=
Subject key identifier: B7:6A:5B:37:52:D6:2B:F6:BA:CA:EA:6C:93:F9:6B:4F:8D:40:24:8D
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 0187FADE5E7F7B0AC96065972DBB8A4688A9
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/t2pbN1LWK_a6yupsk_lrT41AJI0.roa
Signing time: Mon 08 May 2023 10:18:09 +0000
ROA not before: Mon 08 May 2023 10:18:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213200
IP address blocks: 195.178.141.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:fa:de:5e:7f:7b:0a:c9:60:65:97:2d:bb:8a:46:88:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: May 8 10:18:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b76a5b3752d62bf6bacaea6c93f96b4f8d40248d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:f9:07:4c:65:dc:5d:8c:2e:ca:f7:87:d9:3c:
b7:b4:24:1d:46:bb:cd:b4:9d:a3:dd:d8:8a:53:8f:
30:27:ba:4a:19:89:c2:c7:00:56:f8:17:71:83:bc:
11:c9:1a:5d:dc:35:f7:ec:ca:e4:b5:50:39:ca:b5:
01:f4:6b:5d:40:cb:7d:b6:19:ac:c3:65:7d:8e:d6:
cd:ee:01:57:21:f4:df:29:91:cf:f1:17:ca:7c:89:
f0:3b:ba:d3:23:61:b0:3b:0a:0e:35:e5:bd:b5:a1:
29:b0:f4:19:27:c5:7e:01:45:0f:d5:57:5a:ca:d0:
1b:a3:88:28:91:b4:d5:bb:f9:df:84:fd:45:90:9a:
2c:b7:d8:03:a6:3b:0d:7e:6d:3f:87:05:33:3c:22:
22:43:df:c7:35:1e:b0:de:97:3f:92:5c:2d:b9:b2:
29:45:50:0c:84:e5:80:9e:8e:4b:fc:7e:e7:f5:2d:
22:8b:5d:62:56:79:df:83:53:e3:6c:e6:80:6b:b4:
f5:f5:32:14:67:45:cf:f8:b8:25:4e:22:4a:dd:cf:
88:09:c8:33:d9:8c:60:37:a0:c3:d1:12:29:12:29:
f9:ee:3a:2a:ac:20:68:6f:5a:8f:5a:f0:c7:5c:94:
07:bd:32:a8:f9:e8:9a:10:11:b0:57:f3:97:40:29:
db:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:6A:5B:37:52:D6:2B:F6:BA:CA:EA:6C:93:F9:6B:4F:8D:40:24:8D
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/t2pbN1LWK_a6yupsk_lrT41AJI0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.178.141.0/24
Signature Algorithm: sha256WithRSAEncryption
08:1e:69:18:4a:73:03:40:df:e1:55:f6:d7:d5:bc:f4:96:c5:
ad:4c:8f:18:c4:fd:3a:8c:af:cc:24:de:2a:71:dd:cf:c4:60:
4b:ee:13:c4:fe:f3:77:96:91:1c:f2:9a:82:19:c3:37:a1:e6:
4f:74:09:b1:f8:99:a7:0e:cd:8c:a8:9d:df:70:51:07:c4:fd:
f0:3f:99:8d:af:1f:cd:be:0e:72:9f:ce:82:b0:f8:ee:51:87:
bc:f5:07:ba:2e:33:9e:60:e5:b8:fe:a5:36:7e:36:9c:e6:ee:
78:14:04:e2:11:dd:df:e9:0d:7a:90:58:74:6a:2d:f5:59:ad:
ed:69:22:e4:a1:38:ef:7f:07:b3:e5:b9:08:db:46:00:9e:0c:
64:b7:64:c7:b2:ce:06:4f:42:a9:d6:e6:a8:0f:ba:5e:fc:ba:
5c:24:71:a7:94:1b:ed:b2:07:55:27:bc:a9:d0:93:7a:ef:5a:
01:e8:0c:b0:d6:70:58:7b:97:de:11:15:44:cb:60:45:6b:40:
c0:d7:c8:d7:ce:1f:01:e7:67:b1:fb:35:ae:8c:b2:50:18:09:
79:1d:9a:54:7d:4e:1b:73:9c:4d:66:ff:63:6f:30:bd:94:cc:
44:2a:3a:c7:ca:76:87:58:9d:c2:88:28:c3:1d:a3:c0:28:32:
47:2d:6b:4e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYf63l5/ewrJYGWXLbuKRoipMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE5NDI2MzI1YWNiOGNlNjA5YTY4NmZhNjU1YjA1ODk2ODgw
OWIzNDYwHhcNMjMwNTA4MTAxODA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNzZhNWIzNzUyZDYyYmY2YmFjYWVhNmM5M2Y5NmI0ZjhkNDAyNDhkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjPkHTGXcXYwuyveH2Ty3tCQdRrvN
tJ2j3diKU48wJ7pKGYnCxwBW+Bdxg7wRyRpd3DX37MrktVA5yrUB9GtdQMt9thms
w2V9jtbN7gFXIfTfKZHP8RfKfInwO7rTI2GwOwoONeW9taEpsPQZJ8V+AUUP1Vda
ytAbo4gokbTVu/nfhP1FkJost9gDpjsNfm0/hwUzPCIiQ9/HNR6w3pc/klwtubIp
RVAMhOWAno5L/H7n9S0ii11iVnnfg1PjbOaAa7T19TIUZ0XP+LglTiJK3c+ICcgz
2YxgN6DD0RIpEin57joqrCBob1qPWvDHXJQHvTKo+eiaEBGwV/OXQCnbBQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLdqWzdS1iv2usrqbJP5a0+NQCSNMB8GA1UdIwQY
MBaAFBlCYyWsuM5gmmhvplWwWJaICbNGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR1VKakpheTR6bUNhYUctbVZiQllsb2dKczBZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS84YjZmYjAtYTg3NS00OTQ3LThhZTQt
MDNmNGM3MTEzYzM0LzEvdDJwYk4xTFdLX2E2eXVwc2tfbHJUNDFBSkkwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS84YjZmYjAtYTg3NS00OTQ3LThhZTQtMDNmNGM3MTEzYzM0
LzEvR1VKakpheTR6bUNhYUctbVZiQllsb2dKczBZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw7KNMA0G
CSqGSIb3DQEBCwUAA4IBAQAIHmkYSnMDQN/hVfbX1bz0lsWtTI8YxP06jK/MJN4q
cd3PxGBL7hPE/vN3lpEc8pqCGcM3oeZPdAmx+JmnDs2MqJ3fcFEHxP3wP5mNrx/N
vg5yn86CsPjuUYe89Qe6LjOeYOW4/qU2fjac5u54FATiEd3f6Q16kFh0ai31Wa3t
aSLkoTjvfwez5bkI20YAngxkt2THss4GT0Kp1uaoD7pe/LpcJHGnlBvtsgdVJ7yp
0JN671oB6Ayw1nBYe5feERVEy2BFa0DA18jXzh8B52ex+zWujLJQGAl5HZpUfU4b
c5xNZv9jbzC9lMxEKjrHynaHWJ3CiCjDHaPAKDJHLWtO
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:43 2024 by rpki-client on console-fra.rpki-client.org