Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/tNXyfW0bd9gIsMuHxaE7feMIIzo.roa
File: tNXyfW0bd9gIsMuHxaE7feMIIzo.roa (raw, json)
Hash identifier: tWJXIYguePsDRMdbXm4n7MXaAGH3qeZ9l/0zv4WrvKQ=
Subject key identifier: B4:D5:F2:7D:6D:1B:77:D8:08:B0:CB:87:C5:A1:3B:7D:E3:08:23:3A
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 018CF965B3819C2892098F4C66D9C3935304
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/tNXyfW0bd9gIsMuHxaE7feMIIzo.roa
Signing time: Thu 11 Jan 2024 16:40:41 +0000
ROA not before: Thu 11 Jan 2024 16:40:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202972
IP address blocks: 195.178.140.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Mar 2024 10:27:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f9:65:b3:81:9c:28:92:09:8f:4c:66:d9:c3:93:53:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Jan 11 16:40:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b4d5f27d6d1b77d808b0cb87c5a13b7de308233a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:ad:46:9c:bd:c0:67:74:c3:16:70:81:94:0d:
79:1a:94:ed:30:b9:d8:10:4d:45:13:e7:b9:f2:94:
e8:a0:c2:f1:bd:11:c1:1a:ba:55:f5:0e:63:c4:28:
99:17:87:51:7d:eb:86:b9:2d:7c:de:bc:92:10:7c:
7f:ba:96:14:95:a0:e3:cb:71:53:a4:e4:cb:96:ba:
77:0c:62:39:f0:0b:ce:ca:84:81:40:3d:e9:3c:76:
a1:d2:6d:9b:ea:71:d2:98:9a:be:41:01:e5:e4:b5:
7d:85:af:05:7a:ea:a3:39:79:bc:8b:62:9b:b7:3a:
b2:f6:9b:61:e2:e7:ae:a9:58:ef:c5:95:2b:e3:1c:
b4:b4:f1:d8:fe:1b:48:3a:f2:b8:1e:ae:75:14:78:
7e:24:aa:88:f9:b0:d9:76:91:d3:1f:43:df:30:9b:
3d:bc:9f:61:b9:cc:4c:23:cf:15:7c:23:87:81:c0:
e0:20:16:42:08:dc:8f:2a:fc:4d:ee:4f:6e:07:40:
78:9d:f6:73:5f:de:6a:8d:e7:de:d6:e2:3a:b7:9e:
7f:34:39:20:d7:c1:29:cc:d3:bf:3a:58:76:5f:05:
94:75:38:13:03:d6:36:87:e8:8f:77:66:d6:0c:77:
75:1b:79:2d:ea:fd:f0:7d:02:3c:1a:b8:64:02:24:
00:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:D5:F2:7D:6D:1B:77:D8:08:B0:CB:87:C5:A1:3B:7D:E3:08:23:3A
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/tNXyfW0bd9gIsMuHxaE7feMIIzo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.178.140.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:69:9f:e3:09:28:8f:ab:8e:32:e5:d3:ff:48:82:4c:30:06:
63:27:e1:a9:57:a8:c3:d3:8f:7e:dd:3c:17:d1:a4:70:cf:c3:
a1:9a:8a:d3:b4:3c:26:63:a2:6c:70:38:ff:9a:ee:ff:f2:28:
7e:c6:6d:76:ab:bc:b7:88:95:9d:66:28:88:7e:d4:4b:ff:7f:
f5:e2:0f:b6:56:75:87:21:2c:b2:75:ee:99:76:7d:6f:06:7b:
c4:f0:3c:2e:9c:71:b5:20:a9:2c:0d:cf:7f:83:8e:50:2f:2e:
4f:6f:66:23:fc:8e:f9:c4:9e:b6:23:08:80:76:3d:0f:9e:08:
5e:59:3e:67:c6:ca:37:75:c9:24:e0:c5:48:2e:d3:46:d8:ce:
a0:01:51:63:ee:20:61:4a:0e:22:11:96:13:76:7e:31:bb:50:
3d:58:78:6f:a0:89:03:b5:5c:e0:92:de:3f:e4:5d:47:25:1e:
b7:70:fb:b0:ee:9c:fe:f3:8e:6e:b1:ef:e5:4c:1b:12:ad:ee:
d8:3a:e0:de:01:bd:8c:98:47:26:24:b0:2e:ae:1b:43:4e:7c:
57:d5:0b:85:14:58:d9:dc:ed:54:61:e6:16:f5:e3:df:54:20:
4d:b3:da:05:02:d3:33:5c:9b:c8:1a:cf:37:c9:7a:8a:e9:41:
8b:95:5a:12
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYz5ZbOBnCiSCY9MZtnDk1MEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE5NDI2MzI1YWNiOGNlNjA5YTY4NmZhNjU1YjA1ODk2ODgw
OWIzNDYwHhcNMjQwMTExMTY0MDQxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNGQ1ZjI3ZDZkMWI3N2Q4MDhiMGNiODdjNWExM2I3ZGUzMDgyMzNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhq1GnL3AZ3TDFnCBlA15GpTtMLnY
EE1FE+e58pTooMLxvRHBGrpV9Q5jxCiZF4dRfeuGuS183rySEHx/upYUlaDjy3FT
pOTLlrp3DGI58AvOyoSBQD3pPHah0m2b6nHSmJq+QQHl5LV9ha8FeuqjOXm8i2Kb
tzqy9pth4ueuqVjvxZUr4xy0tPHY/htIOvK4Hq51FHh+JKqI+bDZdpHTH0PfMJs9
vJ9hucxMI88VfCOHgcDgIBZCCNyPKvxN7k9uB0B4nfZzX95qjefe1uI6t55/NDkg
18EpzNO/Olh2XwWUdTgTA9Y2h+iPd2bWDHd1G3kt6v3wfQI8GrhkAiQA2QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLTV8n1tG3fYCLDLh8WhO33jCCM6MB8GA1UdIwQY
MBaAFBlCYyWsuM5gmmhvplWwWJaICbNGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR1VKakpheTR6bUNhYUctbVZiQllsb2dKczBZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS84YjZmYjAtYTg3NS00OTQ3LThhZTQt
MDNmNGM3MTEzYzM0LzEvdE5YeWZXMGJkOWdJc011SHhhRTdmZU1JSXpvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS84YjZmYjAtYTg3NS00OTQ3LThhZTQtMDNmNGM3MTEzYzM0
LzEvR1VKakpheTR6bUNhYUctbVZiQllsb2dKczBZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw7KMMA0G
CSqGSIb3DQEBCwUAA4IBAQBPaZ/jCSiPq44y5dP/SIJMMAZjJ+GpV6jD049+3TwX
0aRwz8OhmorTtDwmY6JscDj/mu7/8ih+xm12q7y3iJWdZiiIftRL/3/14g+2VnWH
ISyyde6Zdn1vBnvE8DwunHG1IKksDc9/g45QLy5Pb2Yj/I75xJ62IwiAdj0Pnghe
WT5nxso3dckk4MVILtNG2M6gAVFj7iBhSg4iEZYTdn4xu1A9WHhvoIkDtVzgkt4/
5F1HJR63cPuw7pz+845use/lTBsSre7YOuDeAb2MmEcmJLAurhtDTnxX1QuFFFjZ
3O1UYeYW9ePfVCBNs9oFAtMzXJvIGs83yXqK6UGLlVoS
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:43 2024 by rpki-client on console-fra.rpki-client.org