Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/b4e3e4-1189-4036-8f1a-042f7dac24d5/1/9mKhImhgiWhpDlHyoiVQJrtktt0.roa
File: 9mKhImhgiWhpDlHyoiVQJrtktt0.roa (raw, json)
Hash identifier: ty/CzmXP4UMHDOKwNvJb8c1FWvh268R8Ux+rV/ezpxk=
Subject key identifier: F6:62:A1:22:68:60:89:68:69:0E:51:F2:A2:25:50:26:BB:64:B6:DD
Certificate issuer: /CN=11193f8e898eb6fbd12c53df7dad021543eefc6e
Certificate serial: 0185704BEDE9E307F7D22497FEDA891A6FF5
Authority key identifier: 11:19:3F:8E:89:8E:B6:FB:D1:2C:53:DF:7D:AD:02:15:43:EE:FC:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ERk_jomOtvvRLFPffa0CFUPu_G4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/b4e3e4-1189-4036-8f1a-042f7dac24d5/1/9mKhImhgiWhpDlHyoiVQJrtktt0.roa
Signing time: Mon 02 Jan 2023 02:25:02 +0000
ROA not before: Mon 02 Jan 2023 02:25:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 196807
IP address blocks: 195.35.84.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:4b:ed:e9:e3:07:f7:d2:24:97:fe:da:89:1a:6f:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11193f8e898eb6fbd12c53df7dad021543eefc6e
Validity
Not Before: Jan 2 02:25:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f662a12268608968690e51f2a2255026bb64b6dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:ca:09:ba:16:f5:f8:3d:07:6b:f1:38:c3:05:
d5:78:c4:36:d2:4f:29:9d:f7:4b:2d:7a:0b:0e:72:
45:05:27:f1:86:d6:ad:f6:1c:5e:e4:dc:ca:54:fa:
9e:dd:84:e0:94:b4:ce:54:2e:3f:21:5c:7b:08:e9:
07:58:32:a8:f6:9f:b3:98:1c:ab:86:3a:60:14:b2:
5d:70:0f:d7:9c:aa:4d:00:ef:f6:d5:0a:42:b4:59:
2f:8a:19:ed:43:4b:c5:87:8b:52:50:a6:59:36:2c:
87:be:b2:7d:e2:f3:5f:38:75:35:2a:21:07:f3:e2:
1d:7e:16:24:61:fd:f8:6a:dd:b5:02:58:f1:ce:97:
35:f9:4b:17:06:03:1c:b2:d9:57:fa:c8:de:7c:9f:
b0:54:bc:c3:7d:05:24:85:83:64:16:f3:3c:76:97:
f1:0a:37:0f:f8:73:64:d9:8f:69:4a:5c:60:51:3c:
3e:25:b8:71:e7:e2:b6:7e:8a:e0:6b:00:81:99:8e:
f6:9c:4a:0a:95:10:b2:c9:3c:d5:55:ec:4a:ed:01:
1b:4a:ab:7f:01:f9:40:dc:78:b2:8a:87:ef:08:a3:
93:47:eb:24:a3:a2:6f:fc:f9:0c:e3:04:9d:58:61:
02:dd:3d:02:02:20:5a:31:50:e3:ea:40:16:dc:2d:
7c:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:62:A1:22:68:60:89:68:69:0E:51:F2:A2:25:50:26:BB:64:B6:DD
X509v3 Authority Key Identifier:
keyid:11:19:3F:8E:89:8E:B6:FB:D1:2C:53:DF:7D:AD:02:15:43:EE:FC:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ERk_jomOtvvRLFPffa0CFUPu_G4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/b4e3e4-1189-4036-8f1a-042f7dac24d5/1/9mKhImhgiWhpDlHyoiVQJrtktt0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/b4e3e4-1189-4036-8f1a-042f7dac24d5/1/ERk_jomOtvvRLFPffa0CFUPu_G4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.35.84.0/24
Signature Algorithm: sha256WithRSAEncryption
51:a7:e7:2c:fa:6b:e1:88:e6:a4:90:04:4b:f4:f2:e8:8e:ce:
05:b4:ae:6a:cb:33:cc:f5:b7:ae:92:6b:ed:d1:9d:12:da:bd:
9b:d0:61:38:b8:69:79:4c:37:d2:69:3a:34:06:e6:4c:9c:09:
57:ac:fa:79:71:fb:6e:72:f8:4d:e6:01:15:5a:8a:6f:c5:54:
d3:7b:0e:d4:0e:49:db:0c:56:bf:bc:8a:34:a9:60:e5:bb:14:
3d:75:16:d3:78:55:42:6e:7c:13:e5:9d:68:e4:01:c3:97:01:
84:52:2c:f0:f8:63:c1:1b:b3:f7:99:43:04:10:65:e4:2d:d1:
8f:ff:48:89:01:16:f5:9b:a0:b2:16:fb:30:aa:71:1b:8a:33:
e4:1a:af:3e:a5:02:a7:1f:cc:37:f1:76:e7:50:1c:b1:0c:03:
1e:2e:96:aa:7a:43:66:c8:6b:44:46:4d:42:b6:69:b0:d7:c2:
57:27:6f:7d:32:3b:6f:c1:4e:f8:67:ee:c4:43:3c:da:08:af:
03:47:c3:d7:8a:cf:8d:35:6d:cc:12:03:43:b3:c9:ca:6e:e4:
76:4b:4a:66:79:16:39:09:06:90:74:41:be:0a:4c:1a:04:35:
6c:43:a8:f1:61:5b:b4:5d:06:47:c9:fe:08:af:e8:57:91:a8:
97:f6:24:de
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwS+3p4wf30iSX/tqJGm/1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDExMTkzZjhlODk4ZWI2ZmJkMTJjNTNkZjdkYWQwMjE1NDNl
ZWZjNmUwHhcNMjMwMTAyMDIyNTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNjYyYTEyMjY4NjA4OTY4NjkwZTUxZjJhMjI1NTAyNmJiNjRiNmRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg8oJuhb1+D0Ha/E4wwXVeMQ20k8p
nfdLLXoLDnJFBSfxhtat9hxe5NzKVPqe3YTglLTOVC4/IVx7COkHWDKo9p+zmByr
hjpgFLJdcA/XnKpNAO/21QpCtFkvihntQ0vFh4tSUKZZNiyHvrJ94vNfOHU1KiEH
8+IdfhYkYf34at21Aljxzpc1+UsXBgMcstlX+sjefJ+wVLzDfQUkhYNkFvM8dpfx
CjcP+HNk2Y9pSlxgUTw+Jbhx5+K2forgawCBmY72nEoKlRCyyTzVVexK7QEbSqt/
AflA3HiyiofvCKOTR+sko6Jv/PkM4wSdWGEC3T0CAiBaMVDj6kAW3C18TQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPZioSJoYIloaQ5R8qIlUCa7ZLbdMB8GA1UdIwQY
MBaAFBEZP46Jjrb70SxT332tAhVD7vxuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRVJrX2pvbU90dnZSTEZQZmZhMENGVVB1X0c0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9iNGUzZTQtMTE4OS00MDM2LThmMWEt
MDQyZjdkYWMyNGQ1LzEvOW1LaEltaGdpV2hwRGxIeW9pVlFKcnRrdHQwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny9iNGUzZTQtMTE4OS00MDM2LThmMWEtMDQyZjdkYWMyNGQ1
LzEvRVJrX2pvbU90dnZSTEZQZmZhMENGVVB1X0c0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwyNUMA0G
CSqGSIb3DQEBCwUAA4IBAQBRp+cs+mvhiOakkARL9PLojs4FtK5qyzPM9beukmvt
0Z0S2r2b0GE4uGl5TDfSaTo0BuZMnAlXrPp5cftucvhN5gEVWopvxVTTew7UDknb
DFa/vIo0qWDluxQ9dRbTeFVCbnwT5Z1o5AHDlwGEUizw+GPBG7P3mUMEEGXkLdGP
/0iJARb1m6CyFvswqnEbijPkGq8+pQKnH8w38XbnUByxDAMeLpaqekNmyGtERk1C
tmmw18JXJ299MjtvwU74Z+7EQzzaCK8DR8PXis+NNW3MEgNDs8nKbuR2S0pmeRY5
CQaQdEG+CkwaBDVsQ6jxYVu0XQZHyf4Ir+hXkaiX9iTe
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:33 2024 by rpki-client on console-fra.rpki-client.org