Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/t4C4sJnpz155jYTd4zUSDUpPmnQ.roa
File: t4C4sJnpz155jYTd4zUSDUpPmnQ.roa (raw, json)
Hash identifier: HGODiiqvJ9Fjppgn993Iu4MS0lhqXUyn1LbLVS7fhn4=
Subject key identifier: B7:80:B8:B0:99:E9:CF:5E:79:8D:84:DD:E3:35:12:0D:4A:4F:9A:74
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 01857095123486AD9813BBEF266C97C2AF57
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/t4C4sJnpz155jYTd4zUSDUpPmnQ.roa
Signing time: Mon 02 Jan 2023 03:44:55 +0000
ROA not before: Mon 02 Jan 2023 03:44:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35415
IP address blocks: 195.178.4.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 06 Mar 2023 15:12:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:12:34:86:ad:98:13:bb:ef:26:6c:97:c2:af:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:44:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b780b8b099e9cf5e798d84dde335120d4a4f9a74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c2:97:ad:2b:7a:83:66:1d:09:19:1a:0d:de:
6b:a1:63:24:58:6b:a1:fb:05:5d:8b:38:83:32:c5:
18:da:01:36:c4:9e:58:20:8a:ac:60:da:0c:f3:8e:
54:ee:60:05:ad:ce:2a:05:70:ac:44:b6:05:36:b8:
51:a7:cc:1f:65:f1:e3:8c:65:26:db:43:01:e0:32:
2e:e8:9b:44:ce:44:b3:b8:b9:d6:29:61:10:eb:ca:
f6:e5:f0:b1:55:86:d8:39:94:05:02:6b:54:17:0b:
41:db:71:31:ec:bf:68:2f:2f:79:a8:eb:ee:6e:88:
a2:b4:90:07:4c:1f:d8:de:fc:9f:4a:65:63:31:0c:
a2:2f:b7:80:4a:a0:c3:f0:c8:cc:02:20:86:9b:1c:
1c:d5:df:6c:7a:90:4f:67:ea:07:5b:a7:8d:ab:4c:
19:94:6b:01:b0:0b:a2:82:50:e3:fe:a1:d3:82:55:
34:c8:a6:00:fa:5d:2d:43:86:74:4d:14:f4:b4:be:
ef:14:7b:a1:17:b7:66:bc:41:8c:57:f2:60:3f:e8:
45:c8:95:92:ec:81:19:12:a1:65:53:05:a7:d8:5a:
9a:5a:d1:2b:c3:be:40:8b:7f:c3:88:1a:d6:3f:21:
99:c9:8b:c4:92:26:7c:0c:32:50:24:01:64:4d:d6:
93:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:80:B8:B0:99:E9:CF:5E:79:8D:84:DD:E3:35:12:0D:4A:4F:9A:74
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/t4C4sJnpz155jYTd4zUSDUpPmnQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.178.4.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:33:93:b4:75:2c:6d:3b:66:3d:39:6a:1f:f6:cf:40:5d:48:
fb:4f:14:59:61:e9:51:e3:9a:16:20:b8:c0:26:3f:7f:ed:de:
5d:31:78:38:56:dc:58:bc:e3:1b:cf:35:94:69:15:e3:dc:67:
13:ab:0f:54:bb:27:db:8f:f7:df:00:c6:98:0f:c2:b7:66:4f:
de:10:f0:fc:79:6a:c9:c0:4f:fe:44:5a:80:40:da:18:ff:42:
fe:b2:6c:c3:38:bd:e6:88:d7:c2:63:b0:a5:f2:b9:56:ef:ab:
aa:37:1b:da:00:4e:1d:06:27:b1:d7:4f:3d:80:32:f5:0e:80:
15:3d:a6:34:62:64:b7:84:37:07:2d:8f:95:6a:25:7e:fa:16:
5b:88:7f:db:ff:be:db:23:0e:cc:69:56:ca:55:67:67:bd:d4:
e3:be:40:c0:36:7c:44:8a:ab:cc:97:9c:c3:25:2e:51:21:47:
36:45:e4:ba:33:64:bc:59:05:bc:8b:1e:d2:20:58:ce:93:1b:
38:74:8d:06:92:ce:fa:7c:06:c4:64:d0:df:a1:be:24:8a:00:
aa:ea:96:4b:fe:96:85:4a:f7:1a:59:7f:41:93:97:76:b0:18:
aa:ce:4e:24:67:58:fb:2e:5c:2b:fb:7b:ad:1c:0e:c4:a2:ba:
ab:33:cf:73
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwlRI0hq2YE7vvJmyXwq9XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh
YWVmNDIwHhcNMjMwMTAyMDM0NDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNzgwYjhiMDk5ZTljZjVlNzk4ZDg0ZGRlMzM1MTIwZDRhNGY5YTc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAosKXrSt6g2YdCRkaDd5roWMkWGuh
+wVdiziDMsUY2gE2xJ5YIIqsYNoM845U7mAFrc4qBXCsRLYFNrhRp8wfZfHjjGUm
20MB4DIu6JtEzkSzuLnWKWEQ68r25fCxVYbYOZQFAmtUFwtB23Ex7L9oLy95qOvu
boiitJAHTB/Y3vyfSmVjMQyiL7eASqDD8MjMAiCGmxwc1d9sepBPZ+oHW6eNq0wZ
lGsBsAuiglDj/qHTglU0yKYA+l0tQ4Z0TRT0tL7vFHuhF7dmvEGMV/JgP+hFyJWS
7IEZEqFlUwWn2FqaWtErw75Ai3/DiBrWPyGZyYvEkiZ8DDJQJAFkTdaTiwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLeAuLCZ6c9eeY2E3eM1Eg1KT5p0MB8GA1UdIwQY
MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt
MDYyYzY5MzNhYmVkLzEvdDRDNHNKbnB6MTU1allUZDR6VVNEVXBQbW5RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk
LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBw7IEMA0G
CSqGSIb3DQEBCwUAA4IBAQAPM5O0dSxtO2Y9OWof9s9AXUj7TxRZYelR45oWILjA
Jj9/7d5dMXg4VtxYvOMbzzWUaRXj3GcTqw9Uuyfbj/ffAMaYD8K3Zk/eEPD8eWrJ
wE/+RFqAQNoY/0L+smzDOL3miNfCY7Cl8rlW76uqNxvaAE4dBiex1089gDL1DoAV
PaY0YmS3hDcHLY+VaiV++hZbiH/b/77bIw7MaVbKVWdnvdTjvkDANnxEiqvMl5zD
JS5RIUc2ReS6M2S8WQW8ix7SIFjOkxs4dI0Gks76fAbEZNDfob4kigCq6pZL/paF
SvcaWX9Bk5d2sBiqzk4kZ1j7Llwr+3utHA7EorqrM89z
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:38 2024 by rpki-client on console-fra.rpki-client.org