Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/ryhTh0F3geDLpIzP7avnk2hY-Nw.roa
File: ryhTh0F3geDLpIzP7avnk2hY-Nw.roa (raw, json)
Hash identifier: lCjcRxkcbiPZfJj+t/r402Np+s9Mi+IjpPAhYSM6qgA=
Subject key identifier: AF:28:53:87:41:77:81:E0:CB:A4:8C:CF:ED:AB:E7:93:68:58:F8:DC
Certificate issuer: /CN=807709e7b0efba127025c83e5d3194c71ba428c3
Certificate serial: 01904B69F9DB093412F17F1178A0FCC3DD94
Authority key identifier: 80:77:09:E7:B0:EF:BA:12:70:25:C8:3E:5D:31:94:C7:1B:A4:28:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gHcJ57DvuhJwJcg-XTGUxxukKMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/ryhTh0F3geDLpIzP7avnk2hY-Nw.roa
Signing time: Mon 24 Jun 2024 18:02:34 +0000
ROA not before: Mon 24 Jun 2024 18:02:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3758
IP address blocks: 195.238.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Nov 2024 06:19:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4b:69:f9:db:09:34:12:f1:7f:11:78:a0:fc:c3:dd:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=807709e7b0efba127025c83e5d3194c71ba428c3
Validity
Not Before: Jun 24 18:02:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=af285387417781e0cba48ccfedabe7936858f8dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:86:f0:d6:fe:28:df:51:a1:83:ed:ed:6b:74:
21:21:d4:9a:b1:2d:3a:8a:67:d4:21:3a:25:b8:58:
89:db:fa:73:65:92:89:16:70:43:e3:9d:25:89:10:
cb:65:d5:5c:9a:92:50:51:0e:8e:f8:8e:98:7a:ec:
e8:3e:bc:2e:98:e8:21:ed:06:31:0d:d5:61:85:88:
a6:b9:b0:94:d6:19:36:52:fc:88:63:8b:05:d3:66:
aa:af:38:a5:5c:ad:f5:de:45:2d:19:c3:01:67:c7:
68:bf:cc:b8:20:f5:49:94:38:de:0b:b5:cb:eb:0b:
2b:70:0f:1b:2d:51:ac:e4:b5:0b:c7:dd:60:1d:74:
14:eb:d5:63:4d:7a:69:d3:18:7d:3c:9f:fa:d8:a4:
55:65:10:1f:ba:ae:fd:0c:0f:5d:d7:ed:f2:a7:74:
ad:a6:b6:a6:1f:5c:48:9f:f2:38:20:fc:ad:e4:c5:
b5:11:55:a8:f1:99:6c:e0:0a:ff:d2:fc:67:82:4e:
4a:6a:47:26:e8:fb:1b:28:30:fa:81:47:bf:06:4c:
a7:c4:93:4b:5f:b4:27:76:a1:90:d4:21:23:97:10:
6e:7f:da:7d:b8:a2:8e:91:6a:c9:79:0f:d7:77:bb:
60:3d:b1:59:02:58:86:4d:ac:c0:8b:8d:71:c5:62:
15:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:28:53:87:41:77:81:E0:CB:A4:8C:CF:ED:AB:E7:93:68:58:F8:DC
X509v3 Authority Key Identifier:
keyid:80:77:09:E7:B0:EF:BA:12:70:25:C8:3E:5D:31:94:C7:1B:A4:28:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gHcJ57DvuhJwJcg-XTGUxxukKMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/ryhTh0F3geDLpIzP7avnk2hY-Nw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/gHcJ57DvuhJwJcg-XTGUxxukKMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.238.94.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:84:60:2b:94:4c:02:c3:51:55:ca:23:79:1b:e8:c0:8c:25:
c8:be:9e:ab:de:3e:09:b4:97:01:01:01:44:81:0b:52:b0:95:
1d:88:65:42:c8:f3:77:aa:b9:7a:ed:b7:d4:56:c3:63:45:08:
ab:48:e2:d7:23:f5:ff:6d:ad:ca:16:91:bb:39:a8:33:f2:01:
04:48:64:74:31:b7:1e:21:81:a5:f3:04:46:31:eb:17:6e:56:
ed:13:84:96:64:b6:05:50:ed:f9:a0:6d:30:1e:f3:1e:04:b9:
78:82:b6:e2:18:1f:1e:92:c4:37:87:bd:44:c2:ac:36:21:57:
30:45:66:4d:f1:4d:a0:f9:41:3a:f6:31:69:49:7e:d8:6f:35:
35:b1:13:74:6a:c1:8a:d8:9a:4f:89:c9:9f:a3:fc:40:84:dd:
63:3b:5e:65:04:1d:55:59:37:0d:c1:86:05:4b:e0:8d:11:05:
30:a9:15:9a:31:d7:d3:cf:8e:55:2f:ad:8a:0f:f0:68:fc:37:
db:2e:2c:27:a1:78:83:e0:52:94:9a:c9:d8:5f:e3:11:95:a9:
bd:43:2a:bb:20:5e:6e:a8:55:89:92:c6:22:15:5f:57:57:41:
fa:8b:27:77:1b:2d:14:22:09:4f:5a:3b:bc:62:0d:3a:c9:e7:
48:29:9a:64
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZBLafnbCTQS8X8ReKD8w92UMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgwNzcwOWU3YjBlZmJhMTI3MDI1YzgzZTVkMzE5NGM3MWJh
NDI4YzMwHhcNMjQwNjI0MTgwMjM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZjI4NTM4NzQxNzc4MWUwY2JhNDhjY2ZlZGFiZTc5MzY4NThmOGRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxYbw1v4o31Ghg+3ta3QhIdSasS06
imfUIToluFiJ2/pzZZKJFnBD450liRDLZdVcmpJQUQ6O+I6YeuzoPrwumOgh7QYx
DdVhhYimubCU1hk2UvyIY4sF02aqrzilXK313kUtGcMBZ8dov8y4IPVJlDjeC7XL
6wsrcA8bLVGs5LULx91gHXQU69VjTXpp0xh9PJ/62KRVZRAfuq79DA9d1+3yp3St
pramH1xIn/I4IPyt5MW1EVWo8Zls4Ar/0vxngk5Kakcm6PsbKDD6gUe/BkynxJNL
X7QndqGQ1CEjlxBuf9p9uKKOkWrJeQ/Xd7tgPbFZAliGTazAi41xxWIVswIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK8oU4dBd4Hgy6SMz+2r55NoWPjcMB8GA1UdIwQY
MBaAFIB3Ceew77oScCXIPl0xlMcbpCjDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ0hjSjU3RHZ1aEp3SmNnLVhUR1V4eHVrS01NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9jNDI2YzMtNGYwMy00NmJiLTgwMDgt
YmU5YWQyYmY3MjVmLzEvcnloVGgwRjNnZURMcEl6UDdhdm5rMmhZLU53LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS9jNDI2YzMtNGYwMy00NmJiLTgwMDgtYmU5YWQyYmY3MjVm
LzEvZ0hjSjU3RHZ1aEp3SmNnLVhUR1V4eHVrS01NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw+5eMA0G
CSqGSIb3DQEBCwUAA4IBAQAKhGArlEwCw1FVyiN5G+jAjCXIvp6r3j4JtJcBAQFE
gQtSsJUdiGVCyPN3qrl67bfUVsNjRQirSOLXI/X/ba3KFpG7Oagz8gEESGR0Mbce
IYGl8wRGMesXblbtE4SWZLYFUO35oG0wHvMeBLl4grbiGB8eksQ3h71Ewqw2IVcw
RWZN8U2g+UE69jFpSX7YbzU1sRN0asGK2JpPicmfo/xAhN1jO15lBB1VWTcNwYYF
S+CNEQUwqRWaMdfTz45VL62KD/Bo/DfbLiwnoXiD4FKUmsnYX+MRlam9Qyq7IF5u
qFWJksYiFV9XV0H6iyd3Gy0UIglPWju8Yg06yedIKZpk
-----END CERTIFICATE-----
Generated at Tue Nov 5 07:49:54 2024 by rpki-client on console-ams.rpki-client.org