Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/47d21c-604b-47d8-a333-708b68c856cf/1/WkhjXNHnJx6XekVTn4udufUZsFE.roa
File: WkhjXNHnJx6XekVTn4udufUZsFE.roa (raw, json)
Hash identifier: REFe9A7zheSeuJETZELFDqcBv3AmxPQZ/PzqVUE5SJs=
Subject key identifier: 5A:48:63:5C:D1:E7:27:1E:97:7A:45:53:9F:8B:9D:B9:F5:19:B0:51
Certificate issuer: /CN=9e0a52fee2280d6f231bb6a26226e6535170f1fe
Certificate serial: 01856DAF4A01BB1B8010B4B0FBC0EF2FD562
Authority key identifier: 9E:0A:52:FE:E2:28:0D:6F:23:1B:B6:A2:62:26:E6:53:51:70:F1:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ngpS_uIoDW8jG7aiYibmU1Fw8f4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/47d21c-604b-47d8-a333-708b68c856cf/1/WkhjXNHnJx6XekVTn4udufUZsFE.roa
Signing time: Sun 01 Jan 2023 14:14:42 +0000
ROA not before: Sun 01 Jan 2023 14:14:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44858
IP address blocks: 195.138.212.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:af:4a:01:bb:1b:80:10:b4:b0:fb:c0:ef:2f:d5:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e0a52fee2280d6f231bb6a26226e6535170f1fe
Validity
Not Before: Jan 1 14:14:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a48635cd1e7271e977a45539f8b9db9f519b051
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d6:3b:c6:47:39:0c:51:80:82:70:f2:bb:a0:
dc:72:69:91:09:9e:59:71:d3:ae:85:a8:c8:7c:1d:
bb:9c:56:13:d1:ab:8c:13:be:df:54:7d:96:72:90:
96:72:08:4f:ee:34:ee:57:2d:ae:c3:a0:01:71:66:
1a:b9:49:9c:7c:2d:b1:4b:56:f6:ee:15:b0:79:99:
7b:1e:c9:bf:25:98:f1:4d:1c:d6:af:f5:e5:1a:cd:
5e:5d:da:09:82:c3:ff:c8:60:aa:23:d7:7f:de:1d:
a5:0a:6c:d4:1f:b1:79:bb:dc:64:15:08:53:95:56:
5e:8c:af:78:fe:32:c6:3f:92:e0:f9:dd:bf:24:44:
c6:60:0c:37:e6:76:d7:f7:f2:a1:ff:34:50:ca:a8:
67:0a:5b:c2:76:77:fd:8a:2f:f1:90:09:b6:1c:f1:
82:b3:e9:2b:55:7e:1a:c9:bc:94:52:bc:92:16:8d:
0c:ea:e6:e0:27:0a:e3:ce:6e:ba:66:bf:da:7d:a5:
c8:c3:ca:42:8f:2f:ec:1d:66:12:91:a5:e7:ba:77:
2b:7c:09:57:3e:dd:70:4d:f9:26:20:bb:3a:ab:a4:
1c:c9:90:44:3c:c8:ba:d4:ae:0c:66:93:5e:ed:e7:
6a:ff:d4:23:81:3c:5e:df:55:87:8a:11:c8:cf:d5:
e6:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:48:63:5C:D1:E7:27:1E:97:7A:45:53:9F:8B:9D:B9:F5:19:B0:51
X509v3 Authority Key Identifier:
keyid:9E:0A:52:FE:E2:28:0D:6F:23:1B:B6:A2:62:26:E6:53:51:70:F1:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ngpS_uIoDW8jG7aiYibmU1Fw8f4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/47d21c-604b-47d8-a333-708b68c856cf/1/WkhjXNHnJx6XekVTn4udufUZsFE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/47d21c-604b-47d8-a333-708b68c856cf/1/ngpS_uIoDW8jG7aiYibmU1Fw8f4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.138.212.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:8e:5e:8b:d7:27:5c:18:56:b8:0e:c7:dd:25:18:15:59:e0:
dc:c2:df:32:71:2a:68:57:85:9a:da:0d:e5:b0:23:86:ac:da:
82:98:ea:0b:4e:58:87:37:f8:7e:0b:45:7f:79:0b:db:b8:5d:
7b:fc:62:e0:58:f6:4c:8d:18:0f:e6:df:36:96:d6:ba:d9:1f:
01:92:c7:4b:4f:fd:62:4d:be:13:53:bc:25:c6:e7:91:72:ad:
b5:d3:f9:98:72:27:f9:5a:e6:6b:ab:5d:0e:df:e5:5e:65:65:
d2:20:bf:49:8d:7f:31:fe:c3:9a:9f:f5:21:97:4e:b3:f1:4f:
ad:63:7d:b3:55:90:3d:60:f2:a2:58:61:f0:d4:3c:3d:9d:e2:
ae:59:9b:0b:df:b2:cc:30:ee:aa:1b:15:a6:7e:18:5b:4b:69:
8d:59:9e:7a:12:03:ce:7f:2b:2f:2f:16:7c:6e:d2:34:69:7f:
04:1d:c6:90:a0:28:4b:97:b7:5f:75:92:93:1c:07:e5:21:fa:
71:07:6e:6c:75:32:9f:d2:a3:d8:1e:e4:27:d9:a9:4a:3c:27:
41:5d:6f:5a:39:bb:56:26:3b:c1:9b:17:b3:8d:c5:36:2e:16:
00:2f:76:52:b5:d5:75:30:62:57:5f:b0:a5:c1:a3:cb:2a:3e:
84:50:f0:9b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtr0oBuxuAELSw+8DvL9ViMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllMGE1MmZlZTIyODBkNmYyMzFiYjZhMjYyMjZlNjUzNTE3
MGYxZmUwHhcNMjMwMTAxMTQxNDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YTQ4NjM1Y2QxZTcyNzFlOTc3YTQ1NTM5ZjhiOWRiOWY1MTliMDUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuNY7xkc5DFGAgnDyu6DccmmRCZ5Z
cdOuhajIfB27nFYT0auME77fVH2WcpCWcghP7jTuVy2uw6ABcWYauUmcfC2xS1b2
7hWweZl7Hsm/JZjxTRzWr/XlGs1eXdoJgsP/yGCqI9d/3h2lCmzUH7F5u9xkFQhT
lVZejK94/jLGP5Lg+d2/JETGYAw35nbX9/Kh/zRQyqhnClvCdnf9ii/xkAm2HPGC
s+krVX4aybyUUrySFo0M6ubgJwrjzm66Zr/afaXIw8pCjy/sHWYSkaXnuncrfAlX
Pt1wTfkmILs6q6QcyZBEPMi61K4MZpNe7edq/9QjgTxe31WHihHIz9XmHwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFpIY1zR5ycel3pFU5+Lnbn1GbBRMB8GA1UdIwQY
MBaAFJ4KUv7iKA1vIxu2omIm5lNRcPH+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbmdwU191SW9EVzhqRzdhaVlpYm1VMUZ3OGY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS80N2QyMWMtNjA0Yi00N2Q4LWEzMzMt
NzA4YjY4Yzg1NmNmLzEvV2toalhOSG5KeDZYZWtWVG40dWR1ZlVac0ZFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS80N2QyMWMtNjA0Yi00N2Q4LWEzMzMtNzA4YjY4Yzg1NmNm
LzEvbmdwU191SW9EVzhqRzdhaVlpYm1VMUZ3OGY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw4rUMA0G
CSqGSIb3DQEBCwUAA4IBAQBcjl6L1ydcGFa4DsfdJRgVWeDcwt8ycSpoV4Wa2g3l
sCOGrNqCmOoLTliHN/h+C0V/eQvbuF17/GLgWPZMjRgP5t82lta62R8BksdLT/1i
Tb4TU7wlxueRcq210/mYcif5WuZrq10O3+VeZWXSIL9JjX8x/sOan/Uhl06z8U+t
Y32zVZA9YPKiWGHw1Dw9neKuWZsL37LMMO6qGxWmfhhbS2mNWZ56EgPOfysvLxZ8
btI0aX8EHcaQoChLl7dfdZKTHAflIfpxB25sdTKf0qPYHuQn2alKPCdBXW9aObtW
JjvBmxezjcU2LhYAL3ZStdV1MGJXX7ClwaPLKj6EUPCb
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:30 2024 by rpki-client on console-fra.rpki-client.org