Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/0a0e4d-4e75-49a5-bd0c-1a5c7635588b/1/3mMLCeGqd0bA8jA7DjgnlKdaCDA.roa
File: 3mMLCeGqd0bA8jA7DjgnlKdaCDA.roa (raw, json)
Hash identifier: 6jhxEjxM0+BZ0uwVKiE88BOGSg/GsUBAsuVVPtPXofY=
Subject key identifier: DE:63:0B:09:E1:AA:77:46:C0:F2:30:3B:0E:38:27:94:A7:5A:08:30
Certificate issuer: /CN=1b623dba62b857ca73d8a80a11990f71e04e7db6
Certificate serial: 018570150CF2FA575AA4D8EE3BFDCFAE817C
Authority key identifier: 1B:62:3D:BA:62:B8:57:CA:73:D8:A8:0A:11:99:0F:71:E0:4E:7D:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G2I9umK4V8pz2KgKEZkPceBOfbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/0a0e4d-4e75-49a5-bd0c-1a5c7635588b/1/3mMLCeGqd0bA8jA7DjgnlKdaCDA.roa
Signing time: Mon 02 Jan 2023 01:25:05 +0000
ROA not before: Mon 02 Jan 2023 01:25:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6830
IP address blocks: 195.43.153.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:0c:f2:fa:57:5a:a4:d8:ee:3b:fd:cf:ae:81:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b623dba62b857ca73d8a80a11990f71e04e7db6
Validity
Not Before: Jan 2 01:25:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de630b09e1aa7746c0f2303b0e382794a75a0830
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:48:f2:c6:76:11:0d:0e:6c:31:86:90:d1:68:
84:af:5a:cb:aa:ce:ad:13:2e:03:67:f4:0e:a2:5c:
ac:3e:da:2a:f1:67:53:da:87:df:d7:00:07:39:89:
00:6a:36:ca:26:67:fb:05:78:d2:43:b2:86:46:6e:
a2:91:e0:84:09:35:1b:db:f4:3b:73:9c:2a:a7:e2:
64:dd:bc:3e:ee:2a:03:c5:08:20:d8:d4:30:90:e4:
d6:96:82:18:d2:11:a7:74:92:93:8c:0d:e7:c7:af:
31:06:4c:d2:61:9c:80:10:2d:78:84:b0:aa:0c:79:
6c:cd:de:a6:0b:47:dd:98:22:82:4e:d7:1b:b7:7a:
5f:6a:21:cd:4d:32:1d:05:9e:e5:7a:88:31:f3:95:
0c:3e:50:73:4c:f7:de:f6:b4:2d:66:8c:7e:54:30:
04:ea:e3:7b:22:13:90:02:84:b7:4e:b9:12:d3:af:
db:6a:30:95:60:1e:60:01:a9:0a:f5:74:e7:22:27:
ba:16:49:b3:a8:94:01:20:fa:cd:f1:8e:43:c7:41:
09:71:78:35:4f:51:1d:8e:a7:7f:9a:90:15:ae:c0:
22:a0:10:af:c2:34:13:13:a9:5c:c5:84:b2:54:ba:
68:13:81:4c:7c:9b:67:20:58:7e:5e:13:0d:92:36:
ea:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:63:0B:09:E1:AA:77:46:C0:F2:30:3B:0E:38:27:94:A7:5A:08:30
X509v3 Authority Key Identifier:
keyid:1B:62:3D:BA:62:B8:57:CA:73:D8:A8:0A:11:99:0F:71:E0:4E:7D:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G2I9umK4V8pz2KgKEZkPceBOfbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/0a0e4d-4e75-49a5-bd0c-1a5c7635588b/1/3mMLCeGqd0bA8jA7DjgnlKdaCDA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/0a0e4d-4e75-49a5-bd0c-1a5c7635588b/1/G2I9umK4V8pz2KgKEZkPceBOfbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.43.153.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:80:df:9e:78:df:71:af:ff:32:6f:b1:31:8a:d3:49:8c:fa:
a2:77:62:4c:97:d6:f1:95:06:ad:f0:54:11:e9:64:65:0d:bf:
7a:50:ab:47:69:45:e9:03:a0:7e:d4:58:7b:d8:d6:6b:98:bc:
64:99:6f:42:b9:42:e4:3b:e5:4c:96:0c:29:7b:26:6c:0c:27:
44:9a:e9:81:7a:75:d6:35:d0:08:2b:51:5d:1e:5f:0d:00:68:
99:6b:3c:ac:8c:d5:48:7b:37:76:32:11:83:c4:e8:fc:04:e5:
64:1b:17:05:6a:76:28:f1:e6:05:62:65:22:ae:ee:ea:40:d7:
bd:af:86:a3:c0:af:16:2f:d9:f4:12:58:77:fc:b6:e2:b7:48:
3b:32:ec:c3:7e:16:ad:c0:f1:8b:0d:d6:50:d9:02:95:ad:0f:
f0:a4:2a:b5:12:19:57:65:3f:d4:0f:76:df:48:81:23:6e:b1:
e9:dd:ba:83:04:ee:a1:c2:e2:ce:04:d7:2b:94:cc:10:be:05:
80:b7:22:e1:87:82:09:ee:d9:49:02:1d:d7:b0:74:49:69:60:
3c:c3:5f:7a:26:b7:68:87:3a:88:1c:77:5a:44:97:e5:66:4d:
53:c0:ca:0e:d0:21:5f:fe:8a:b7:79:2d:d7:3d:90:39:10:57:
35:03:5c:52
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwFQzy+ldapNjuO/3ProF8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiNjIzZGJhNjJiODU3Y2E3M2Q4YTgwYTExOTkwZjcxZTA0
ZTdkYjYwHhcNMjMwMTAyMDEyNTA1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZTYzMGIwOWUxYWE3NzQ2YzBmMjMwM2IwZTM4Mjc5NGE3NWEwODMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApUjyxnYRDQ5sMYaQ0WiEr1rLqs6t
Ey4DZ/QOolysPtoq8WdT2off1wAHOYkAajbKJmf7BXjSQ7KGRm6ikeCECTUb2/Q7
c5wqp+Jk3bw+7ioDxQgg2NQwkOTWloIY0hGndJKTjA3nx68xBkzSYZyAEC14hLCq
DHlszd6mC0fdmCKCTtcbt3pfaiHNTTIdBZ7leogx85UMPlBzTPfe9rQtZox+VDAE
6uN7IhOQAoS3TrkS06/bajCVYB5gAakK9XTnIie6FkmzqJQBIPrN8Y5Dx0EJcXg1
T1Edjqd/mpAVrsAioBCvwjQTE6lcxYSyVLpoE4FMfJtnIFh+XhMNkjbqBwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN5jCwnhqndGwPIwOw44J5SnWggwMB8GA1UdIwQY
MBaAFBtiPbpiuFfKc9ioChGZD3HgTn22MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRzJJOXVtSzRWOHB6MktnS0Vaa1BjZUJPZmJZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC8wYTBlNGQtNGU3NS00OWE1LWJkMGMt
MWE1Yzc2MzU1ODhiLzEvM21NTENlR3FkMGJBOGpBN0RqZ25sS2RhQ0RBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC8wYTBlNGQtNGU3NS00OWE1LWJkMGMtMWE1Yzc2MzU1ODhi
LzEvRzJJOXVtSzRWOHB6MktnS0Vaa1BjZUJPZmJZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwyuZMA0G
CSqGSIb3DQEBCwUAA4IBAQBdgN+eeN9xr/8yb7ExitNJjPqid2JMl9bxlQat8FQR
6WRlDb96UKtHaUXpA6B+1Fh72NZrmLxkmW9CuULkO+VMlgwpeyZsDCdEmumBenXW
NdAIK1FdHl8NAGiZazysjNVIezd2MhGDxOj8BOVkGxcFanYo8eYFYmUiru7qQNe9
r4ajwK8WL9n0Elh3/Lbit0g7MuzDfhatwPGLDdZQ2QKVrQ/wpCq1EhlXZT/UD3bf
SIEjbrHp3bqDBO6hwuLOBNcrlMwQvgWAtyLhh4IJ7tlJAh3XsHRJaWA8w196Jrdo
hzqIHHdaRJflZk1TwMoO0CFf/oq3eS3XPZA5EFc1A1xS
-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:11 2024 by rpki-client on console-fra.rpki-client.org