Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/c8d54b-e586-4595-93e2-868babc6dd32/1/74SwDG2sHyzcmQ8IQ89l-OUY6gk.roa
File: 74SwDG2sHyzcmQ8IQ89l-OUY6gk.roa (raw, json)
Hash identifier: EtGK4mGCYxV0+62OwKGdDNDWNgXmUtolSRA3aRQyfZw=
Subject key identifier: EF:84:B0:0C:6D:AC:1F:2C:DC:99:0F:08:43:CF:65:F8:E5:18:EA:09
Certificate issuer: /CN=7cf589a31174b884a64fd091ad5c2cba5545bbdc
Certificate serial: 0185723A3236A1C66799184B524F3294DCAB
Authority key identifier: 7C:F5:89:A3:11:74:B8:84:A6:4F:D0:91:AD:5C:2C:BA:55:45:BB:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fPWJoxF0uISmT9CRrVwsulVFu9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/c8d54b-e586-4595-93e2-868babc6dd32/1/74SwDG2sHyzcmQ8IQ89l-OUY6gk.roa
Signing time: Mon 02 Jan 2023 11:24:54 +0000
ROA not before: Mon 02 Jan 2023 11:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398464
IP address blocks: 195.64.125.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:3a:32:36:a1:c6:67:99:18:4b:52:4f:32:94:dc:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7cf589a31174b884a64fd091ad5c2cba5545bbdc
Validity
Not Before: Jan 2 11:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef84b00c6dac1f2cdc990f0843cf65f8e518ea09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d4:48:57:bd:9e:b5:0b:fa:35:75:ff:26:5e:
0c:d9:29:59:45:a8:4b:ca:fa:c2:39:49:07:ad:3a:
57:74:b2:f7:47:37:f1:20:d5:24:ad:67:b4:df:44:
28:47:13:02:fb:db:ac:81:64:36:46:46:e2:58:93:
9b:8c:19:1f:08:81:c0:aa:ac:49:e3:f2:c8:5a:22:
13:9a:dc:f2:b7:cb:a2:df:a3:37:61:28:c3:ec:8b:
de:4c:54:49:b7:7c:9e:b5:23:2f:3b:76:b4:9b:27:
21:44:83:69:7c:ab:13:c7:a4:c6:eb:36:66:90:5d:
4b:13:b1:ce:a4:b2:07:c5:37:7a:29:dc:d1:c8:fe:
2a:ac:ed:cd:55:54:3e:4a:89:d3:17:47:e7:07:03:
9d:cd:d0:33:80:70:42:80:dc:4f:f1:95:78:4c:5d:
c9:4a:bb:96:82:69:30:5a:85:dc:a5:30:17:74:39:
43:de:91:6b:02:44:3b:9f:d0:a0:f3:36:ff:95:3c:
2b:13:97:65:19:a6:d5:d9:b8:d9:0a:17:54:c7:4a:
6e:bc:a0:7f:d8:1c:04:a3:af:c4:d3:90:81:ff:d8:
f9:fc:9f:2f:61:eb:f8:e4:fe:53:7b:b9:65:f8:b2:
d8:3d:30:7e:3b:9f:c1:0e:05:1d:38:e3:4f:62:6c:
be:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:84:B0:0C:6D:AC:1F:2C:DC:99:0F:08:43:CF:65:F8:E5:18:EA:09
X509v3 Authority Key Identifier:
keyid:7C:F5:89:A3:11:74:B8:84:A6:4F:D0:91:AD:5C:2C:BA:55:45:BB:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fPWJoxF0uISmT9CRrVwsulVFu9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/c8d54b-e586-4595-93e2-868babc6dd32/1/74SwDG2sHyzcmQ8IQ89l-OUY6gk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/c8d54b-e586-4595-93e2-868babc6dd32/1/fPWJoxF0uISmT9CRrVwsulVFu9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.125.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:87:a9:0f:40:4d:28:e8:1c:dd:4d:7a:61:51:2f:fb:0b:5e:
19:90:d1:df:4f:e2:52:93:fc:db:2e:fa:0a:4a:bd:a5:3c:ed:
1d:f3:61:1d:80:51:ff:f9:a7:b8:a9:50:f7:76:f6:ec:77:78:
7a:25:4f:02:57:2a:83:1a:88:c4:3d:b4:71:ef:90:56:1a:0c:
33:45:4d:ef:fe:7a:35:9c:b1:21:a5:29:7f:17:16:07:04:d8:
58:9f:82:9e:23:dc:c2:23:7c:69:0f:21:0d:c3:e7:a4:37:a5:
37:ac:2f:c0:97:6e:e8:0f:0a:6f:bd:1d:63:87:9d:18:b0:e3:
22:3c:e4:de:aa:24:57:53:54:78:9d:d8:a7:9c:d1:57:f5:9b:
91:77:71:83:19:74:36:3e:be:05:fd:cd:43:62:99:b5:b8:0b:
c7:e8:36:5b:66:aa:85:1a:1c:24:cf:ae:8c:3e:50:d7:52:11:
d5:e9:6d:84:fe:01:5a:d0:61:8e:23:05:81:81:9e:6f:57:1e:
6f:a9:18:71:1b:9e:33:6f:15:ee:00:61:0d:e5:66:3c:fe:f9:
f4:c0:f0:80:39:e1:d8:6c:f4:e8:5b:a6:6c:69:b5:18:dc:f2:
b6:58:d7:e8:29:d7:6c:a8:dd:1e:79:5e:0b:73:e2:ae:89:2c:
9a:c2:b2:67
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyOjI2ocZnmRhLUk8ylNyrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdjZjU4OWEzMTE3NGI4ODRhNjRmZDA5MWFkNWMyY2JhNTU0
NWJiZGMwHhcNMjMwMTAyMTEyNDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZjg0YjAwYzZkYWMxZjJjZGM5OTBmMDg0M2NmNjVmOGU1MThlYTA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr9RIV72etQv6NXX/Jl4M2SlZRahL
yvrCOUkHrTpXdLL3RzfxINUkrWe030QoRxMC+9usgWQ2RkbiWJObjBkfCIHAqqxJ
4/LIWiITmtzyt8ui36M3YSjD7IveTFRJt3yetSMvO3a0mychRINpfKsTx6TG6zZm
kF1LE7HOpLIHxTd6KdzRyP4qrO3NVVQ+SonTF0fnBwOdzdAzgHBCgNxP8ZV4TF3J
SruWgmkwWoXcpTAXdDlD3pFrAkQ7n9Cg8zb/lTwrE5dlGabV2bjZChdUx0puvKB/
2BwEo6/E05CB/9j5/J8vYev45P5Te7ll+LLYPTB+O5/BDgUdOONPYmy+WQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFO+EsAxtrB8s3JkPCEPPZfjlGOoJMB8GA1UdIwQY
MBaAFHz1iaMRdLiEpk/Qka1cLLpVRbvcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlBXSm94RjB1SVNtVDlDUnJWd3N1bFZGdTl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS9jOGQ1NGItZTU4Ni00NTk1LTkzZTIt
ODY4YmFiYzZkZDMyLzEvNzRTd0RHMnNIeXpjbVE4SVE4OWwtT1VZNmdrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OS9jOGQ1NGItZTU4Ni00NTk1LTkzZTItODY4YmFiYzZkZDMy
LzEvZlBXSm94RjB1SVNtVDlDUnJWd3N1bFZGdTl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw0B9MA0G
CSqGSIb3DQEBCwUAA4IBAQA9h6kPQE0o6BzdTXphUS/7C14ZkNHfT+JSk/zbLvoK
Sr2lPO0d82EdgFH/+ae4qVD3dvbsd3h6JU8CVyqDGojEPbRx75BWGgwzRU3v/no1
nLEhpSl/FxYHBNhYn4KeI9zCI3xpDyENw+ekN6U3rC/Al27oDwpvvR1jh50YsOMi
POTeqiRXU1R4ndinnNFX9ZuRd3GDGXQ2Pr4F/c1DYpm1uAvH6DZbZqqFGhwkz66M
PlDXUhHV6W2E/gFa0GGOIwWBgZ5vVx5vqRhxG54zbxXuAGEN5WY8/vn0wPCAOeHY
bPToW6ZsabUY3PK2WNfoKddsqN0eeV4Lc+KuiSyawrJn
-----END CERTIFICATE-----
Generated at Mon Jan 1 17:14:20 2024 by rpki-client on console-ams.rpki-client.org