Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/af18c4-c044-4485-8ef0-d7812a338183/1/Eu4ljlR69czKHCCehQxrVI1rlQk.roa
File: Eu4ljlR69czKHCCehQxrVI1rlQk.roa (raw, json)
Hash identifier: xPNRZ54y1MjbJTyWK11AFKsFap6KdhkYtWfz9DOVxtQ=
Subject key identifier: 12:EE:25:8E:54:7A:F5:CC:CA:1C:20:9E:85:0C:6B:54:8D:6B:95:09
Certificate issuer: /CN=aa6745519323d8c2d93c1b107bf85f61933c71ca
Certificate serial: 018E431F8D6D20CF1D4718554578D597D9F5
Authority key identifier: AA:67:45:51:93:23:D8:C2:D9:3C:1B:10:7B:F8:5F:61:93:3C:71:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qmdFUZMj2MLZPBsQe_hfYZM8cco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/af18c4-c044-4485-8ef0-d7812a338183/1/Eu4ljlR69czKHCCehQxrVI1rlQk.roa
Signing time: Fri 15 Mar 2024 17:18:44 +0000
ROA not before: Fri 15 Mar 2024 17:18:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212150
IP address blocks: 195.95.144.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Apr 2024 08:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:43:1f:8d:6d:20:cf:1d:47:18:55:45:78:d5:97:d9:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa6745519323d8c2d93c1b107bf85f61933c71ca
Validity
Not Before: Mar 15 17:18:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=12ee258e547af5ccca1c209e850c6b548d6b9509
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:e8:dc:85:5d:2b:ce:db:0e:1a:c0:58:59:66:
f7:b3:f3:a0:40:fb:0e:bb:4b:d3:bd:e6:c2:d8:f9:
83:b4:ff:31:cb:76:39:ce:37:57:0c:cb:8a:0c:50:
5c:c9:33:43:34:48:31:5f:32:da:0d:60:b8:ea:70:
25:08:5e:9e:46:41:e9:50:2d:9a:eb:d5:c6:23:fe:
12:4b:bb:03:65:a8:9e:a6:d4:3d:17:cd:b9:a6:02:
8f:8a:b4:a8:fa:55:92:38:9f:a0:b9:0c:a0:12:55:
6f:0b:3c:ae:47:78:1d:55:95:2e:d7:55:66:4f:32:
50:11:bb:59:ee:9d:ef:64:05:13:ae:2e:1f:3b:76:
e3:a6:c9:f6:40:4a:73:54:ce:d0:fa:c0:2e:b6:a6:
3a:fc:79:1f:74:1a:58:de:f1:d5:0e:de:dc:aa:c4:
32:b6:6b:22:27:d1:1e:2e:e5:bc:32:da:cf:51:24:
2a:b2:e0:98:16:9f:60:d5:7b:2d:be:16:a8:09:dc:
bf:b0:a0:fb:d8:d3:d0:38:2e:fe:a0:05:c0:87:2e:
da:60:e4:14:72:c0:bf:ff:eb:c3:d5:9e:5e:a8:bf:
c0:5a:2e:9b:41:07:4d:92:29:ae:bd:32:6d:36:7b:
f9:ef:b0:ce:8b:ca:f1:23:94:c2:05:c8:00:34:6e:
ee:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:EE:25:8E:54:7A:F5:CC:CA:1C:20:9E:85:0C:6B:54:8D:6B:95:09
X509v3 Authority Key Identifier:
keyid:AA:67:45:51:93:23:D8:C2:D9:3C:1B:10:7B:F8:5F:61:93:3C:71:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qmdFUZMj2MLZPBsQe_hfYZM8cco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/af18c4-c044-4485-8ef0-d7812a338183/1/Eu4ljlR69czKHCCehQxrVI1rlQk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/af18c4-c044-4485-8ef0-d7812a338183/1/qmdFUZMj2MLZPBsQe_hfYZM8cco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.144.0/24
Signature Algorithm: sha256WithRSAEncryption
18:f7:4a:91:d4:6c:5c:ce:f6:f4:86:d5:bb:f0:5d:bb:47:7e:
f2:ee:a0:4b:26:c0:93:83:fd:a3:7e:9a:c7:3e:d1:92:aa:e8:
cf:32:79:1f:0e:73:28:c7:00:a0:6d:bb:36:b2:52:cc:e3:74:
19:51:64:b7:6f:02:e9:72:d8:65:8a:17:91:9e:ab:ee:eb:eb:
af:ef:02:67:a9:fd:e6:05:fb:79:8b:f7:7b:c3:c7:27:5e:4a:
6b:c6:a7:d9:26:33:d3:5d:58:aa:f5:50:b9:07:0b:c6:26:22:
1c:5e:83:3e:0f:ba:b4:41:34:2b:7d:1e:d9:f4:d0:72:f2:72:
dc:93:bf:9b:1f:02:31:41:5a:c5:e4:6c:4e:9d:93:0b:95:83:
9d:03:59:f2:ed:2e:d6:b8:69:e1:7f:5d:47:ef:ac:1c:e6:01:
bf:23:81:b1:fb:25:28:7f:bf:d0:c4:4f:1f:ff:53:ed:98:b3:
04:fa:14:a0:44:e9:d5:b5:16:43:5a:d0:75:a7:1e:c6:da:c2:
82:f1:c4:e2:90:a0:75:b1:43:bf:ce:96:3d:4d:41:c4:a6:06:
ed:57:23:0e:ab:54:5f:48:96:de:ac:9c:45:16:39:28:8b:e5:
a3:98:84:0b:2c:23:7f:e3:94:d7:62:d0:e1:8a:45:e1:03:48:
ab:74:dc:4e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY5DH41tIM8dRxhVRXjVl9n1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhNjc0NTUxOTMyM2Q4YzJkOTNjMWIxMDdiZjg1ZjYxOTMz
YzcxY2EwHhcNMjQwMzE1MTcxODQ0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMmVlMjU4ZTU0N2FmNWNjY2ExYzIwOWU4NTBjNmI1NDhkNmI5NTA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6OjchV0rztsOGsBYWWb3s/OgQPsO
u0vTvebC2PmDtP8xy3Y5zjdXDMuKDFBcyTNDNEgxXzLaDWC46nAlCF6eRkHpUC2a
69XGI/4SS7sDZaieptQ9F825pgKPirSo+lWSOJ+guQygElVvCzyuR3gdVZUu11Vm
TzJQEbtZ7p3vZAUTri4fO3bjpsn2QEpzVM7Q+sAutqY6/HkfdBpY3vHVDt7cqsQy
tmsiJ9EeLuW8MtrPUSQqsuCYFp9g1XstvhaoCdy/sKD72NPQOC7+oAXAhy7aYOQU
csC//+vD1Z5eqL/AWi6bQQdNkimuvTJtNnv577DOi8rxI5TCBcgANG7uVQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBLuJY5UevXMyhwgnoUMa1SNa5UJMB8GA1UdIwQY
MBaAFKpnRVGTI9jC2TwbEHv4X2GTPHHKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcW1kRlVaTWoyTUxaUEJzUWVfaGZZWk04Y2NvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS9hZjE4YzQtYzA0NC00NDg1LThlZjAt
ZDc4MTJhMzM4MTgzLzEvRXU0bGpsUjY5Y3pLSENDZWhReHJWSTFybFFrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS9hZjE4YzQtYzA0NC00NDg1LThlZjAtZDc4MTJhMzM4MTgz
LzEvcW1kRlVaTWoyTUxaUEJzUWVfaGZZWk04Y2NvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw1+QMA0G
CSqGSIb3DQEBCwUAA4IBAQAY90qR1Gxczvb0htW78F27R37y7qBLJsCTg/2jfprH
PtGSqujPMnkfDnMoxwCgbbs2slLM43QZUWS3bwLpcthliheRnqvu6+uv7wJnqf3m
Bft5i/d7w8cnXkprxqfZJjPTXViq9VC5BwvGJiIcXoM+D7q0QTQrfR7Z9NBy8nLc
k7+bHwIxQVrF5GxOnZMLlYOdA1ny7S7WuGnhf11H76wc5gG/I4Gx+yUof7/QxE8f
/1PtmLME+hSgROnVtRZDWtB1px7G2sKC8cTikKB1sUO/zpY9TUHEpgbtVyMOq1Rf
SJberJxFFjkoi+WjmIQLLCN/45TXYtDhikXhA0irdNxO
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:16:42 2025 by rpki-client