Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/af18c4-c044-4485-8ef0-d7812a338183/1/F2UkLhEbG0C0dlEDtxYsmQGVNww.roa
File: F2UkLhEbG0C0dlEDtxYsmQGVNww.roa (raw, json)
Hash identifier: 1wBEng/jw3hSTCuyC1NgV1IftZyGbkpdSbQkggJYCOk=
Subject key identifier: 17:65:24:2E:11:1B:1B:40:B4:76:51:03:B7:16:2C:99:01:95:37:0C
Certificate issuer: /CN=aa6745519323d8c2d93c1b107bf85f61933c71ca
Certificate serial: 0190BD15175B94D898FB79168B0AE7B293FC
Authority key identifier: AA:67:45:51:93:23:D8:C2:D9:3C:1B:10:7B:F8:5F:61:93:3C:71:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qmdFUZMj2MLZPBsQe_hfYZM8cco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/af18c4-c044-4485-8ef0-d7812a338183/1/F2UkLhEbG0C0dlEDtxYsmQGVNww.roa
Signing time: Tue 16 Jul 2024 19:46:34 +0000
ROA not before: Tue 16 Jul 2024 19:46:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 135391
IP address blocks: 195.95.144.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Jul 2024 17:57:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:bd:15:17:5b:94:d8:98:fb:79:16:8b:0a:e7:b2:93:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa6745519323d8c2d93c1b107bf85f61933c71ca
Validity
Not Before: Jul 16 19:46:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1765242e111b1b40b4765103b7162c990195370c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9b:0a:79:17:1f:b4:4b:b1:6e:0f:00:91:d2:
37:e9:3f:a4:71:fc:84:dc:27:d5:e4:7e:9c:9c:42:
85:08:b7:04:1e:5e:c9:18:46:88:f7:0e:23:7a:2f:
41:84:9c:88:7b:69:42:26:a3:51:c5:98:a6:20:36:
d0:12:b0:d3:8c:b5:53:cf:92:8b:1d:75:a4:3a:fe:
3f:b7:1f:4b:cb:e3:1d:5e:d4:d6:e6:fa:e4:26:8a:
98:bb:1e:26:75:1c:eb:1f:49:32:fb:7a:e1:4c:a8:
7b:c7:1c:ad:7f:fa:71:5f:83:08:b0:98:60:80:c3:
c5:ed:ca:8b:d3:e0:f8:0a:af:10:2d:e6:32:91:1b:
f3:2d:5a:e9:6b:6a:1c:b7:1c:81:47:92:d0:ef:78:
ba:f3:d8:68:4a:32:7f:c2:c3:90:75:f4:88:f1:ab:
a7:f4:e3:14:d6:a7:d5:5f:7f:ee:38:e2:a3:e6:93:
b3:bb:d0:16:21:d3:e7:ce:78:7d:a2:69:1a:45:1f:
76:c2:ad:79:c7:5d:65:0b:51:7e:a0:ed:54:e5:73:
b6:06:78:6b:c8:9b:18:f7:c8:ad:3a:e0:df:92:51:
b9:c1:5b:10:8e:9a:f6:bf:b4:9f:78:07:46:78:86:
df:24:fa:ad:5e:d0:b4:95:9c:e7:17:f0:cc:40:51:
62:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:65:24:2E:11:1B:1B:40:B4:76:51:03:B7:16:2C:99:01:95:37:0C
X509v3 Authority Key Identifier:
keyid:AA:67:45:51:93:23:D8:C2:D9:3C:1B:10:7B:F8:5F:61:93:3C:71:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qmdFUZMj2MLZPBsQe_hfYZM8cco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/af18c4-c044-4485-8ef0-d7812a338183/1/F2UkLhEbG0C0dlEDtxYsmQGVNww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/af18c4-c044-4485-8ef0-d7812a338183/1/qmdFUZMj2MLZPBsQe_hfYZM8cco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.144.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:4b:94:98:56:9d:9f:7f:49:de:b7:31:6f:5e:4b:9e:a3:96:
0c:66:3c:65:e8:5a:52:98:2c:0e:de:91:a5:05:06:b6:b1:d2:
2a:7a:41:72:f4:f4:7d:9f:bd:e5:f2:39:f4:25:cd:50:34:40:
14:a5:e8:2e:68:71:2f:7d:da:82:b3:32:f4:5a:20:1d:fe:b3:
a5:a5:9e:30:d0:f5:75:c5:f6:0e:df:ad:a2:b5:ee:0a:26:13:
22:43:e8:9e:ad:33:c4:dc:a0:10:14:2b:f0:b0:d9:7d:70:8f:
0a:ba:3f:02:5c:fb:89:c5:a8:97:9a:b5:80:00:05:ae:63:b2:
34:5a:c5:a7:61:a3:64:f4:4c:80:82:25:ad:8d:d7:57:88:75:
b2:93:6e:d1:f8:9f:8a:ad:7c:49:53:a1:87:c8:05:92:85:0a:
a6:e2:43:54:c7:ed:7b:3a:54:ec:0d:6d:96:40:94:8d:de:ea:
e3:b2:21:52:0f:cf:3a:bd:03:0d:39:00:90:c2:ea:ad:11:e9:
c6:40:85:9f:21:c2:7e:2b:89:c4:dc:e9:d3:2a:fb:ab:fa:e1:
38:8e:ec:b5:8c:f7:fc:b0:16:68:2e:c2:93:7f:c3:04:e8:3a:
4b:45:4d:08:72:77:67:80:fb:6e:75:4e:5f:61:9c:a1:53:96:
c6:3e:28:32
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZC9FRdblNiY+3kWiwrnspP8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhNjc0NTUxOTMyM2Q4YzJkOTNjMWIxMDdiZjg1ZjYxOTMz
YzcxY2EwHhcNMjQwNzE2MTk0NjM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNzY1MjQyZTExMWIxYjQwYjQ3NjUxMDNiNzE2MmM5OTAxOTUzNzBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqZsKeRcftEuxbg8AkdI36T+kcfyE
3CfV5H6cnEKFCLcEHl7JGEaI9w4jei9BhJyIe2lCJqNRxZimIDbQErDTjLVTz5KL
HXWkOv4/tx9Ly+MdXtTW5vrkJoqYux4mdRzrH0ky+3rhTKh7xxytf/pxX4MIsJhg
gMPF7cqL0+D4Cq8QLeYykRvzLVrpa2octxyBR5LQ73i689hoSjJ/wsOQdfSI8aun
9OMU1qfVX3/uOOKj5pOzu9AWIdPnznh9omkaRR92wq15x11lC1F+oO1U5XO2Bnhr
yJsY98itOuDfklG5wVsQjpr2v7SfeAdGeIbfJPqtXtC0lZznF/DMQFFiswIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBdlJC4RGxtAtHZRA7cWLJkBlTcMMB8GA1UdIwQY
MBaAFKpnRVGTI9jC2TwbEHv4X2GTPHHKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcW1kRlVaTWoyTUxaUEJzUWVfaGZZWk04Y2NvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS9hZjE4YzQtYzA0NC00NDg1LThlZjAt
ZDc4MTJhMzM4MTgzLzEvRjJVa0xoRWJHMEMwZGxFRHR4WXNtUUdWTnd3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS9hZjE4YzQtYzA0NC00NDg1LThlZjAtZDc4MTJhMzM4MTgz
LzEvcW1kRlVaTWoyTUxaUEJzUWVfaGZZWk04Y2NvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw1+QMA0G
CSqGSIb3DQEBCwUAA4IBAQBKS5SYVp2ff0netzFvXkueo5YMZjxl6FpSmCwO3pGl
BQa2sdIqekFy9PR9n73l8jn0Jc1QNEAUpeguaHEvfdqCszL0WiAd/rOlpZ4w0PV1
xfYO362ite4KJhMiQ+ierTPE3KAQFCvwsNl9cI8Kuj8CXPuJxaiXmrWAAAWuY7I0
WsWnYaNk9EyAgiWtjddXiHWyk27R+J+KrXxJU6GHyAWShQqm4kNUx+17OlTsDW2W
QJSN3urjsiFSD886vQMNOQCQwuqtEenGQIWfIcJ+K4nE3OnTKvur+uE4juy1jPf8
sBZoLsKTf8ME6DpLRU0IcndngPtudU5fYZyhU5bGPigy
-----END CERTIFICATE-----
Generated at Wed Jul 17 22:48:31 2024 by rpki-client on console-ams.rpki-client.org