Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/f1458f-bdc3-4e4b-9f68-3a611c093a2c/1/27WL0zwyCtoAXlUGEXrW3Sky0bI.roa
File: 27WL0zwyCtoAXlUGEXrW3Sky0bI.roa (raw, json)
Hash identifier: 56315NG+kTCMvTxj9GCW9P6J+JHml2ZYcJi4WutSmIA=
Subject key identifier: DB:B5:8B:D3:3C:32:0A:DA:00:5E:55:06:11:7A:D6:DD:29:32:D1:B2
Certificate issuer: /CN=321ec194107843848cd36330232b5f6a43791db4
Certificate serial: 0190D9E939F6CA4BA9A00CE9B79D18660749
Authority key identifier: 32:1E:C1:94:10:78:43:84:8C:D3:63:30:23:2B:5F:6A:43:79:1D:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mh7BlBB4Q4SM02MwIytfakN5HbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/f1458f-bdc3-4e4b-9f68-3a611c093a2c/1/27WL0zwyCtoAXlUGEXrW3Sky0bI.roa
Signing time: Mon 22 Jul 2024 10:07:38 +0000
ROA not before: Mon 22 Jul 2024 10:07:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8075
IP address blocks: 155.231.208.0/24 maxlen: 24
195.105.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 Jul 2024 07:35:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:d9:e9:39:f6:ca:4b:a9:a0:0c:e9:b7:9d:18:66:07:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=321ec194107843848cd36330232b5f6a43791db4
Validity
Not Before: Jul 22 10:07:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dbb58bd33c320ada005e5506117ad6dd2932d1b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:86:45:09:25:34:ee:a4:19:31:ad:a2:93:3e:
2d:63:5b:21:d3:d2:c0:ac:86:68:94:9c:b8:e1:b9:
83:b5:c2:a0:1f:c0:3a:d5:ca:41:0c:8c:21:33:98:
a1:86:29:d5:ee:27:98:ef:57:ea:db:b7:95:d1:d9:
37:71:b2:d3:45:98:0f:58:ae:da:ed:9e:20:33:26:
90:a2:b3:32:9e:0b:6f:21:1c:43:3a:43:68:11:8a:
aa:b5:f5:19:19:49:54:f3:7d:37:dd:ba:80:ac:9f:
20:14:d4:4c:e0:a6:cc:1f:66:3f:51:28:3a:c1:2c:
8f:fb:85:d9:d1:e4:e3:12:21:24:19:51:59:98:a3:
72:4c:a4:26:01:84:88:08:fc:dd:b6:6b:81:dc:69:
b6:8b:fc:93:a0:8f:1e:c8:c0:0e:7b:15:c4:58:6c:
17:e8:91:0e:21:23:86:02:46:55:a6:d6:30:3c:01:
23:fa:7f:54:97:b5:68:47:0a:82:14:86:c0:14:77:
aa:bb:a0:20:3c:c9:39:0c:48:b9:f3:4e:1a:21:78:
0e:0d:a7:06:71:e6:3c:03:8e:00:01:42:0c:fa:bd:
8f:5c:51:8c:ce:a5:99:46:7c:86:21:3d:06:4f:7b:
a4:d9:fd:c9:79:cc:ee:dd:35:13:78:2d:2e:c5:49:
a6:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:B5:8B:D3:3C:32:0A:DA:00:5E:55:06:11:7A:D6:DD:29:32:D1:B2
X509v3 Authority Key Identifier:
keyid:32:1E:C1:94:10:78:43:84:8C:D3:63:30:23:2B:5F:6A:43:79:1D:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mh7BlBB4Q4SM02MwIytfakN5HbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/f1458f-bdc3-4e4b-9f68-3a611c093a2c/1/27WL0zwyCtoAXlUGEXrW3Sky0bI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/f1458f-bdc3-4e4b-9f68-3a611c093a2c/1/Mh7BlBB4Q4SM02MwIytfakN5HbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.231.208.0/24
195.105.26.0/24
Signature Algorithm: sha256WithRSAEncryption
82:59:d0:c8:8a:f6:d4:59:ea:c3:7d:bb:13:b1:60:39:4e:c4:
2c:a4:26:22:1c:e2:a5:c0:cf:ff:48:c2:40:e9:19:8d:cc:33:
ec:6c:61:6f:e3:3c:ed:7e:e9:51:d4:8c:68:47:a9:98:87:58:
b6:c3:ea:af:7d:93:ba:70:ee:d0:4e:a5:f6:0c:3d:b4:cd:53:
e1:67:9a:6f:20:a8:35:23:bb:f4:3c:b3:98:a7:10:5f:ba:e2:
c4:65:ae:25:51:09:54:47:18:40:ff:7f:31:41:60:0b:63:71:
06:b4:18:d9:50:bf:3b:33:91:93:af:51:26:22:30:32:cf:66:
af:d3:c1:a1:3d:98:6b:49:c3:80:c9:ad:2c:f2:3e:7a:ee:2f:
67:6f:83:9f:35:67:db:0d:19:66:16:e9:32:5a:a4:71:08:5f:
2c:1d:33:e7:10:7c:cb:c1:a2:f9:cf:b5:66:63:5c:37:5a:c2:
ce:f8:c8:e4:4f:ab:20:07:17:94:c2:4a:84:11:44:9a:79:ad:
5d:37:1f:55:2a:82:41:aa:d2:96:73:3f:b1:22:1d:e3:d1:9f:
0d:3a:d3:86:af:83:c0:d1:33:2b:d6:b8:2a:db:c1:85:a5:c4:
61:6f:e3:e0:f6:aa:7f:f6:93:71:79:a6:cc:84:e0:ab:06:f9:
f2:09:ad:ac
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZDZ6Tn2ykupoAzpt50YZgdJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMyMWVjMTk0MTA3ODQzODQ4Y2QzNjMzMDIzMmI1ZjZhNDM3
OTFkYjQwHhcNMjQwNzIyMTAwNzM4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYmI1OGJkMzNjMzIwYWRhMDA1ZTU1MDYxMTdhZDZkZDI5MzJkMWIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyIZFCSU07qQZMa2ikz4tY1sh09LA
rIZolJy44bmDtcKgH8A61cpBDIwhM5ihhinV7ieY71fq27eV0dk3cbLTRZgPWK7a
7Z4gMyaQorMyngtvIRxDOkNoEYqqtfUZGUlU83033bqArJ8gFNRM4KbMH2Y/USg6
wSyP+4XZ0eTjEiEkGVFZmKNyTKQmAYSICPzdtmuB3Gm2i/yToI8eyMAOexXEWGwX
6JEOISOGAkZVptYwPAEj+n9Ul7VoRwqCFIbAFHequ6AgPMk5DEi5804aIXgODacG
ceY8A44AAUIM+r2PXFGMzqWZRnyGIT0GT3uk2f3Jeczu3TUTeC0uxUmmywIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFNu1i9M8MgraAF5VBhF61t0pMtGyMB8GA1UdIwQY
MBaAFDIewZQQeEOEjNNjMCMrX2pDeR20MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTWg3QmxCQjRRNFNNMDJNd0l5dGZha041SGJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi9mMTQ1OGYtYmRjMy00ZTRiLTlmNjgt
M2E2MTFjMDkzYTJjLzEvMjdXTDB6d3lDdG9BWGxVR0VYclczU2t5MGJJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Zi9mMTQ1OGYtYmRjMy00ZTRiLTlmNjgtM2E2MTFjMDkzYTJj
LzEvTWg3QmxCQjRRNFNNMDJNd0l5dGZha041SGJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAm+fQAwQA
w2kaMA0GCSqGSIb3DQEBCwUAA4IBAQCCWdDIivbUWerDfbsTsWA5TsQspCYiHOKl
wM//SMJA6RmNzDPsbGFv4zztfulR1IxoR6mYh1i2w+qvfZO6cO7QTqX2DD20zVPh
Z5pvIKg1I7v0PLOYpxBfuuLEZa4lUQlURxhA/38xQWALY3EGtBjZUL87M5GTr1Em
IjAyz2av08GhPZhrScOAya0s8j567i9nb4OfNWfbDRlmFukyWqRxCF8sHTPnEHzL
waL5z7VmY1w3WsLO+MjkT6sgBxeUwkqEEUSaea1dNx9VKoJBqtKWcz+xIh3j0Z8N
OtOGr4PA0TMr1rgq28GFpcRhb+Pg9qp/9pNxeabMhOCrBvnyCa2s
-----END CERTIFICATE-----
Generated at Wed Jul 24 09:54:23 2024 by rpki-client on console-ams.rpki-client.org