Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/ACd2sJXaNF7g1iPvkFuzzACZxWU.roa
File: ACd2sJXaNF7g1iPvkFuzzACZxWU.roa (raw, json)
Hash identifier: mqJQcJTUyL7GM0+GHvHbXwntQY2HxIZtFVgjZG7Ttns=
Subject key identifier: 00:27:76:B0:95:DA:34:5E:E0:D6:23:EF:90:5B:B3:CC:00:99:C5:65
Certificate issuer: /CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Certificate serial: 01856CE408AED23E1D0409209DC59F96F697
Authority key identifier: E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/ACd2sJXaNF7g1iPvkFuzzACZxWU.roa
Signing time: Sun 01 Jan 2023 10:32:41 +0000
ROA not before: Sun 01 Jan 2023 10:32:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30081
IP address blocks: 195.191.102.0/23 maxlen: 24
195.191.102.0/24 maxlen: 24
195.191.103.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e4:08:ae:d2:3e:1d:04:09:20:9d:c5:9f:96:f6:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Validity
Not Before: Jan 1 10:32:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=002776b095da345ee0d623ef905bb3cc0099c565
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:5b:97:29:12:d9:a4:f5:a4:52:0b:72:44:22:
30:cb:da:fe:1e:be:69:ab:c9:19:78:68:e9:57:93:
94:e2:69:89:a3:6e:f7:26:98:05:f5:3b:51:cf:51:
e7:a3:85:7f:0d:52:bd:22:cc:20:58:e0:33:4a:b3:
bf:5d:4d:35:2c:04:5a:4a:7a:0a:69:08:44:cf:6f:
4e:9f:17:24:27:20:8c:c0:f0:60:5e:cd:bb:33:cd:
52:5f:dd:11:43:27:8c:ad:e7:06:a3:9b:89:da:34:
80:b3:fa:83:40:3f:22:6b:a6:fa:25:12:86:e8:f0:
ab:ab:c8:39:b2:a7:6a:be:ba:75:92:a2:80:8f:72:
db:32:1d:57:35:3d:59:2e:38:9e:65:8a:7a:2d:f3:
b8:54:27:c0:52:98:34:b4:65:25:48:2d:2d:aa:7e:
b0:7d:70:78:cf:a0:35:4b:0f:f4:e8:3d:b4:a6:a1:
25:06:f6:ed:9c:da:89:3f:fd:6e:a6:8e:15:b6:e2:
44:ca:40:aa:00:2d:75:14:98:00:32:3d:6e:bb:2f:
39:e5:e5:92:8a:41:60:bb:fa:65:c7:48:62:35:fb:
e8:00:62:c0:2e:42:1b:72:db:d6:bc:24:eb:99:08:
1a:b3:19:ed:e4:87:55:40:d6:25:8e:a4:6d:c5:ba:
74:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:27:76:B0:95:DA:34:5E:E0:D6:23:EF:90:5B:B3:CC:00:99:C5:65
X509v3 Authority Key Identifier:
keyid:E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/ACd2sJXaNF7g1iPvkFuzzACZxWU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/6LPu0cespjbWJFhSuALg5zdU32M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.191.102.0/23
Signature Algorithm: sha256WithRSAEncryption
4c:21:5f:96:23:65:b1:83:7c:29:d2:86:2e:fa:b9:1c:70:75:
41:4f:ce:bd:f2:39:bd:e4:df:e0:23:e6:27:c3:25:9f:67:99:
81:50:1b:a0:0a:07:e1:f4:42:0e:e4:ac:c5:1b:97:02:70:bd:
de:10:b6:67:f4:6f:c1:30:ee:f7:b5:f2:f7:12:91:31:d4:67:
e8:ee:02:a7:ac:a9:c6:fe:6c:b3:53:83:7e:f6:f4:d9:33:f9:
04:71:5c:bc:d7:75:b7:88:9a:39:3f:fc:98:02:23:b4:a4:34:
5e:7c:9b:b4:c3:44:29:e6:3a:8b:f0:6b:b9:e7:26:2e:6d:70:
ef:fa:c6:39:ed:e2:6d:0c:4a:e1:e0:ec:44:77:18:7a:59:2a:
34:41:3c:ad:79:12:ca:f3:51:8c:9e:a2:dc:6e:57:43:df:55:
e8:b2:55:5b:23:e7:c6:f4:a5:a2:68:a0:70:3e:13:ab:69:9d:
6e:f6:1f:5b:be:c4:93:a6:07:17:67:f7:89:5c:7a:47:aa:b0:
35:64:66:b7:95:cc:f6:c5:40:7f:b4:14:c8:2c:32:91:05:20:
34:4d:5c:b3:0d:13:10:25:40:d1:cb:57:66:3d:ed:1a:48:13:
3d:d5:5f:1d:40:d5:35:dd:e3:25:47:ff:6c:6a:7f:04:6a:6a:
aa:b6:90:bf
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVs5Aiu0j4dBAkgncWflvaXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU4YjNlZWQxYzdhY2E2MzZkNjI0NTg1MmI4MDJlMGU3Mzc1
NGRmNjMwHhcNMjMwMTAxMTAzMjQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMDI3NzZiMDk1ZGEzNDVlZTBkNjIzZWY5MDViYjNjYzAwOTljNTY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2FuXKRLZpPWkUgtyRCIwy9r+Hr5p
q8kZeGjpV5OU4mmJo273JpgF9TtRz1Hno4V/DVK9IswgWOAzSrO/XU01LARaSnoK
aQhEz29OnxckJyCMwPBgXs27M81SX90RQyeMrecGo5uJ2jSAs/qDQD8ia6b6JRKG
6PCrq8g5sqdqvrp1kqKAj3LbMh1XNT1ZLjieZYp6LfO4VCfAUpg0tGUlSC0tqn6w
fXB4z6A1Sw/06D20pqElBvbtnNqJP/1upo4VtuJEykCqAC11FJgAMj1uuy855eWS
ikFgu/plx0hiNfvoAGLALkIbctvWvCTrmQgasxnt5IdVQNYljqRtxbp0zwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAAndrCV2jRe4NYj75Bbs8wAmcVlMB8GA1UdIwQY
MBaAFOiz7tHHrKY21iRYUrgC4Oc3VN9jMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNkxQdTBjZXNwamJXSkZoU3VBTGc1emRVMzJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi8xNzczMjktMjhjZC00ODY0LTllMTYt
OTQ2NDA0ZWMxYWE0LzEvQUNkMnNKWGFORjdnMWlQdmtGdXp6QUNaeFdVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Zi8xNzczMjktMjhjZC00ODY0LTllMTYtOTQ2NDA0ZWMxYWE0
LzEvNkxQdTBjZXNwamJXSkZoU3VBTGc1emRVMzJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBw79mMA0G
CSqGSIb3DQEBCwUAA4IBAQBMIV+WI2Wxg3wp0oYu+rkccHVBT8698jm95N/gI+Yn
wyWfZ5mBUBugCgfh9EIO5KzFG5cCcL3eELZn9G/BMO73tfL3EpEx1Gfo7gKnrKnG
/myzU4N+9vTZM/kEcVy813W3iJo5P/yYAiO0pDRefJu0w0Qp5jqL8Gu55yYubXDv
+sY57eJtDErh4OxEdxh6WSo0QTyteRLK81GMnqLcbldD31XoslVbI+fG9KWiaKBw
PhOraZ1u9h9bvsSTpgcXZ/eJXHpHqrA1ZGa3lcz2xUB/tBTILDKRBSA0TVyzDRMQ
JUDRy1dmPe0aSBM91V8dQNU13eMlR/9san8EamqqtpC/
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:08 2024 by rpki-client on console-fra.rpki-client.org