Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/04fef8-d2df-4f7a-92b4-7f970a3af9cd/1/gVVsh9jG1Qw2o3xrvMt5WAvD7NI.roa
File: gVVsh9jG1Qw2o3xrvMt5WAvD7NI.roa (raw, json)
Hash identifier: Q3dRRRQcQ9C81voaYpMFEKHyDr6b1KTCGQUh9WsJWWg=
Subject key identifier: 81:55:6C:87:D8:C6:D5:0C:36:A3:7C:6B:BC:CB:79:58:0B:C3:EC:D2
Certificate issuer: /CN=2c96946c501ddf48696da2cf110fdceb286fac98
Certificate serial: 018571831F72EAD8035E6FCDABC1B7915FF9
Authority key identifier: 2C:96:94:6C:50:1D:DF:48:69:6D:A2:CF:11:0F:DC:EB:28:6F:AC:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LJaUbFAd30hpbaLPEQ_c6yhvrJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/04fef8-d2df-4f7a-92b4-7f970a3af9cd/1/gVVsh9jG1Qw2o3xrvMt5WAvD7NI.roa
Signing time: Mon 02 Jan 2023 08:04:56 +0000
ROA not before: Mon 02 Jan 2023 08:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42836
IP address blocks: 195.66.90.0/24 maxlen: 24
2001:67c:20c8::/48 maxlen: 64
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:83:1f:72:ea:d8:03:5e:6f:cd:ab:c1:b7:91:5f:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c96946c501ddf48696da2cf110fdceb286fac98
Validity
Not Before: Jan 2 08:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=81556c87d8c6d50c36a37c6bbccb79580bc3ecd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e6:61:ed:09:fa:fe:9d:83:a1:af:02:42:88:
a8:8e:04:d6:1f:59:c7:49:90:08:16:c4:83:12:67:
11:87:2d:67:30:38:ce:b9:87:8e:0a:27:16:43:f4:
b4:ad:ad:d1:5a:73:e5:72:7c:d2:0b:83:ed:a5:76:
ce:d6:a1:14:9a:01:60:2b:aa:ea:06:a9:cf:94:a8:
5e:b5:7f:96:36:32:5a:a5:00:7f:56:ee:fd:1b:19:
5c:da:d8:42:69:2e:9b:b8:95:c7:a1:4d:1a:34:7a:
69:e8:fb:a9:5b:6c:07:4c:09:50:24:34:77:cb:a4:
24:4d:fb:f9:c6:bf:ff:86:21:e8:aa:e6:31:e5:cc:
83:08:ba:f7:16:36:df:15:fa:f4:33:a7:8a:40:ea:
7f:96:6b:58:9f:a4:eb:c4:8d:7d:40:e7:ab:cc:e4:
52:e8:67:3b:bd:1e:90:99:82:02:ee:16:fa:71:7b:
ff:6b:c1:be:c5:a2:57:fe:bd:88:78:3e:cf:41:4f:
37:51:2d:f0:dd:5e:d8:df:84:ae:00:d9:8b:cb:37:
3a:97:b0:da:af:c0:6a:2b:92:f3:77:03:c6:cb:c0:
82:f6:74:ff:b4:9c:03:c5:ad:84:e7:d5:d1:47:df:
34:ad:df:13:87:a4:3e:e7:14:21:07:14:ae:5d:87:
a9:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:55:6C:87:D8:C6:D5:0C:36:A3:7C:6B:BC:CB:79:58:0B:C3:EC:D2
X509v3 Authority Key Identifier:
keyid:2C:96:94:6C:50:1D:DF:48:69:6D:A2:CF:11:0F:DC:EB:28:6F:AC:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LJaUbFAd30hpbaLPEQ_c6yhvrJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/04fef8-d2df-4f7a-92b4-7f970a3af9cd/1/gVVsh9jG1Qw2o3xrvMt5WAvD7NI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/04fef8-d2df-4f7a-92b4-7f970a3af9cd/1/LJaUbFAd30hpbaLPEQ_c6yhvrJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.66.90.0/24
IPv6:
2001:67c:20c8::/48
Signature Algorithm: sha256WithRSAEncryption
d4:d7:86:4e:7e:06:5f:86:bb:7f:6a:24:07:a0:1f:d9:ff:aa:
af:24:07:46:3a:62:f7:7a:16:c4:b2:b0:da:0e:28:00:40:94:
57:4e:e9:87:6c:b5:81:50:e6:e6:6e:ea:ba:2c:a0:13:e1:52:
95:72:0c:56:39:30:f7:90:65:1a:b4:1a:4c:6f:18:8d:1f:d4:
b8:cb:f2:0c:52:23:50:7a:d0:8a:06:79:3a:ca:6b:27:63:07:
10:06:85:59:52:50:eb:96:11:dd:1d:9f:cf:1f:de:38:79:4a:
85:ac:31:72:39:1e:95:1f:50:38:17:ae:22:20:02:33:fc:f0:
47:09:18:8a:72:6d:ed:bb:d7:b5:e4:4b:44:f4:96:d2:60:23:
19:3e:2b:d5:60:0f:d5:59:1b:76:a1:44:97:b7:25:32:b1:d0:
c0:6d:61:28:c6:c9:b2:f7:4e:2b:01:0e:e0:ef:e5:59:ac:c0:
56:58:2f:3c:74:eb:08:59:0f:89:ba:7d:02:8f:3f:b6:92:59:
7f:74:1e:21:67:7c:91:ed:bc:6e:df:d9:30:6b:d5:d0:08:84:
16:94:52:7a:2f:80:bf:da:23:35:ab:61:17:ab:2b:08:d3:53:
90:91:46:bb:49:a0:dc:40:c5:12:fe:d7:16:d0:4a:74:6b:6e:
fd:6e:30:50
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYVxgx9y6tgDXm/Nq8G3kV/5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJjOTY5NDZjNTAxZGRmNDg2OTZkYTJjZjExMGZkY2ViMjg2
ZmFjOTgwHhcNMjMwMTAyMDgwNDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MTU1NmM4N2Q4YzZkNTBjMzZhMzdjNmJiY2NiNzk1ODBiYzNlY2QyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqeZh7Qn6/p2Doa8CQoiojgTWH1nH
SZAIFsSDEmcRhy1nMDjOuYeOCicWQ/S0ra3RWnPlcnzSC4PtpXbO1qEUmgFgK6rq
BqnPlKhetX+WNjJapQB/Vu79Gxlc2thCaS6buJXHoU0aNHpp6PupW2wHTAlQJDR3
y6QkTfv5xr//hiHoquYx5cyDCLr3FjbfFfr0M6eKQOp/lmtYn6TrxI19QOerzORS
6Gc7vR6QmYIC7hb6cXv/a8G+xaJX/r2IeD7PQU83US3w3V7Y34SuANmLyzc6l7Da
r8BqK5LzdwPGy8CC9nT/tJwDxa2E59XRR980rd8Th6Q+5xQhBxSuXYepgwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFIFVbIfYxtUMNqN8a7zLeVgLw+zSMB8GA1UdIwQY
MBaAFCyWlGxQHd9IaW2izxEP3Osob6yYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTEphVWJGQWQzMGhwYmFMUEVRX2M2eWh2ckpnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi8wNGZlZjgtZDJkZi00ZjdhLTkyYjQt
N2Y5NzBhM2FmOWNkLzEvZ1ZWc2g5akcxUXcybzN4cnZNdDVXQXZEN05JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMi8wNGZlZjgtZDJkZi00ZjdhLTkyYjQtN2Y5NzBhM2FmOWNk
LzEvTEphVWJGQWQzMGhwYmFMUEVRX2M2eWh2ckpnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAw0JaMA8E
AgACMAkDBwAgAQZ8IMgwDQYJKoZIhvcNAQELBQADggEBANTXhk5+Bl+Gu39qJAeg
H9n/qq8kB0Y6Yvd6FsSysNoOKABAlFdO6YdstYFQ5uZu6rosoBPhUpVyDFY5MPeQ
ZRq0GkxvGI0f1LjL8gxSI1B60IoGeTrKaydjBxAGhVlSUOuWEd0dn88f3jh5SoWs
MXI5HpUfUDgXriIgAjP88EcJGIpybe2717XkS0T0ltJgIxk+K9VgD9VZG3ahRJe3
JTKx0MBtYSjGybL3TisBDuDv5VmswFZYLzx06whZD4m6fQKPP7aSWX90HiFnfJHt
vG7f2TBr1dAIhBaUUnovgL/aIzWrYRerKwjTU5CRRrtJoNxAxRL+1xbQSnRrbv1u
MFA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:03 2024 by rpki-client on console-ams.rpki-client.org