Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/Tg9fP-JSr7FFz-3gK8MqHPR89j8.roa
File: Tg9fP-JSr7FFz-3gK8MqHPR89j8.roa (raw, json)
Hash identifier: +/b4p4GVSIHtHGGjGB6f23XQ146xW4Tt8EBvm3iRS8Y=
Subject key identifier: 4E:0F:5F:3F:E2:52:AF:B1:45:CF:ED:E0:2B:C3:2A:1C:F4:7C:F6:3F
Certificate issuer: /CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Certificate serial: 01856BC118A08E75E8A83AC130C4D31CEF9F
Authority key identifier: 2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/Tg9fP-JSr7FFz-3gK8MqHPR89j8.roa
Signing time: Sun 01 Jan 2023 05:14:54 +0000
ROA not before: Sun 01 Jan 2023 05:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8100
IP address blocks: 195.95.201.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 14 Mar 2023 22:11:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:c1:18:a0:8e:75:e8:a8:3a:c1:30:c4:d3:1c:ef:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Validity
Not Before: Jan 1 05:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e0f5f3fe252afb145cfede02bc32a1cf47cf63f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:6d:91:57:77:e5:1b:f4:a6:02:ce:35:06:b5:
ed:ee:b7:f6:83:10:1f:d1:bb:87:f5:ce:36:ed:4f:
2e:fa:a9:a3:e4:8f:8d:06:e3:10:83:84:a0:af:76:
e6:03:d3:ff:57:9b:7a:51:fd:97:fc:a8:14:57:ee:
76:9d:00:1c:4c:88:9c:db:74:80:34:9f:9a:30:75:
72:f8:f9:b4:ed:e3:45:9b:81:22:59:d0:92:c4:d9:
db:ef:dc:9f:6e:ad:a4:65:67:e5:09:d2:45:a0:f5:
da:30:1d:ab:e0:95:39:45:6f:13:5e:15:e5:62:76:
b3:ce:ab:ba:e9:04:4f:15:73:45:96:2b:31:05:b8:
08:11:e9:1e:83:fc:0f:f8:ab:13:c1:5a:74:4f:86:
53:88:24:8d:f0:4e:04:8b:f7:84:a1:3b:a3:98:ce:
8e:1f:43:2a:7f:65:15:2d:20:3c:bb:10:cc:ef:03:
55:a3:32:40:2e:47:58:38:c4:ed:10:26:1d:de:2d:
6c:83:87:5f:b4:00:60:22:76:11:3c:7c:13:af:29:
4d:c0:bb:19:97:9b:23:8a:3c:3a:39:6a:6b:72:ff:
e2:32:8a:34:cf:fe:51:11:0a:39:21:37:1f:96:46:
13:63:fd:6c:cd:fe:50:52:4b:34:28:d5:59:26:82:
73:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:0F:5F:3F:E2:52:AF:B1:45:CF:ED:E0:2B:C3:2A:1C:F4:7C:F6:3F
X509v3 Authority Key Identifier:
keyid:2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/Tg9fP-JSr7FFz-3gK8MqHPR89j8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.201.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:a9:3a:af:7c:09:dd:d7:56:1f:98:8b:e5:bd:dd:22:6c:33:
c4:34:b6:f0:5f:22:51:1b:fa:51:a9:ad:62:e2:11:30:d1:ee:
9e:47:53:78:72:92:7d:66:b4:e9:92:7c:5e:fa:b9:2b:1a:57:
f7:0b:57:f7:dd:fd:51:14:31:1f:98:b2:a6:bf:f7:86:ea:ff:
f3:82:cf:b6:46:de:d9:be:08:bc:4f:14:02:a9:b8:da:d1:20:
07:53:e1:5f:ba:c6:c4:c5:3f:98:8f:ca:2c:fc:3d:de:c9:de:
45:af:1e:8f:08:fc:1d:45:67:f0:e0:fb:e7:dc:62:0a:ad:0a:
9c:e1:f3:3c:af:e8:d9:ee:28:76:f9:02:d2:34:9d:25:14:42:
ae:0d:9d:75:d7:9f:c9:16:75:db:c1:5f:10:ea:45:8f:a0:99:
e7:d7:37:52:09:d7:d0:ba:3c:ce:4d:b4:4d:4f:a9:74:24:e5:
9a:86:d1:ba:2b:1e:e8:39:1a:fd:b5:66:5d:21:75:ef:fd:23:
ca:35:cc:10:f7:fb:76:bf:38:ab:a7:42:17:2e:89:98:2a:45:
69:cb:d6:35:ef:ec:c1:30:1a:92:a3:93:ac:99:c7:7f:59:41:
bf:b2:3c:c5:da:79:28:2b:c9:61:3a:fa:d0:cf:55:96:3c:23:
48:03:c4:fc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVrwRigjnXoqDrBMMTTHO+fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJlODI5NjNmZjFhYTcwYWIxMGQxZDMzZTg2YjFkNmQ0OTRk
NmNlNTEwHhcNMjMwMTAxMDUxNDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZTBmNWYzZmUyNTJhZmIxNDVjZmVkZTAyYmMzMmExY2Y0N2NmNjNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn22RV3flG/SmAs41BrXt7rf2gxAf
0buH9c427U8u+qmj5I+NBuMQg4Sgr3bmA9P/V5t6Uf2X/KgUV+52nQAcTIic23SA
NJ+aMHVy+Pm07eNFm4EiWdCSxNnb79yfbq2kZWflCdJFoPXaMB2r4JU5RW8TXhXl
Ynazzqu66QRPFXNFlisxBbgIEekeg/wP+KsTwVp0T4ZTiCSN8E4Ei/eEoTujmM6O
H0Mqf2UVLSA8uxDM7wNVozJALkdYOMTtECYd3i1sg4dftABgInYRPHwTrylNwLsZ
l5sjijw6OWprcv/iMoo0z/5REQo5ITcflkYTY/1szf5QUks0KNVZJoJzhQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE4PXz/iUq+xRc/t4CvDKhz0fPY/MB8GA1UdIwQY
MBaAFC6Clj/xqnCrENHTPoax1tSU1s5RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTG9LV1BfR3FjS3NRMGRNLWhySFcxSlRXemxFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi85NTdjNjgtNmYyNy00MGVkLWFiZWQt
ZGY2NGYwZTgyMzYwLzEvVGc5ZlAtSlNyN0ZGei0zZ0s4TXFIUFI4OWo4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMi85NTdjNjgtNmYyNy00MGVkLWFiZWQtZGY2NGYwZTgyMzYw
LzEvTG9LV1BfR3FjS3NRMGRNLWhySFcxSlRXemxFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw1/JMA0G
CSqGSIb3DQEBCwUAA4IBAQB9qTqvfAnd11YfmIvlvd0ibDPENLbwXyJRG/pRqa1i
4hEw0e6eR1N4cpJ9ZrTpknxe+rkrGlf3C1f33f1RFDEfmLKmv/eG6v/zgs+2Rt7Z
vgi8TxQCqbja0SAHU+FfusbExT+Yj8os/D3eyd5Frx6PCPwdRWfw4Pvn3GIKrQqc
4fM8r+jZ7ih2+QLSNJ0lFEKuDZ1115/JFnXbwV8Q6kWPoJnn1zdSCdfQujzOTbRN
T6l0JOWahtG6Kx7oORr9tWZdIXXv/SPKNcwQ9/t2vzirp0IXLomYKkVpy9Y17+zB
MBqSo5Osmcd/WUG/sjzF2nkoK8lhOvrQz1WWPCNIA8T8
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:09 2024 by rpki-client on console-ams.rpki-client.org