Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/96qEXx5G94AgBIxw96NUXb_MAV4.roa
File: 96qEXx5G94AgBIxw96NUXb_MAV4.roa (raw, json)
Hash identifier: O1VwfmnI0qpEpf8fZDAVPG40eXCZDV14pZH5esofI+I=
Subject key identifier: F7:AA:84:5F:1E:46:F7:80:20:04:8C:70:F7:A3:54:5D:BF:CC:01:5E
Certificate issuer: /CN=1f4af2b479815f07cd82e9f82bab2fea13fb21b1
Certificate serial: 0185706733BFCA77020FE93845C70412AB25
Authority key identifier: 1F:4A:F2:B4:79:81:5F:07:CD:82:E9:F8:2B:AB:2F:EA:13:FB:21:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/96qEXx5G94AgBIxw96NUXb_MAV4.roa
Signing time: Mon 02 Jan 2023 02:54:49 +0000
ROA not before: Mon 02 Jan 2023 02:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 33915
IP address blocks: 195.130.223.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:33:bf:ca:77:02:0f:e9:38:45:c7:04:12:ab:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f4af2b479815f07cd82e9f82bab2fea13fb21b1
Validity
Not Before: Jan 2 02:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f7aa845f1e46f78020048c70f7a3545dbfcc015e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:52:d1:18:63:b7:07:26:88:d4:52:53:3b:ac:
25:7e:7d:52:05:5d:41:1b:9e:11:05:0d:fc:0e:14:
6b:9f:08:30:48:6e:21:19:d4:a8:b0:df:75:6a:08:
a7:57:c6:69:68:b4:5a:a8:a3:75:3b:b9:45:19:e5:
29:d5:5a:49:ed:87:1b:0b:0e:58:8b:d7:00:de:19:
16:26:db:7a:8a:d4:88:a3:73:60:e0:98:55:c8:47:
f1:fa:19:d5:06:96:79:df:c3:e6:95:70:7d:bf:e6:
a4:7d:91:f2:57:6e:36:c8:90:50:c7:b0:31:99:20:
49:39:ac:22:69:18:a8:36:ff:55:b4:b5:cf:2c:28:
f1:7a:3c:9c:86:58:e0:39:d6:63:f1:35:73:ff:02:
ae:8e:3d:c9:5d:de:16:db:c3:58:45:e5:37:8e:e7:
82:14:21:18:60:ad:39:43:4f:cd:f7:18:9b:55:54:
2b:a8:92:2e:ad:8f:93:ba:6b:54:ae:b7:f3:aa:de:
0b:35:1b:15:1e:ba:02:15:82:28:d0:9f:25:56:ad:
e1:35:ff:59:f1:83:cb:a5:ca:1a:30:b7:3b:b2:4b:
67:4c:fe:d0:97:b4:2f:c2:d8:5b:f0:42:a1:d1:8e:
4c:d0:1e:d9:02:33:5c:bf:26:04:ab:ca:89:49:b1:
7d:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:AA:84:5F:1E:46:F7:80:20:04:8C:70:F7:A3:54:5D:BF:CC:01:5E
X509v3 Authority Key Identifier:
keyid:1F:4A:F2:B4:79:81:5F:07:CD:82:E9:F8:2B:AB:2F:EA:13:FB:21:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/96qEXx5G94AgBIxw96NUXb_MAV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.130.223.0/24
Signature Algorithm: sha256WithRSAEncryption
24:9b:92:79:2d:ef:6d:1b:89:0c:94:c9:84:91:79:c3:b4:75:
51:75:66:99:f5:03:20:f9:9a:1f:66:cd:1a:4a:23:0c:ef:d7:
45:62:b0:db:66:48:ae:94:bd:11:71:d6:50:63:20:bb:57:0d:
6d:db:1a:83:2f:01:36:b5:78:ae:2a:0c:d6:d1:1a:81:a0:04:
36:43:42:b6:a5:3c:22:b6:cd:69:a0:94:8f:ad:a1:05:46:0e:
08:46:ca:e9:9c:b0:5d:8f:19:a6:fc:88:4e:b9:74:e7:2f:9c:
68:6b:a3:ec:c2:78:c4:47:39:2a:b6:67:44:70:83:d9:31:23:
69:72:bb:73:69:35:d7:46:aa:b0:2b:76:8d:ac:26:59:81:c5:
1b:8b:6a:2f:2e:64:61:59:d7:5f:fa:b9:a4:d0:98:2f:77:5c:
06:24:ba:0b:7f:48:0c:58:24:a7:18:ea:3a:89:7e:43:d9:28:
9d:53:18:b7:1e:f8:81:2c:73:e7:3c:26:8f:5a:3c:84:cb:f4:
87:fd:23:71:1d:e3:90:f8:e0:ee:47:53:4a:fe:6d:ee:ce:43:
8f:32:dd:62:41:2b:80:8f:07:0d:d1:a4:74:82:f5:f4:9a:9c:
33:9f:6e:5c:01:c9:2b:82:19:7f:6f:74:fd:5c:a9:57:8c:c0:
40:cb:d8:0c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwZzO/yncCD+k4RccEEqslMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmNGFmMmI0Nzk4MTVmMDdjZDgyZTlmODJiYWIyZmVhMTNm
YjIxYjEwHhcNMjMwMTAyMDI1NDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmN2FhODQ1ZjFlNDZmNzgwMjAwNDhjNzBmN2EzNTQ1ZGJmY2MwMTVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA51LRGGO3ByaI1FJTO6wlfn1SBV1B
G54RBQ38DhRrnwgwSG4hGdSosN91aginV8ZpaLRaqKN1O7lFGeUp1VpJ7YcbCw5Y
i9cA3hkWJtt6itSIo3Ng4JhVyEfx+hnVBpZ538PmlXB9v+akfZHyV242yJBQx7Ax
mSBJOawiaRioNv9VtLXPLCjxejychljgOdZj8TVz/wKujj3JXd4W28NYReU3jueC
FCEYYK05Q0/N9xibVVQrqJIurY+TumtUrrfzqt4LNRsVHroCFYIo0J8lVq3hNf9Z
8YPLpcoaMLc7sktnTP7Ql7Qvwthb8EKh0Y5M0B7ZAjNcvyYEq8qJSbF9BQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPeqhF8eRveAIASMcPejVF2/zAFeMB8GA1UdIwQY
MBaAFB9K8rR5gV8HzYLp+CurL+oT+yGxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSDByeXRIbUJYd2ZOZ3VuNEs2c3Y2aFA3SWJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8wZjI1YjctNGY4MS00ZjQxLWExNjIt
MDg2YzE2ZjczNmIxLzEvOTZxRVh4NUc5NEFnQkl4dzk2TlVYYl9NQVY0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy8wZjI1YjctNGY4MS00ZjQxLWExNjItMDg2YzE2ZjczNmIx
LzEvSDByeXRIbUJYd2ZOZ3VuNEs2c3Y2aFA3SWJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw4LfMA0G
CSqGSIb3DQEBCwUAA4IBAQAkm5J5Le9tG4kMlMmEkXnDtHVRdWaZ9QMg+ZofZs0a
SiMM79dFYrDbZkiulL0RcdZQYyC7Vw1t2xqDLwE2tXiuKgzW0RqBoAQ2Q0K2pTwi
ts1poJSPraEFRg4IRsrpnLBdjxmm/IhOuXTnL5xoa6PswnjERzkqtmdEcIPZMSNp
crtzaTXXRqqwK3aNrCZZgcUbi2ovLmRhWddf+rmk0Jgvd1wGJLoLf0gMWCSnGOo6
iX5D2SidUxi3HviBLHPnPCaPWjyEy/SH/SNxHeOQ+ODuR1NK/m3uzkOPMt1iQSuA
jwcN0aR0gvX0mpwzn25cAckrghl/b3T9XKlXjMBAy9gM
-----END CERTIFICATE-----
Generated at Mon Jan 1 19:27:30 2024 by rpki-client on console-fra.rpki-client.org