Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/h7mlKMUTKgTDoZCTa7Rm9HMViGw.roa
File: h7mlKMUTKgTDoZCTa7Rm9HMViGw.roa (raw, json)
Hash identifier: 2KOMfx9TYuiMaRWw3IwREI8Ow4FYJWJrYx71QCv/eu8=
Subject key identifier: 87:B9:A5:28:C5:13:2A:04:C3:A1:90:93:6B:B4:66:F4:73:15:88:6C
Certificate issuer: /CN=b9ea8936f8e53063b4b3bdf0f3b15b2ae667ef13
Certificate serial: 0186EF915F08CA8F6B4F4C72FCE763CAF170
Authority key identifier: B9:EA:89:36:F8:E5:30:63:B4:B3:BD:F0:F3:B1:5B:2A:E6:67:EF:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ueqJNvjlMGO0s73w87FbKuZn7xM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/h7mlKMUTKgTDoZCTa7Rm9HMViGw.roa
Signing time: Fri 17 Mar 2023 12:35:27 +0000
ROA not before: Fri 17 Mar 2023 12:35:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61135
IP address blocks: 185.125.202.0/23 maxlen: 24
95.140.147.0/24 maxlen: 24
95.140.146.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 04 Apr 2023 08:50:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ef:91:5f:08:ca:8f:6b:4f:4c:72:fc:e7:63:ca:f1:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9ea8936f8e53063b4b3bdf0f3b15b2ae667ef13
Validity
Not Before: Mar 17 12:35:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=87b9a528c5132a04c3a190936bb466f47315886c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:f5:59:7f:3d:d6:79:16:bf:80:82:5b:09:7a:
35:ee:0b:3a:7a:85:37:06:18:20:e2:3b:7b:95:37:
32:29:46:3a:b9:07:03:bb:66:5d:b4:96:2a:05:7e:
58:71:0d:f4:03:1d:32:fe:6f:c7:cd:ae:d4:95:dc:
6d:ed:cc:8a:e3:af:dd:fa:c0:25:63:f6:1c:01:5f:
e6:fc:e5:cd:ca:98:79:10:28:7b:42:6b:d7:2d:96:
a2:84:63:40:e3:c5:8c:f4:75:eb:92:cd:3f:0f:b2:
fc:28:6f:00:b4:6d:8f:d0:97:6c:87:83:c2:97:3c:
5e:74:20:26:b5:19:8b:dc:d5:3d:d5:95:1a:c9:81:
35:0d:1d:c0:2b:5a:ac:48:f2:f4:0c:0c:e3:03:c6:
99:81:24:fd:c7:6e:23:ba:a6:33:62:d8:99:a7:61:
b0:65:15:f6:fc:80:76:7d:1b:23:63:99:cd:04:89:
35:9a:61:7c:12:0b:1e:95:e6:a8:b1:4f:f9:ac:78:
0c:28:8c:0f:7d:60:19:e0:d8:e3:19:d9:90:45:f5:
41:3f:bd:33:30:55:9b:8a:2b:69:b6:70:60:c6:26:
71:81:e7:71:2e:43:1b:d9:f6:3f:4b:f5:53:95:85:
58:fa:81:f0:d1:29:8c:3a:50:c2:22:93:4f:77:9e:
52:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:B9:A5:28:C5:13:2A:04:C3:A1:90:93:6B:B4:66:F4:73:15:88:6C
X509v3 Authority Key Identifier:
keyid:B9:EA:89:36:F8:E5:30:63:B4:B3:BD:F0:F3:B1:5B:2A:E6:67:EF:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ueqJNvjlMGO0s73w87FbKuZn7xM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/h7mlKMUTKgTDoZCTa7Rm9HMViGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/ueqJNvjlMGO0s73w87FbKuZn7xM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.140.146.0/23
185.125.202.0/23
Signature Algorithm: sha256WithRSAEncryption
69:eb:a7:d7:eb:94:5f:35:0c:3c:39:99:dc:58:74:75:e7:ae:
a4:d0:7c:9e:42:f9:3d:7c:4b:d3:2f:a4:c9:84:9b:ae:57:93:
80:ad:3a:2d:65:b7:36:6e:b6:aa:66:65:9a:23:84:65:d1:9b:
88:50:a2:9d:11:94:ed:bc:e2:e0:fb:e9:9b:fa:a0:b3:26:ec:
09:51:2c:c4:bc:b6:8d:3f:d7:d2:62:cb:9b:e8:0a:3f:48:b4:
1d:b3:61:3b:00:98:6e:57:39:da:e0:d3:9e:e6:86:6f:af:36:
16:06:9c:b8:32:fe:ef:10:fb:b0:1c:b6:f5:4a:f0:f4:c0:7f:
ac:a2:69:6b:72:21:ad:3d:9c:7d:e4:47:19:d1:63:43:74:17:
74:4d:7e:0e:62:83:b8:2d:e9:48:c9:29:4b:6e:af:4d:fb:f2:
41:9d:63:64:3f:a3:5b:a5:c0:9e:43:54:e2:7a:56:df:6f:07:
65:e8:90:c8:f5:ce:3d:2e:8a:42:8d:56:71:65:71:60:3e:34:
a2:1d:25:b3:f0:59:17:67:76:29:53:c5:f9:a3:f1:c2:db:49:
56:64:43:94:6b:13:bd:7d:fa:c8:cd:c8:dd:be:03:ec:8b:4d:
fc:8a:10:ee:ec:45:d9:bb:c8:35:9a:96:54:10:1f:29:d4:d2:
18:c8:00:2d
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYbvkV8Iyo9rT0xy/OdjyvFwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5ZWE4OTM2ZjhlNTMwNjNiNGIzYmRmMGYzYjE1YjJhZTY2
N2VmMTMwHhcNMjMwMzE3MTIzNTI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4N2I5YTUyOGM1MTMyYTA0YzNhMTkwOTM2YmI0NjZmNDczMTU4ODZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9fVZfz3WeRa/gIJbCXo17gs6eoU3
Bhgg4jt7lTcyKUY6uQcDu2ZdtJYqBX5YcQ30Ax0y/m/Hza7Uldxt7cyK46/d+sAl
Y/YcAV/m/OXNyph5ECh7QmvXLZaihGNA48WM9HXrks0/D7L8KG8AtG2P0Jdsh4PC
lzxedCAmtRmL3NU91ZUayYE1DR3AK1qsSPL0DAzjA8aZgST9x24juqYzYtiZp2Gw
ZRX2/IB2fRsjY5nNBIk1mmF8EgseleaosU/5rHgMKIwPfWAZ4NjjGdmQRfVBP70z
MFWbiitptnBgxiZxgedxLkMb2fY/S/VTlYVY+oHw0SmMOlDCIpNPd55SGwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFIe5pSjFEyoEw6GQk2u0ZvRzFYhsMB8GA1UdIwQY
MBaAFLnqiTb45TBjtLO98POxWyrmZ+8TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdWVxSk52amxNR08wczczdzg3RmJLdVpuN3hNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy9lYzI5ZTItMzQ0MC00MDlhLTk4NmEt
YjI1MDk5N2ZjNzVkLzEvaDdtbEtNVVRLZ1REb1pDVGE3Um05SE1WaUd3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy9lYzI5ZTItMzQ0MC00MDlhLTk4NmEtYjI1MDk5N2ZjNzVk
LzEvdWVxSk52amxNR08wczczdzg3RmJLdVpuN3hNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBX4ySAwQB
uX3KMA0GCSqGSIb3DQEBCwUAA4IBAQBp66fX65RfNQw8OZncWHR1566k0HyeQvk9
fEvTL6TJhJuuV5OArTotZbc2braqZmWaI4Rl0ZuIUKKdEZTtvOLg++mb+qCzJuwJ
USzEvLaNP9fSYsub6Ao/SLQds2E7AJhuVzna4NOe5oZvrzYWBpy4Mv7vEPuwHLb1
SvD0wH+somlrciGtPZx95EcZ0WNDdBd0TX4OYoO4LelIySlLbq9N+/JBnWNkP6Nb
pcCeQ1Tielbfbwdl6JDI9c49LopCjVZxZXFgPjSiHSWz8FkXZ3YpU8X5o/HC20lW
ZEOUaxO9ffrIzcjdvgPsi038ihDu7EXZu8g1mpZUEB8p1NIYyAAt
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:15 2024 by rpki-client on console-fra.rpki-client.org