Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/9d54cb-7ceb-458f-bd77-b2283c9a536f/1/pkhg95PSiuwLO9NiRhq4T5nH9ME.roa
File: pkhg95PSiuwLO9NiRhq4T5nH9ME.roa (raw, json)
Hash identifier: q5o5cjEoOT6wSJCzfvW/uK698q/D68f+4FcXAnvcluU=
Subject key identifier: A6:48:60:F7:93:D2:8A:EC:0B:3B:D3:62:46:1A:B8:4F:99:C7:F4:C1
Certificate issuer: /CN=912f169fc744cbe895a9f85edab796d4ac700029
Certificate serial: 019315757CFDCEC2933C22B70B856CFF9A26
Authority key identifier: 91:2F:16:9F:C7:44:CB:E8:95:A9:F8:5E:DA:B7:96:D4:AC:70:00:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kS8Wn8dEy-iVqfhe2reW1KxwACk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/9d54cb-7ceb-458f-bd77-b2283c9a536f/1/pkhg95PSiuwLO9NiRhq4T5nH9ME.roa
Signing time: Sun 10 Nov 2024 09:44:01 +0000
ROA not before: Sun 10 Nov 2024 09:44:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43594
IP address blocks: 95.215.124.0/22 maxlen: 22
95.215.124.0/24 maxlen: 24
95.215.125.0/24 maxlen: 24
95.215.126.0/24 maxlen: 24
95.215.127.0/24 maxlen: 24
185.184.232.0/22 maxlen: 22
185.184.232.0/24 maxlen: 24
185.184.233.0/24 maxlen: 24
185.184.234.0/24 maxlen: 24
185.184.235.0/24 maxlen: 24
2a0b:4380::/32 maxlen: 32
2a0b:4380:1:65::/64 maxlen: 64
Validation: Failed, certificate revoked on Mon 11 Nov 2024 13:25:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:15:75:7c:fd:ce:c2:93:3c:22:b7:0b:85:6c:ff:9a:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=912f169fc744cbe895a9f85edab796d4ac700029
Validity
Not Before: Nov 10 09:44:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a64860f793d28aec0b3bd362461ab84f99c7f4c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:77:c4:79:d2:d2:39:9e:fd:5c:45:be:13:7b:
13:ae:24:24:e3:c3:35:bc:1a:0b:32:68:55:f3:8c:
63:ff:58:af:10:66:d7:e2:24:65:a2:f6:c2:8e:61:
7d:2f:1c:c6:5c:c5:85:7b:f9:d2:b8:39:0c:65:2f:
ec:ef:65:5f:9c:a4:79:37:5e:d5:26:b5:8c:e5:4f:
d0:26:ad:0d:02:d6:aa:60:9f:9d:4e:a0:92:f4:28:
9a:b5:b4:f8:0d:03:a6:d9:95:e3:9a:07:64:85:b7:
e8:81:3c:ff:3d:e9:c5:bb:3e:a7:f4:d9:2c:b8:2e:
33:a2:66:e1:d9:0f:ba:02:40:cc:e9:ea:8a:e2:0a:
5e:21:08:a9:33:f2:1e:83:8c:63:02:fe:28:30:d2:
c8:fd:47:77:80:6d:7f:7f:1c:b9:c7:ed:ad:7a:a9:
db:7e:d1:0d:ed:6a:f0:1b:fa:b4:98:15:2a:45:76:
e8:58:0f:8d:78:d8:21:b6:a0:93:d2:7b:44:96:14:
d6:38:99:20:c2:94:48:90:4f:2e:08:da:43:28:1d:
05:c0:48:80:93:54:b3:68:5e:54:1b:69:83:10:fe:
e2:a1:27:0d:a1:d5:b1:2f:ec:77:d2:aa:c3:94:31:
b2:6b:64:4c:d2:da:1d:cb:24:5a:ee:fc:0a:cd:98:
41:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:48:60:F7:93:D2:8A:EC:0B:3B:D3:62:46:1A:B8:4F:99:C7:F4:C1
X509v3 Authority Key Identifier:
keyid:91:2F:16:9F:C7:44:CB:E8:95:A9:F8:5E:DA:B7:96:D4:AC:70:00:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kS8Wn8dEy-iVqfhe2reW1KxwACk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/9d54cb-7ceb-458f-bd77-b2283c9a536f/1/pkhg95PSiuwLO9NiRhq4T5nH9ME.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/9d54cb-7ceb-458f-bd77-b2283c9a536f/1/kS8Wn8dEy-iVqfhe2reW1KxwACk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.215.124.0/22
185.184.232.0/22
IPv6:
2a0b:4380::/32
Signature Algorithm: sha256WithRSAEncryption
09:13:39:78:8e:a4:62:b9:00:20:68:dc:0a:f0:47:de:db:68:
45:ec:7d:c0:29:2f:0c:9b:04:fc:ab:ef:5d:ae:61:f4:8a:5f:
95:0e:4a:a1:80:10:9f:48:ee:43:2d:db:b5:49:ab:ba:bf:e4:
f8:7a:cc:0c:58:fe:c1:53:75:30:cf:a6:2b:11:f2:c6:2c:7f:
dc:43:a0:7e:b5:6f:e2:1d:9c:ad:b8:35:4e:6f:b9:dd:31:c0:
57:7d:f4:47:d0:24:e1:28:0f:51:2a:29:a5:17:ea:18:d0:97:
94:1c:43:b6:8d:63:12:2c:61:ca:4b:17:b6:ee:f3:5a:d0:17:
3e:85:d8:4d:30:3b:48:e1:55:08:7f:a9:ad:93:ec:46:70:bf:
9b:87:f6:c2:e4:58:e2:65:fc:54:e6:ff:bf:dd:4f:bf:ff:ec:
0e:55:ce:c3:6e:4c:43:d4:cf:ce:ce:fa:65:9a:8d:f0:a9:fb:
df:c0:60:6d:2e:be:1e:98:c5:d4:16:0f:68:56:48:96:be:e9:
8b:54:65:12:ed:a4:8d:3a:05:29:40:59:9e:ae:b9:18:bc:a9:
30:51:80:d8:8d:fd:8f:4e:b5:e2:b9:1d:aa:50:70:ae:0d:27:
e0:fc:6f:85:d7:9b:18:3a:3b:9c:1f:3f:3b:10:7b:08:d7:ef:
8a:72:b5:15
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgISAZMVdXz9zsKTPCK3C4Vs/5omMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxMmYxNjlmYzc0NGNiZTg5NWE5Zjg1ZWRhYjc5NmQ0YWM3
MDAwMjkwHhcNMjQxMTEwMDk0NDAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNjQ4NjBmNzkzZDI4YWVjMGIzYmQzNjI0NjFhYjg0Zjk5YzdmNGMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn3fEedLSOZ79XEW+E3sTriQk48M1
vBoLMmhV84xj/1ivEGbX4iRlovbCjmF9LxzGXMWFe/nSuDkMZS/s72VfnKR5N17V
JrWM5U/QJq0NAtaqYJ+dTqCS9CiatbT4DQOm2ZXjmgdkhbfogTz/PenFuz6n9Nks
uC4zombh2Q+6AkDM6eqK4gpeIQipM/Ieg4xjAv4oMNLI/Ud3gG1/fxy5x+2teqnb
ftEN7WrwG/q0mBUqRXboWA+NeNghtqCT0ntElhTWOJkgwpRIkE8uCNpDKB0FwEiA
k1SzaF5UG2mDEP7ioScNodWxL+x30qrDlDGya2RM0todyyRa7vwKzZhBcwIDAQAB
o4ICHjCCAhowHQYDVR0OBBYEFKZIYPeT0orsCzvTYkYauE+Zx/TBMB8GA1UdIwQY
MBaAFJEvFp/HRMvolan4Xtq3ltSscAApMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1M4V244ZEV5LWlWcWZoZTJyZVcxS3h3QUNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy85ZDU0Y2ItN2NlYi00NThmLWJkNzct
YjIyODNjOWE1MzZmLzEvcGtoZzk1UFNpdXdMTzlOaVJocTRUNW5IOU1FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy85ZDU0Y2ItN2NlYi00NThmLWJkNzctYjIyODNjOWE1MzZm
LzEva1M4V244ZEV5LWlWcWZoZTJyZVcxS3h3QUNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCX9d8AwQC
ubjoMA0EAgACMAcDBQAqC0OAMA0GCSqGSIb3DQEBCwUAA4IBAQAJEzl4jqRiuQAg
aNwK8Efe22hF7H3AKS8MmwT8q+9drmH0il+VDkqhgBCfSO5DLdu1Sau6v+T4eswM
WP7BU3Uwz6YrEfLGLH/cQ6B+tW/iHZytuDVOb7ndMcBXffRH0CThKA9RKimlF+oY
0JeUHEO2jWMSLGHKSxe27vNa0Bc+hdhNMDtI4VUIf6mtk+xGcL+bh/bC5FjiZfxU
5v+/3U+//+wOVc7DbkxD1M/Ozvplmo3wqfvfwGBtLr4emMXUFg9oVkiWvumLVGUS
7aSNOgUpQFmerrkYvKkwUYDYjf2PTrXiuR2qUHCuDSfg/G+F15sYOjucHz87EHsI
1++KcrUV
-----END CERTIFICATE-----
Generated at Sun Apr 20 02:07:16 2025 by rpki-client