Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/4bf3cc-023d-4b02-8028-c59efd348158/1/WeJS1Y8MzlmmdVxz48Qw-vR4rJg.roa
File: WeJS1Y8MzlmmdVxz48Qw-vR4rJg.roa (raw, json)
Hash identifier: D0P1BRAl/qSOO912tHI125UfLOBCKyjy7Zdjw6NWKVE=
Subject key identifier: 59:E2:52:D5:8F:0C:CE:59:A6:75:5C:73:E3:C4:30:FA:F4:78:AC:98
Certificate issuer: /CN=156849587a23bfb5d65b2a1404082232b439271b
Certificate serial: 01856F0B4C290DD765E1A236CB1E88ADD46D
Authority key identifier: 15:68:49:58:7A:23:BF:B5:D6:5B:2A:14:04:08:22:32:B4:39:27:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FWhJWHojv7XWWyoUBAgiMrQ5Jxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/4bf3cc-023d-4b02-8028-c59efd348158/1/WeJS1Y8MzlmmdVxz48Qw-vR4rJg.roa
Signing time: Sun 01 Jan 2023 20:34:49 +0000
ROA not before: Sun 01 Jan 2023 20:34:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197883
IP address blocks: 195.24.244.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:0b:4c:29:0d:d7:65:e1:a2:36:cb:1e:88:ad:d4:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=156849587a23bfb5d65b2a1404082232b439271b
Validity
Not Before: Jan 1 20:34:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=59e252d58f0cce59a6755c73e3c430faf478ac98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:54:45:31:a4:11:78:5b:1f:1a:a4:24:69:19:
9d:e9:54:44:c6:ac:f4:98:30:80:de:ca:0d:64:fe:
d1:77:0b:6c:93:cf:05:6c:98:25:57:21:82:12:63:
21:24:5b:95:36:09:ca:f4:0f:31:0c:09:70:7f:09:
c4:55:0d:2d:91:e6:1f:02:07:0a:c1:8c:dd:3f:5e:
84:35:ef:7c:fd:d1:63:9c:58:81:54:34:fa:26:5c:
f8:2c:c7:14:b7:db:03:9e:cb:8a:ad:4d:93:ad:63:
26:6c:6e:6a:f6:b6:af:1a:57:03:c0:5f:03:45:09:
b3:24:47:ba:06:ca:0b:23:68:3b:31:6c:e6:18:1f:
ce:d5:1f:26:1e:fc:ce:ab:9c:6c:39:23:06:0d:b5:
51:e7:4b:b6:9f:80:2d:cb:1b:f2:35:ad:dd:d7:45:
de:a0:4a:9d:41:25:64:41:83:d6:89:c2:5c:52:04:
39:ce:e1:b9:b7:75:a0:a2:8b:e3:37:f9:9f:76:a1:
05:c1:ba:75:9d:89:20:76:67:ca:29:0f:11:ed:e8:
22:d7:a2:ac:8c:63:0f:3a:15:d9:b5:03:e6:db:ea:
4e:2b:9d:95:45:3f:68:57:83:97:81:18:ac:e0:ff:
55:ab:5a:12:ab:b0:2d:b5:5c:c6:42:2f:0a:9d:75:
11:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:E2:52:D5:8F:0C:CE:59:A6:75:5C:73:E3:C4:30:FA:F4:78:AC:98
X509v3 Authority Key Identifier:
keyid:15:68:49:58:7A:23:BF:B5:D6:5B:2A:14:04:08:22:32:B4:39:27:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FWhJWHojv7XWWyoUBAgiMrQ5Jxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/4bf3cc-023d-4b02-8028-c59efd348158/1/WeJS1Y8MzlmmdVxz48Qw-vR4rJg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/4bf3cc-023d-4b02-8028-c59efd348158/1/FWhJWHojv7XWWyoUBAgiMrQ5Jxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.24.244.0/24
Signature Algorithm: sha256WithRSAEncryption
69:c6:79:9a:6e:91:e1:dc:23:ed:42:7d:50:c7:60:99:d2:bb:
a7:9e:21:a5:15:2b:58:fb:3c:d5:92:75:84:0d:7d:f9:44:26:
15:aa:f9:61:1e:84:49:ee:d5:3a:51:81:12:7a:6e:b1:a5:6a:
21:35:54:bd:9e:5d:ec:a9:c0:6a:c7:2f:35:1d:29:d6:51:0d:
de:b4:03:56:8a:d2:df:25:1c:24:d7:a7:dd:80:7a:da:ce:8f:
4c:7c:23:26:4d:da:9c:d0:fa:f0:7e:0c:6d:ff:39:26:46:db:
85:16:16:fa:f7:b4:2c:a5:ee:a1:54:77:65:97:c9:d4:59:a9:
52:3e:77:52:e8:04:c5:04:6d:ba:ed:5f:7f:48:36:d9:9e:c1:
6c:fb:87:5f:1d:e3:4e:2f:72:1e:16:48:ce:9f:57:6d:6b:ed:
90:28:4a:63:e3:4f:ef:a9:0c:65:49:a4:fe:ec:21:52:47:69:
d9:25:f1:fd:a3:8f:ee:15:a2:1d:b0:a8:25:4c:6e:f0:11:c6:
77:f6:36:97:08:8f:d6:61:48:c4:16:41:c9:53:47:67:e2:67:
29:51:8a:3d:e5:f0:58:c9:c5:47:76:c0:2a:51:04:e1:26:3a:
c9:a3:e7:ba:7c:3e:f0:40:d4:fc:6a:79:43:8d:9b:4e:67:8f:
f4:f1:e0:56
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvC0wpDddl4aI2yx6IrdRtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1Njg0OTU4N2EyM2JmYjVkNjViMmExNDA0MDgyMjMyYjQz
OTI3MWIwHhcNMjMwMTAxMjAzNDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OWUyNTJkNThmMGNjZTU5YTY3NTVjNzNlM2M0MzBmYWY0NzhhYzk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoFRFMaQReFsfGqQkaRmd6VRExqz0
mDCA3soNZP7Rdwtsk88FbJglVyGCEmMhJFuVNgnK9A8xDAlwfwnEVQ0tkeYfAgcK
wYzdP16ENe98/dFjnFiBVDT6Jlz4LMcUt9sDnsuKrU2TrWMmbG5q9ravGlcDwF8D
RQmzJEe6BsoLI2g7MWzmGB/O1R8mHvzOq5xsOSMGDbVR50u2n4AtyxvyNa3d10Xe
oEqdQSVkQYPWicJcUgQ5zuG5t3WgoovjN/mfdqEFwbp1nYkgdmfKKQ8R7egi16Ks
jGMPOhXZtQPm2+pOK52VRT9oV4OXgRis4P9Vq1oSq7AttVzGQi8KnXURUQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFniUtWPDM5ZpnVcc+PEMPr0eKyYMB8GA1UdIwQY
MBaAFBVoSVh6I7+11lsqFAQIIjK0OScbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRldoSldIb2p2N1hXV3lvVUJBZ2lNclE1SnhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS80YmYzY2MtMDIzZC00YjAyLTgwMjgt
YzU5ZWZkMzQ4MTU4LzEvV2VKUzFZOE16bG1tZFZ4ejQ4UXctdlI0ckpnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS80YmYzY2MtMDIzZC00YjAyLTgwMjgtYzU5ZWZkMzQ4MTU4
LzEvRldoSldIb2p2N1hXV3lvVUJBZ2lNclE1SnhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwxj0MA0G
CSqGSIb3DQEBCwUAA4IBAQBpxnmabpHh3CPtQn1Qx2CZ0runniGlFStY+zzVknWE
DX35RCYVqvlhHoRJ7tU6UYESem6xpWohNVS9nl3sqcBqxy81HSnWUQ3etANWitLf
JRwk16fdgHrazo9MfCMmTdqc0Prwfgxt/zkmRtuFFhb697Qspe6hVHdll8nUWalS
PndS6ATFBG267V9/SDbZnsFs+4dfHeNOL3IeFkjOn1dta+2QKEpj40/vqQxlSaT+
7CFSR2nZJfH9o4/uFaIdsKglTG7wEcZ39jaXCI/WYUjEFkHJU0dn4mcpUYo95fBY
ycVHdsAqUQThJjrJo+e6fD7wQNT8anlDjZtOZ4/08eBW
-----END CERTIFICATE-----
Generated at Mon Jan 1 21:28:04 2024 by rpki-client on console-fra.rpki-client.org