Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/zUhrE9VX7deN9Q7AxHbu6_sPhwM.roa
File: zUhrE9VX7deN9Q7AxHbu6_sPhwM.roa (raw, json)
Hash identifier: EHS0qsvGUuzs+XbccwpiRjnGT8ZUiujUhGEPlaI4P+g=
Subject key identifier: CD:48:6B:13:D5:57:ED:D7:8D:F5:0E:C0:C4:76:EE:EB:FB:0F:87:03
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 0185B8D6E0B591EF3735E9434876904A155C
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/zUhrE9VX7deN9Q7AxHbu6_sPhwM.roa
Signing time: Mon 16 Jan 2023 04:29:28 +0000
ROA not before: Mon 16 Jan 2023 04:29:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 139648
IP address blocks: 95.214.178.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:b8:d6:e0:b5:91:ef:37:35:e9:43:48:76:90:4a:15:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jan 16 04:29:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd486b13d557edd78df50ec0c476eeebfb0f8703
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:c6:0b:02:45:a4:73:5d:5a:a7:f9:fa:20:b9:
74:1d:96:87:71:bb:d7:b6:d1:0e:c7:7a:be:63:f3:
e0:78:7e:6b:8e:37:d8:19:e4:70:16:43:fd:bd:59:
2e:e3:82:39:9e:68:a0:a4:32:3b:72:ce:0d:8c:02:
94:bc:87:b5:ac:1e:d3:fe:0f:37:ce:87:10:d1:fb:
ad:94:f6:4f:73:c3:5c:8f:b1:b9:65:c8:8d:ce:c1:
69:19:e3:ea:e4:ed:b5:3c:1d:41:77:d4:5a:21:36:
2a:85:2a:65:73:4f:fd:3c:2f:51:20:81:20:cf:2a:
0c:d9:59:7d:d7:ed:9b:03:86:12:d5:9e:f8:95:b6:
ac:cd:39:70:da:0c:c1:c7:be:61:af:e3:36:6f:27:
41:98:5d:8d:24:8c:00:1c:fc:9e:79:50:e0:1c:b8:
88:f8:a2:64:31:c6:8c:aa:d3:3b:04:98:f7:6c:5c:
46:68:9e:c3:01:8c:1a:88:fe:f3:ce:bb:75:a1:7f:
d0:d3:6f:ab:95:24:04:cd:a7:6c:4c:42:3b:13:28:
ee:a1:58:b5:17:73:82:c3:36:75:ee:4c:53:ea:0a:
3e:c4:30:0e:ba:0f:ed:f5:f0:8a:63:d1:0b:8a:7f:
16:b5:87:83:c8:51:91:97:cf:a2:4c:13:7f:7a:c1:
91:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:48:6B:13:D5:57:ED:D7:8D:F5:0E:C0:C4:76:EE:EB:FB:0F:87:03
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/zUhrE9VX7deN9Q7AxHbu6_sPhwM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.178.0/23
Signature Algorithm: sha256WithRSAEncryption
59:b0:be:7b:9d:ba:51:8e:52:27:d2:66:40:1d:81:eb:1e:8b:
ea:9a:75:84:c3:06:9e:6e:48:75:31:5c:45:be:0c:1b:95:94:
88:c6:a9:ce:3c:d7:3f:42:fc:f0:c3:16:2a:02:8c:ad:32:f6:
bc:0d:08:a8:e0:e0:46:2f:f9:54:e8:db:91:95:78:c0:7f:8e:
41:33:1a:27:9e:a5:41:21:15:3f:6b:57:78:f7:61:7b:6d:96:
4f:ab:9f:ee:ea:27:0a:3a:99:2d:0b:f1:e5:c8:58:43:a9:c7:
a0:1a:4f:f4:cc:17:f2:f4:64:f4:54:6e:4a:69:ca:fe:e6:0a:
94:7b:65:14:5f:38:b6:aa:72:19:96:27:0b:dd:fa:6e:07:c5:
cd:fb:01:82:bc:fc:42:02:aa:79:45:9e:a9:7d:19:a6:46:70:
0a:74:53:cf:3d:79:8b:a1:fd:9a:07:33:07:19:f8:60:5a:30:
0a:60:23:77:2b:c9:93:02:8d:08:c2:8d:22:08:b5:26:e5:b0:
99:f2:50:99:f2:14:83:62:2f:73:a2:41:bd:eb:15:28:f9:b6:
ce:19:16:c2:94:50:71:14:99:d7:2f:35:50:ca:2d:17:37:72:
b3:88:83:b8:3b:e5:a5:4b:8d:cb:24:16:2f:58:cb:16:33:69:
fa:28:f3:32
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYW41uC1ke83NelDSHaQShVcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDliMGMwZDA0MjI1NTY2ZGI5NWU5YWQzYjJlZjYwNTAxNDk3
NWFhYTIwHhcNMjMwMTE2MDQyOTI4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZDQ4NmIxM2Q1NTdlZGQ3OGRmNTBlYzBjNDc2ZWVlYmZiMGY4NzAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2sYLAkWkc11ap/n6ILl0HZaHcbvX
ttEOx3q+Y/PgeH5rjjfYGeRwFkP9vVku44I5nmigpDI7cs4NjAKUvIe1rB7T/g83
zocQ0futlPZPc8Ncj7G5ZciNzsFpGePq5O21PB1Bd9RaITYqhSplc0/9PC9RIIEg
zyoM2Vl91+2bA4YS1Z74lbaszTlw2gzBx75hr+M2bydBmF2NJIwAHPyeeVDgHLiI
+KJkMcaMqtM7BJj3bFxGaJ7DAYwaiP7zzrt1oX/Q02+rlSQEzadsTEI7EyjuoVi1
F3OCwzZ17kxT6go+xDAOug/t9fCKY9ELin8WtYeDyFGRl8+iTBN/esGRaQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFM1IaxPVV+3XjfUOwMR27uv7D4cDMB8GA1UdIwQY
MBaAFJsMDQQiVWbblemtOy72BQFJdaqiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbXd3TkJDSlZadHVWNmEwN0x2WUZBVWwxcXFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC8wZWM2ZDItZjFkNy00YjBhLWFkMzMt
ZThlZjJmMDk1OThlLzEvelVockU5Vlg3ZGVOOVE3QXhIYnU2X3NQaHdNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC8wZWM2ZDItZjFkNy00YjBhLWFkMzMtZThlZjJmMDk1OThl
LzEvbXd3TkJDSlZadHVWNmEwN0x2WUZBVWwxcXFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBX9ayMA0G
CSqGSIb3DQEBCwUAA4IBAQBZsL57nbpRjlIn0mZAHYHrHovqmnWEwwaebkh1MVxF
vgwblZSIxqnOPNc/QvzwwxYqAoytMva8DQio4OBGL/lU6NuRlXjAf45BMxonnqVB
IRU/a1d492F7bZZPq5/u6icKOpktC/HlyFhDqcegGk/0zBfy9GT0VG5Kacr+5gqU
e2UUXzi2qnIZlicL3fpuB8XN+wGCvPxCAqp5RZ6pfRmmRnAKdFPPPXmLof2aBzMH
GfhgWjAKYCN3K8mTAo0Iwo0iCLUm5bCZ8lCZ8hSDYi9zokG96xUo+bbOGRbClFBx
FJnXLzVQyi0XN3KziIO4O+WlS43LJBYvWMsWM2n6KPMy
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:01 2024 by rpki-client on console-fra.rpki-client.org