Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/cb9d7f-afdf-4487-9e08-bd5043c0d1fb/1/58ZARuPzM4ENLUjViE8RvJmX5ZU.roa
File: 58ZARuPzM4ENLUjViE8RvJmX5ZU.roa (raw, json)
Hash identifier: 1ZMEn8wvu87qOS2ujT8+91GoDabLMMp5CxadjhZWfFI=
Subject key identifier: E7:C6:40:46:E3:F3:33:81:0D:2D:48:D5:88:4F:11:BC:99:97:E5:95
Certificate issuer: /CN=4b01b0851b7f89ea4bb132a7f5395b9d2aca1c02
Certificate serial: 018571BA1230F4DE0970BC41C0AE60A013BB
Authority key identifier: 4B:01:B0:85:1B:7F:89:EA:4B:B1:32:A7:F5:39:5B:9D:2A:CA:1C:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SwGwhRt_iepLsTKn9TlbnSrKHAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/cb9d7f-afdf-4487-9e08-bd5043c0d1fb/1/58ZARuPzM4ENLUjViE8RvJmX5ZU.roa
Signing time: Mon 02 Jan 2023 09:04:57 +0000
ROA not before: Mon 02 Jan 2023 09:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12400
IP address blocks: 195.225.46.0/24 maxlen: 24
195.225.47.0/24 maxlen: 24
195.189.141.0/24 maxlen: 24
195.189.140.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 30 Oct 2023 11:13:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:ba:12:30:f4:de:09:70:bc:41:c0:ae:60:a0:13:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b01b0851b7f89ea4bb132a7f5395b9d2aca1c02
Validity
Not Before: Jan 2 09:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7c64046e3f333810d2d48d5884f11bc9997e595
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:70:db:3c:a2:f2:fe:5c:63:f6:c7:35:8f:bd:
a8:d2:9f:f3:25:54:d9:e6:cf:ff:4b:70:c3:84:b9:
0e:d0:de:6f:66:81:ea:3f:47:63:d0:a0:04:f4:9e:
fa:57:6f:ff:bd:d9:0b:82:71:3a:de:34:0c:01:c7:
b1:12:07:c3:b9:9e:2a:5d:aa:ea:c1:30:99:56:b9:
70:51:9e:48:9a:57:cc:cd:0c:3f:98:d1:5f:4b:8f:
64:0a:19:9a:81:30:07:01:e9:bd:86:55:e7:e5:32:
6b:74:ef:59:ba:bd:fc:1c:9a:f3:40:61:c8:60:e7:
41:6a:2e:bb:19:b6:a4:c6:52:de:73:cf:5c:2a:d0:
04:f3:89:f8:2e:7d:5f:63:01:f4:fb:37:ad:91:6d:
1d:ae:56:c8:3d:6e:37:45:d2:7e:47:82:c3:3d:d1:
8c:c8:c3:47:00:dc:6b:09:52:eb:ac:ea:36:0e:97:
d3:d5:a8:7b:d8:28:4d:b7:40:8b:37:10:7c:25:9c:
01:77:15:75:48:01:da:d8:da:63:42:10:46:3f:05:
4a:26:a5:ec:d1:25:ed:c9:1d:7a:05:0e:39:df:0b:
10:ce:b0:28:cc:8d:57:12:48:3f:01:f3:e6:72:62:
35:5a:6c:15:90:ed:f9:d5:aa:70:1d:7a:68:0a:17:
ce:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:C6:40:46:E3:F3:33:81:0D:2D:48:D5:88:4F:11:BC:99:97:E5:95
X509v3 Authority Key Identifier:
keyid:4B:01:B0:85:1B:7F:89:EA:4B:B1:32:A7:F5:39:5B:9D:2A:CA:1C:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SwGwhRt_iepLsTKn9TlbnSrKHAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/cb9d7f-afdf-4487-9e08-bd5043c0d1fb/1/58ZARuPzM4ENLUjViE8RvJmX5ZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/cb9d7f-afdf-4487-9e08-bd5043c0d1fb/1/SwGwhRt_iepLsTKn9TlbnSrKHAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.189.140.0/23
195.225.46.0/23
Signature Algorithm: sha256WithRSAEncryption
8e:21:fb:81:66:33:87:68:3d:80:27:62:15:0a:ce:fc:52:11:
04:c0:05:0e:1b:e7:e7:bd:4e:63:90:02:d9:96:ab:2d:e6:e1:
b8:42:1d:3e:75:d9:1b:61:15:1d:8f:ec:9b:f7:8b:f3:1e:37:
7f:1a:b8:0b:f3:f5:cc:92:01:41:4d:dc:a0:e1:ad:63:12:06:
f4:48:81:19:9d:5f:0b:36:cc:78:2e:06:b1:8b:f1:e3:c7:85:
04:71:a8:7e:50:4e:06:cc:39:02:d3:07:af:ea:0b:27:d2:dd:
ad:89:57:d2:6f:bb:85:83:b6:49:be:90:22:23:fc:c3:91:c4:
c0:3a:da:a8:8f:b6:83:07:e2:c2:e9:c3:33:30:e1:c7:fe:85:
67:eb:83:eb:46:2d:c6:a3:0d:06:46:3c:41:d3:2a:84:cc:f6:
8f:d8:35:ad:b0:f5:33:72:4c:56:d9:9b:e5:0c:fe:8b:67:87:
b8:a2:af:74:2e:1e:9b:3b:20:32:27:0a:e3:9e:30:f3:d9:df:
01:a8:cb:1b:b8:87:ce:e6:b6:13:28:eb:d6:89:9a:da:de:94:
cb:3a:e2:51:d7:15:68:4f:60:a7:4a:d7:51:a2:54:a8:c6:5b:
bd:13:13:e7:cd:d7:4d:8b:f8:2b:d1:b4:4f:76:8a:aa:3f:81:
5d:e8:7b:e5
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVxuhIw9N4JcLxBwK5goBO7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRiMDFiMDg1MWI3Zjg5ZWE0YmIxMzJhN2Y1Mzk1YjlkMmFj
YTFjMDIwHhcNMjMwMTAyMDkwNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlN2M2NDA0NmUzZjMzMzgxMGQyZDQ4ZDU4ODRmMTFiYzk5OTdlNTk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvHDbPKLy/lxj9sc1j72o0p/zJVTZ
5s//S3DDhLkO0N5vZoHqP0dj0KAE9J76V2//vdkLgnE63jQMAcexEgfDuZ4qXarq
wTCZVrlwUZ5ImlfMzQw/mNFfS49kChmagTAHAem9hlXn5TJrdO9Zur38HJrzQGHI
YOdBai67GbakxlLec89cKtAE84n4Ln1fYwH0+zetkW0drlbIPW43RdJ+R4LDPdGM
yMNHANxrCVLrrOo2DpfT1ah72ChNt0CLNxB8JZwBdxV1SAHa2NpjQhBGPwVKJqXs
0SXtyR16BQ453wsQzrAozI1XEkg/AfPmcmI1WmwVkO351apwHXpoChfOoQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFOfGQEbj8zOBDS1I1YhPEbyZl+WVMB8GA1UdIwQY
MBaAFEsBsIUbf4nqS7Eyp/U5W50qyhwCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU3dHd2hSdF9pZXBMc1RLbjlUbGJuU3JLSEFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9jYjlkN2YtYWZkZi00NDg3LTllMDgt
YmQ1MDQzYzBkMWZiLzEvNThaQVJ1UHpNNEVOTFVqVmlFOFJ2Sm1YNVpVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi9jYjlkN2YtYWZkZi00NDg3LTllMDgtYmQ1MDQzYzBkMWZi
LzEvU3dHd2hSdF9pZXBMc1RLbjlUbGJuU3JLSEFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBw72MAwQB
w+EuMA0GCSqGSIb3DQEBCwUAA4IBAQCOIfuBZjOHaD2AJ2IVCs78UhEEwAUOG+fn
vU5jkALZlqst5uG4Qh0+ddkbYRUdj+yb94vzHjd/GrgL8/XMkgFBTdyg4a1jEgb0
SIEZnV8LNsx4Lgaxi/Hjx4UEcah+UE4GzDkC0wev6gsn0t2tiVfSb7uFg7ZJvpAi
I/zDkcTAOtqoj7aDB+LC6cMzMOHH/oVn64PrRi3Gow0GRjxB0yqEzPaP2DWtsPUz
ckxW2ZvlDP6LZ4e4oq90Lh6bOyAyJwrjnjDz2d8BqMsbuIfO5rYTKOvWiZra3pTL
OuJR1xVoT2CnStdRolSoxlu9ExPnzddNi/gr0bRPdoqqP4Fd6Hvl
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:15 2024 by rpki-client on console-fra.rpki-client.org