Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/3d1945-d60e-48ab-88bc-8cfe4b8157d2/1/spX9yO-Ms7zhuzG0rDaVO6pkQZE.roa
File: spX9yO-Ms7zhuzG0rDaVO6pkQZE.roa (raw, json)
Hash identifier: dnlxg7+h4LkRNT3Ua3fkxJGQFevjgF3LT2EQAt0XQXc=
Subject key identifier: B2:95:FD:C8:EF:8C:B3:BC:E1:BB:31:B4:AC:36:95:3B:AA:64:41:91
Certificate issuer: /CN=5e717627f7b2fcc56f0d7be469a13171607d2427
Certificate serial: 018CC42538B8F134B1DA9F22DA0588055A38
Authority key identifier: 5E:71:76:27:F7:B2:FC:C5:6F:0D:7B:E4:69:A1:31:71:60:7D:24:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XnF2J_ey_MVvDXvkaaExcWB9JCc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/3d1945-d60e-48ab-88bc-8cfe4b8157d2/1/spX9yO-Ms7zhuzG0rDaVO6pkQZE.roa
Signing time: Mon 01 Jan 2024 08:30:22 +0000
ROA not before: Mon 01 Jan 2024 08:30:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207459
IP address blocks: 195.254.165.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 16 Feb 2024 12:52:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:38:b8:f1:34:b1:da:9f:22:da:05:88:05:5a:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e717627f7b2fcc56f0d7be469a13171607d2427
Validity
Not Before: Jan 1 08:30:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b295fdc8ef8cb3bce1bb31b4ac36953baa644191
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:18:07:92:bf:84:d3:af:70:f6:c4:64:25:dc:
85:1e:49:ca:7c:1c:b4:85:98:f5:c2:15:86:5d:08:
c4:75:72:44:04:ae:54:ac:c1:84:b6:de:b5:c2:28:
40:3f:e2:27:d7:ec:93:b7:c0:dd:b5:18:17:77:0c:
c0:01:5a:b7:9d:8b:c6:b6:da:c7:93:f2:b2:cd:2f:
2a:70:0e:91:8b:1b:ba:73:bc:29:7b:03:0c:97:93:
ff:53:9a:6a:0f:c8:d6:53:01:fe:e9:08:c7:7c:f4:
45:d0:4e:e7:e5:61:c1:ab:10:28:5e:a4:a9:32:d4:
1b:41:18:59:65:91:7e:4f:e9:b8:22:83:69:50:3c:
6b:a0:b3:3e:f8:8b:ce:a0:2e:ed:48:b4:d3:13:0c:
6d:71:e2:3f:c3:3e:12:81:cd:96:01:23:20:12:e7:
f8:12:03:1c:dc:28:9d:1f:7c:95:98:a2:50:67:27:
e4:ef:9e:53:2f:70:de:ec:5b:c3:35:82:d0:c9:a4:
21:a1:95:3d:37:20:ee:5c:9f:f4:2f:c4:5f:bf:15:
4e:c5:3d:55:b0:a2:e7:96:37:6a:96:78:b0:95:4d:
18:7d:e7:3b:df:df:55:e4:af:2b:ca:f3:eb:ad:59:
1e:7f:9e:9e:2a:08:ec:1c:d8:f1:17:2a:66:4e:0e:
1a:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:95:FD:C8:EF:8C:B3:BC:E1:BB:31:B4:AC:36:95:3B:AA:64:41:91
X509v3 Authority Key Identifier:
keyid:5E:71:76:27:F7:B2:FC:C5:6F:0D:7B:E4:69:A1:31:71:60:7D:24:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XnF2J_ey_MVvDXvkaaExcWB9JCc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/3d1945-d60e-48ab-88bc-8cfe4b8157d2/1/spX9yO-Ms7zhuzG0rDaVO6pkQZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/3d1945-d60e-48ab-88bc-8cfe4b8157d2/1/XnF2J_ey_MVvDXvkaaExcWB9JCc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.254.165.0/24
Signature Algorithm: sha256WithRSAEncryption
79:79:08:25:57:d6:dc:31:aa:54:ba:3f:67:19:9d:cb:ed:d5:
dd:b6:7c:46:7b:2e:c0:76:3b:8d:04:79:d5:cc:9a:29:27:81:
eb:54:82:cb:90:45:9b:20:96:ca:62:6c:f7:91:fb:3c:8c:8d:
74:fb:61:3f:69:db:01:28:b0:6a:e4:f5:02:d0:3e:6c:10:bb:
ab:3d:d9:af:c7:ac:59:44:48:c9:8c:73:7b:36:ef:5b:61:44:
40:04:ca:d2:8f:a2:7d:64:29:24:df:7d:a2:83:06:e0:a9:8e:
80:1b:da:54:a7:48:1a:1d:b2:c4:69:48:3a:8d:79:65:d8:31:
0e:83:93:c7:c1:9e:dc:2e:6c:0e:9c:36:7e:67:7a:e2:38:46:
c9:4b:8c:73:aa:d2:3b:f7:75:68:f7:0c:10:68:51:f0:6b:cf:
86:4a:65:30:1f:c6:f8:cd:74:0d:aa:35:2a:f6:9e:bc:1b:ef:
54:50:84:de:7c:1c:d8:92:2b:f1:e8:0b:d8:b0:ab:b2:67:4f:
c2:db:10:78:66:89:71:c0:44:01:24:f7:e5:ce:05:94:83:ac:
cd:b5:66:00:ee:b2:6d:71:ea:fa:ce:26:9a:f8:16:18:c3:23:
b9:f9:90:ae:d4:4c:0f:4f:ef:4b:e5:4b:10:54:0d:77:43:8a:
a0:c7:a4:11
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzEJTi48TSx2p8i2gWIBVo4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlNzE3NjI3ZjdiMmZjYzU2ZjBkN2JlNDY5YTEzMTcxNjA3
ZDI0MjcwHhcNMjQwMTAxMDgzMDIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMjk1ZmRjOGVmOGNiM2JjZTFiYjMxYjRhYzM2OTUzYmFhNjQ0MTkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxBgHkr+E069w9sRkJdyFHknKfBy0
hZj1whWGXQjEdXJEBK5UrMGEtt61wihAP+In1+yTt8DdtRgXdwzAAVq3nYvGttrH
k/KyzS8qcA6Rixu6c7wpewMMl5P/U5pqD8jWUwH+6QjHfPRF0E7n5WHBqxAoXqSp
MtQbQRhZZZF+T+m4IoNpUDxroLM++IvOoC7tSLTTEwxtceI/wz4Sgc2WASMgEuf4
EgMc3CidH3yVmKJQZyfk755TL3De7FvDNYLQyaQhoZU9NyDuXJ/0L8RfvxVOxT1V
sKLnljdqlniwlU0Yfec7399V5K8ryvPrrVkef56eKgjsHNjxFypmTg4aewIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLKV/cjvjLO84bsxtKw2lTuqZEGRMB8GA1UdIwQY
MBaAFF5xdif3svzFbw175GmhMXFgfSQnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWG5GMkpfZXlfTVZ2RFh2a2FhRXhjV0I5SkNjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy8zZDE5NDUtZDYwZS00OGFiLTg4YmMt
OGNmZTRiODE1N2QyLzEvc3BYOXlPLU1zN3podXpHMHJEYVZPNnBrUVpFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy8zZDE5NDUtZDYwZS00OGFiLTg4YmMtOGNmZTRiODE1N2Qy
LzEvWG5GMkpfZXlfTVZ2RFh2a2FhRXhjV0I5SkNjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw/6lMA0G
CSqGSIb3DQEBCwUAA4IBAQB5eQglV9bcMapUuj9nGZ3L7dXdtnxGey7AdjuNBHnV
zJopJ4HrVILLkEWbIJbKYmz3kfs8jI10+2E/adsBKLBq5PUC0D5sELurPdmvx6xZ
REjJjHN7Nu9bYURABMrSj6J9ZCkk332igwbgqY6AG9pUp0gaHbLEaUg6jXll2DEO
g5PHwZ7cLmwOnDZ+Z3riOEbJS4xzqtI793Vo9wwQaFHwa8+GSmUwH8b4zXQNqjUq
9p68G+9UUITefBzYkivx6AvYsKuyZ0/C2xB4ZolxwEQBJPflzgWUg6zNtWYA7rJt
cer6ziaa+BYYwyO5+ZCu1EwPT+9L5UsQVA13Q4qgx6QR
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:28 2024 by rpki-client on console-ams.rpki-client.org