Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/uj539cZND8oqQSFF_pDoLsQ_3Ic.roa
File: uj539cZND8oqQSFF_pDoLsQ_3Ic.roa (raw, json)
Hash identifier: c/ADBLE18y6Dj3Nqtu6HhceO3l8yXFYWPLQF7Ja3NaY=
Subject key identifier: BA:3E:77:F5:C6:4D:0F:CA:2A:41:21:45:FE:90:E8:2E:C4:3F:DC:87
Certificate issuer: /CN=f0c104041691dc384f3b1a8cdf95c96628ea6daf
Certificate serial: 0189BA1223B6858A881B9C9291AE142E7DFD
Authority key identifier: F0:C1:04:04:16:91:DC:38:4F:3B:1A:8C:DF:95:C9:66:28:EA:6D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8MEEBBaR3DhPOxqM35XJZijqba8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/uj539cZND8oqQSFF_pDoLsQ_3Ic.roa
Signing time: Thu 03 Aug 2023 06:24:58 +0000
ROA not before: Thu 03 Aug 2023 06:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62442
IP address blocks: 95.38.38.0/24 maxlen: 24
95.38.45.0/24 maxlen: 24
95.38.72.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ba:12:23:b6:85:8a:88:1b:9c:92:91:ae:14:2e:7d:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0c104041691dc384f3b1a8cdf95c96628ea6daf
Validity
Not Before: Aug 3 06:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba3e77f5c64d0fca2a412145fe90e82ec43fdc87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:06:e0:a7:4e:b1:78:c0:a2:2c:2d:77:ac:75:
78:9c:a6:60:c6:6e:ca:ca:8b:37:6d:55:8a:0c:12:
b6:de:47:8c:fa:b0:82:1e:a5:87:63:38:48:b5:0b:
dd:42:8d:12:a1:c0:26:d2:4d:8a:15:18:a8:71:90:
12:0f:67:18:ad:32:35:23:3a:5f:40:42:dd:75:88:
0c:9a:7e:2e:d2:90:a3:ca:bf:76:01:30:c7:c4:32:
bb:83:af:1a:e6:46:20:6f:d9:be:41:fe:0f:53:76:
f3:e0:ad:0c:a9:8f:b7:96:28:85:0e:d6:1e:1b:80:
45:fa:07:b8:e1:48:1f:be:61:fe:26:80:23:8a:38:
d5:6f:12:ba:92:bf:ac:2f:14:aa:be:bd:20:48:4a:
c6:0a:71:be:0e:c5:36:5b:12:b5:d9:d8:b9:7b:8e:
02:03:17:dd:1b:f7:26:27:3b:3b:84:5e:45:6b:4f:
30:f6:95:f6:12:72:38:ea:52:0d:83:49:3e:4d:91:
26:78:d1:be:de:e8:cb:39:da:a0:f6:2a:ac:a5:b0:
27:fb:3d:29:0c:f9:ab:99:1b:47:c2:00:d5:f0:72:
93:d0:3b:28:14:66:8b:e9:d8:31:57:a9:94:48:14:
6e:df:9f:3b:10:38:59:f3:3e:f6:0a:55:e2:33:d0:
b2:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:3E:77:F5:C6:4D:0F:CA:2A:41:21:45:FE:90:E8:2E:C4:3F:DC:87
X509v3 Authority Key Identifier:
keyid:F0:C1:04:04:16:91:DC:38:4F:3B:1A:8C:DF:95:C9:66:28:EA:6D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8MEEBBaR3DhPOxqM35XJZijqba8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/uj539cZND8oqQSFF_pDoLsQ_3Ic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/8MEEBBaR3DhPOxqM35XJZijqba8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.38.38.0/24
95.38.45.0/24
95.38.72.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:33:7b:77:23:7c:3b:73:39:de:9a:90:9d:a9:aa:13:10:9b:
52:b8:81:27:b5:e6:d9:36:fa:02:9f:da:14:46:36:7a:d7:0b:
f2:2b:37:a8:1c:aa:ca:03:d2:39:4b:59:bc:7c:52:70:16:5b:
97:2c:41:4f:27:56:73:25:8a:1a:8c:d1:d5:97:54:71:7d:f5:
ae:92:45:27:90:9f:08:cb:85:0b:c8:fc:e9:29:65:03:c5:91:
65:ca:71:dc:56:e1:c0:e2:02:fd:13:24:77:86:c6:e7:33:5a:
11:39:44:73:b3:bb:90:eb:25:58:34:5a:14:11:73:ad:23:d6:
5e:5a:a5:6f:fa:29:fe:b3:75:e5:56:85:21:39:e7:10:85:d3:
ad:72:ae:ec:b3:05:a3:85:dc:e1:52:fb:6a:bd:be:f8:76:99:
bd:84:13:a6:56:14:89:d6:0f:f1:da:2f:77:b4:a6:75:aa:8f:
51:96:53:d7:5a:82:e3:4d:20:f9:78:7f:f8:8f:86:70:55:78:
38:e8:82:3f:a9:c3:90:7d:8d:bf:e5:48:32:d8:84:51:b6:c4:
8c:4a:7e:ef:cc:43:55:3b:a1:44:31:08:3b:01:68:3b:5d:1c:
27:ad:98:3a:28:b5:21:43:b2:ad:3d:4c:0a:9d:48:5f:4b:35:
7f:d3:83:a6
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYm6EiO2hYqIG5ySka4ULn39MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwYzEwNDA0MTY5MWRjMzg0ZjNiMWE4Y2RmOTVjOTY2Mjhl
YTZkYWYwHhcNMjMwODAzMDYyNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYTNlNzdmNWM2NGQwZmNhMmE0MTIxNDVmZTkwZTgyZWM0M2ZkYzg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoQbgp06xeMCiLC13rHV4nKZgxm7K
yos3bVWKDBK23keM+rCCHqWHYzhItQvdQo0SocAm0k2KFRiocZASD2cYrTI1Izpf
QELddYgMmn4u0pCjyr92ATDHxDK7g68a5kYgb9m+Qf4PU3bz4K0MqY+3liiFDtYe
G4BF+ge44UgfvmH+JoAjijjVbxK6kr+sLxSqvr0gSErGCnG+DsU2WxK12di5e44C
AxfdG/cmJzs7hF5Fa08w9pX2EnI46lINg0k+TZEmeNG+3ujLOdqg9iqspbAn+z0p
DPmrmRtHwgDV8HKT0DsoFGaL6dgxV6mUSBRu3587EDhZ8z72ClXiM9CyIQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFLo+d/XGTQ/KKkEhRf6Q6C7EP9yHMB8GA1UdIwQY
MBaAFPDBBAQWkdw4TzsajN+VyWYo6m2vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOE1FRUJCYVIzRGhQT3hxTTM1WEpaaWpxYmE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS83ODljYWYtYzhkMi00MTllLWFlMDQt
NjkxNDIyMzExNzI5LzEvdWo1MzljWk5EOG9xUVNGRl9wRG9Mc1FfM0ljLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS83ODljYWYtYzhkMi00MTllLWFlMDQtNjkxNDIyMzExNzI5
LzEvOE1FRUJCYVIzRGhQT3hxTTM1WEpaaWpxYmE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAXyYmAwQA
XyYtAwQAXyZIMA0GCSqGSIb3DQEBCwUAA4IBAQCaM3t3I3w7cznempCdqaoTEJtS
uIEntebZNvoCn9oURjZ61wvyKzeoHKrKA9I5S1m8fFJwFluXLEFPJ1ZzJYoajNHV
l1RxffWukkUnkJ8Iy4ULyPzpKWUDxZFlynHcVuHA4gL9EyR3hsbnM1oROURzs7uQ
6yVYNFoUEXOtI9ZeWqVv+in+s3XlVoUhOecQhdOtcq7sswWjhdzhUvtqvb74dpm9
hBOmVhSJ1g/x2i93tKZ1qo9RllPXWoLjTSD5eH/4j4ZwVXg46II/qcOQfY2/5Ugy
2IRRtsSMSn7vzENVO6FEMQg7AWg7XRwnrZg6KLUhQ7KtPUwKnUhfSzV/04Om
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:54 2024 by rpki-client on console-fra.rpki-client.org