Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/2894d7-14ee-46ab-882a-21272b87728b/1/rEmrkLkslPB9yqc-mnvAPvFPtTw.roa
File: rEmrkLkslPB9yqc-mnvAPvFPtTw.roa (raw, json)
Hash identifier: X7FSHU4kkZiG9XC5tDH1FVIjxV3ywHO74jXeFrEZjwM=
Subject key identifier: AC:49:AB:90:B9:2C:94:F0:7D:CA:A7:3E:9A:7B:C0:3E:F1:4F:B5:3C
Certificate issuer: /CN=8efc610ce7bcf479651fd9518c28894ed1eb5a84
Certificate serial: 018CC56EEE52B69726AD9DD5BF44B4B6F7AB
Authority key identifier: 8E:FC:61:0C:E7:BC:F4:79:65:1F:D9:51:8C:28:89:4E:D1:EB:5A:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jvxhDOe89HllH9lRjCiJTtHrWoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/2894d7-14ee-46ab-882a-21272b87728b/1/rEmrkLkslPB9yqc-mnvAPvFPtTw.roa
Signing time: Mon 01 Jan 2024 14:30:30 +0000
ROA not before: Mon 01 Jan 2024 14:30:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203701
IP address blocks: 195.54.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Apr 2024 10:42:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:ee:52:b6:97:26:ad:9d:d5:bf:44:b4:b6:f7:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8efc610ce7bcf479651fd9518c28894ed1eb5a84
Validity
Not Before: Jan 1 14:30:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ac49ab90b92c94f07dcaa73e9a7bc03ef14fb53c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:af:16:56:44:33:ee:53:af:ad:43:5c:9b:d0:
1b:8c:8b:0c:c6:e6:a9:b3:34:ea:4c:43:7e:7d:c2:
e2:c8:d6:dd:3a:3c:40:b0:a1:97:6e:9c:0e:83:21:
f6:ac:05:f9:c5:5c:bd:76:07:53:d0:8a:48:67:70:
2c:4d:4f:be:06:d0:f2:55:29:7c:71:1e:60:64:fa:
d5:cc:40:be:9c:b5:a0:ab:64:5a:8d:db:88:ad:35:
32:18:8b:31:bc:6a:c1:12:30:0e:1d:24:f2:e8:de:
25:ee:bc:88:27:a4:a2:95:2b:0b:77:a8:fc:97:19:
ce:64:5f:21:c9:00:66:78:2e:41:31:84:96:d7:38:
6e:05:33:29:d5:c3:e1:31:2a:98:54:c8:bf:1f:57:
bc:c9:dd:4c:0a:99:7a:d3:3d:61:b5:2e:09:23:52:
3c:4c:e0:e2:b9:ec:bf:c7:73:fe:0d:ea:64:b5:25:
75:cc:b0:9c:af:3e:4a:cf:b6:52:8e:17:c2:be:55:
c2:16:ed:32:fd:27:76:cb:d4:98:4e:aa:55:27:2f:
9a:f4:89:d9:34:03:af:aa:9f:d6:0b:c0:97:77:46:
5f:8c:04:a4:3f:19:5e:8b:3a:8d:0f:09:58:bb:0d:
24:40:02:02:23:7b:fd:65:82:60:ba:27:03:67:fb:
0b:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:49:AB:90:B9:2C:94:F0:7D:CA:A7:3E:9A:7B:C0:3E:F1:4F:B5:3C
X509v3 Authority Key Identifier:
keyid:8E:FC:61:0C:E7:BC:F4:79:65:1F:D9:51:8C:28:89:4E:D1:EB:5A:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jvxhDOe89HllH9lRjCiJTtHrWoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/2894d7-14ee-46ab-882a-21272b87728b/1/rEmrkLkslPB9yqc-mnvAPvFPtTw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/2894d7-14ee-46ab-882a-21272b87728b/1/jvxhDOe89HllH9lRjCiJTtHrWoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.54.166.0/24
Signature Algorithm: sha256WithRSAEncryption
73:eb:bf:84:65:68:93:b0:a1:bd:67:80:6c:c3:c4:5a:63:f8:
63:6d:2a:c8:d5:ca:73:22:07:4c:07:3a:eb:a0:e4:63:b5:67:
8a:35:21:54:0f:1b:9b:8f:82:9f:c1:03:8c:c4:84:40:b4:de:
e8:08:ee:5b:8f:1c:ef:48:e8:02:d5:c3:70:a7:f4:70:22:bb:
67:7c:7e:bc:b1:63:d7:08:35:c1:a4:11:00:b3:5f:0c:8e:7a:
26:05:58:25:3c:00:a6:b5:8a:78:19:8d:67:6d:f1:21:67:9e:
26:38:4d:34:03:79:81:d9:bd:ec:d8:33:4f:7d:91:f9:08:05:
21:ac:d6:ed:f0:85:1f:aa:52:81:80:8c:0e:d1:aa:6b:95:85:
36:d2:00:46:9c:c9:34:e2:d1:f7:71:9e:2d:77:94:21:98:5a:
6b:72:85:56:37:2b:53:0c:c1:5e:28:f4:36:83:72:db:7e:34:
e3:47:92:43:94:2a:04:ac:f6:0e:f3:4e:53:8e:3e:c0:3a:d9:
ba:4e:20:6e:33:aa:f7:4d:c4:e9:f4:02:21:e6:f1:61:9a:c9:
6a:59:6e:05:f6:2b:6f:05:d6:27:1e:0e:b4:1e:9f:62:86:74:
3f:bd:46:81:34:90:de:08:d4:a4:91:18:8d:00:70:15:c6:e6:
72:26:8d:5d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzFbu5StpcmrZ3Vv0S0tverMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhlZmM2MTBjZTdiY2Y0Nzk2NTFmZDk1MThjMjg4OTRlZDFl
YjVhODQwHhcNMjQwMTAxMTQzMDMwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYzQ5YWI5MGI5MmM5NGYwN2RjYWE3M2U5YTdiYzAzZWYxNGZiNTNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnK8WVkQz7lOvrUNcm9AbjIsMxuap
szTqTEN+fcLiyNbdOjxAsKGXbpwOgyH2rAX5xVy9dgdT0IpIZ3AsTU++BtDyVSl8
cR5gZPrVzEC+nLWgq2RajduIrTUyGIsxvGrBEjAOHSTy6N4l7ryIJ6SilSsLd6j8
lxnOZF8hyQBmeC5BMYSW1zhuBTMp1cPhMSqYVMi/H1e8yd1MCpl60z1htS4JI1I8
TODiuey/x3P+DepktSV1zLCcrz5Kz7ZSjhfCvlXCFu0y/Sd2y9SYTqpVJy+a9InZ
NAOvqp/WC8CXd0ZfjASkPxleizqNDwlYuw0kQAICI3v9ZYJguicDZ/sLvwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKxJq5C5LJTwfcqnPpp7wD7xT7U8MB8GA1UdIwQY
MBaAFI78YQznvPR5ZR/ZUYwoiU7R61qEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvanZ4aERPZTg5SGxsSDlsUmpDaUpUdEhyV29RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy8yODk0ZDctMTRlZS00NmFiLTg4MmEt
MjEyNzJiODc3MjhiLzEvckVtcmtMa3NsUEI5eXFjLW1udkFQdkZQdFR3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy8yODk0ZDctMTRlZS00NmFiLTg4MmEtMjEyNzJiODc3Mjhi
LzEvanZ4aERPZTg5SGxsSDlsUmpDaUpUdEhyV29RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwzamMA0G
CSqGSIb3DQEBCwUAA4IBAQBz67+EZWiTsKG9Z4Bsw8RaY/hjbSrI1cpzIgdMBzrr
oORjtWeKNSFUDxubj4KfwQOMxIRAtN7oCO5bjxzvSOgC1cNwp/RwIrtnfH68sWPX
CDXBpBEAs18MjnomBVglPACmtYp4GY1nbfEhZ54mOE00A3mB2b3s2DNPfZH5CAUh
rNbt8IUfqlKBgIwO0aprlYU20gBGnMk04tH3cZ4td5QhmFprcoVWNytTDMFeKPQ2
g3LbfjTjR5JDlCoErPYO805Tjj7AOtm6TiBuM6r3TcTp9AIh5vFhmslqWW4F9itv
BdYnHg60Hp9ihnQ/vUaBNJDeCNSkkRiNAHAVxuZyJo1d
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:17 2024 by rpki-client on console-fra.rpki-client.org