Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/148eca-c39f-4673-886f-ecf82302f726/1/T_4TNI9jg5qEdRqC_aSc2SuZaZc.roa
File: T_4TNI9jg5qEdRqC_aSc2SuZaZc.roa (raw, json)
Hash identifier: vPl8xj15HRc84wllOIlrJeqNYT4+DcrAXjWmux8Aw0U=
Subject key identifier: 4F:FE:13:34:8F:63:83:9A:84:75:1A:82:FD:A4:9C:D9:2B:99:69:97
Certificate issuer: /CN=1bde70af153494354946648acd641163e2af1b1d
Certificate serial: 01856EB8ED84AFD3F4460192783C00162ADE
Authority key identifier: 1B:DE:70:AF:15:34:94:35:49:46:64:8A:CD:64:11:63:E2:AF:1B:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G95wrxU0lDVJRmSKzWQRY-KvGx0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/148eca-c39f-4673-886f-ecf82302f726/1/T_4TNI9jg5qEdRqC_aSc2SuZaZc.roa
Signing time: Sun 01 Jan 2023 19:04:50 +0000
ROA not before: Sun 01 Jan 2023 19:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 195.8.43.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:b8:ed:84:af:d3:f4:46:01:92:78:3c:00:16:2a:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bde70af153494354946648acd641163e2af1b1d
Validity
Not Before: Jan 1 19:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ffe13348f63839a84751a82fda49cd92b996997
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:1b:d0:1f:f3:90:e5:11:10:fe:ca:c3:22:87:
a2:35:66:fe:2c:d3:8b:10:4b:56:3b:56:e5:f5:2c:
3f:b6:b8:48:73:90:89:61:5f:18:80:ef:7e:dd:f3:
46:12:ea:da:3d:a1:16:ec:db:bc:63:84:a0:f6:45:
7a:d9:6a:52:de:18:2f:98:37:e2:fa:57:57:c2:46:
90:d0:57:c2:50:d4:aa:c6:66:74:01:be:2c:bf:48:
71:f2:1b:80:ae:2b:7d:8d:ed:d7:98:07:e5:5a:d9:
29:bc:6c:64:18:ca:1b:90:03:63:bd:3f:80:d3:13:
d9:ee:9d:f9:ce:a9:25:b8:48:24:e2:f5:e2:95:3d:
b1:8a:9d:a5:90:69:fe:ca:96:33:d9:6b:5a:7b:18:
b2:e8:9e:52:34:8c:1a:02:79:76:2b:86:93:0b:98:
50:fd:81:4a:2e:80:3b:9b:e2:2f:ed:82:d1:8e:85:
da:91:78:a2:99:0a:95:24:1c:33:19:6f:73:a4:85:
18:b1:d6:26:93:ce:36:3b:59:0c:08:71:bb:93:07:
6c:b8:31:79:19:e9:b8:2a:e1:7d:c5:6f:a2:44:c6:
8b:32:b3:be:c9:4b:b6:75:28:ec:48:64:cc:b7:1c:
d9:19:bd:81:30:a9:7f:2f:8c:06:5c:67:5b:d6:17:
a3:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:FE:13:34:8F:63:83:9A:84:75:1A:82:FD:A4:9C:D9:2B:99:69:97
X509v3 Authority Key Identifier:
keyid:1B:DE:70:AF:15:34:94:35:49:46:64:8A:CD:64:11:63:E2:AF:1B:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G95wrxU0lDVJRmSKzWQRY-KvGx0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/148eca-c39f-4673-886f-ecf82302f726/1/T_4TNI9jg5qEdRqC_aSc2SuZaZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/148eca-c39f-4673-886f-ecf82302f726/1/G95wrxU0lDVJRmSKzWQRY-KvGx0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.8.43.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:6c:d2:8a:56:e1:b9:66:66:bd:38:f6:8a:f6:95:67:41:7f:
a9:6c:fd:02:45:4f:ff:09:e0:bc:82:ac:8a:6a:d7:f6:11:44:
d8:fb:50:1b:4f:d0:e5:4b:54:02:48:6d:fd:55:1c:a9:49:ac:
d3:ac:87:ef:0a:51:b0:54:36:bf:4a:00:bf:d6:e3:0c:3d:9f:
15:51:94:67:13:ef:38:0d:fd:da:9e:a3:32:f1:ed:7a:67:66:
0f:4f:73:30:3e:c2:e0:77:a0:72:eb:ec:6a:77:71:80:0d:80:
a0:79:fb:3a:e1:43:53:ed:88:3a:9b:bb:78:dc:3a:b4:9a:17:
28:51:57:b0:bb:b1:06:53:08:9b:4f:99:b4:70:78:c1:32:df:
05:4f:54:df:b2:db:06:bd:57:fe:1d:85:8e:9d:2d:cb:ae:14:
7e:19:a4:29:1e:02:18:e7:d4:e0:5a:65:53:8e:8a:0f:bd:9a:
57:3d:57:d5:5c:78:1d:94:cf:f9:8f:a5:ad:a2:7a:7c:5f:a5:
ed:e0:bb:75:09:11:68:94:2b:f3:94:ec:4e:3b:1b:83:6c:da:
76:cc:47:f7:39:8a:e0:8f:3f:0e:ee:fa:2a:66:43:9b:0a:d1:
cc:67:b3:aa:82:6e:cb:10:70:7c:4a:1e:f3:12:13:58:d1:da:
c9:64:13:b4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuuO2Er9P0RgGSeDwAFireMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiZGU3MGFmMTUzNDk0MzU0OTQ2NjQ4YWNkNjQxMTYzZTJh
ZjFiMWQwHhcNMjMwMTAxMTkwNDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZmZlMTMzNDhmNjM4MzlhODQ3NTFhODJmZGE0OWNkOTJiOTk2OTk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqRvQH/OQ5REQ/srDIoeiNWb+LNOL
EEtWO1bl9Sw/trhIc5CJYV8YgO9+3fNGEuraPaEW7Nu8Y4Sg9kV62WpS3hgvmDfi
+ldXwkaQ0FfCUNSqxmZ0Ab4sv0hx8huArit9je3XmAflWtkpvGxkGMobkANjvT+A
0xPZ7p35zqkluEgk4vXilT2xip2lkGn+ypYz2Wtaexiy6J5SNIwaAnl2K4aTC5hQ
/YFKLoA7m+Iv7YLRjoXakXiimQqVJBwzGW9zpIUYsdYmk842O1kMCHG7kwdsuDF5
Gem4KuF9xW+iRMaLMrO+yUu2dSjsSGTMtxzZGb2BMKl/L4wGXGdb1hejCwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE/+EzSPY4OahHUagv2knNkrmWmXMB8GA1UdIwQY
MBaAFBvecK8VNJQ1SUZkis1kEWPirxsdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRzk1d3J4VTBsRFZKUm1TS3pXUVJZLUt2R3gwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy8xNDhlY2EtYzM5Zi00NjczLTg4NmYt
ZWNmODIzMDJmNzI2LzEvVF80VE5JOWpnNXFFZFJxQ19hU2MyU3VaYVpjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy8xNDhlY2EtYzM5Zi00NjczLTg4NmYtZWNmODIzMDJmNzI2
LzEvRzk1d3J4VTBsRFZKUm1TS3pXUVJZLUt2R3gwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwwgrMA0G
CSqGSIb3DQEBCwUAA4IBAQB8bNKKVuG5Zma9OPaK9pVnQX+pbP0CRU//CeC8gqyK
atf2EUTY+1AbT9DlS1QCSG39VRypSazTrIfvClGwVDa/SgC/1uMMPZ8VUZRnE+84
Df3anqMy8e16Z2YPT3MwPsLgd6By6+xqd3GADYCgefs64UNT7Yg6m7t43Dq0mhco
UVewu7EGUwibT5m0cHjBMt8FT1TfstsGvVf+HYWOnS3LrhR+GaQpHgIY59TgWmVT
jooPvZpXPVfVXHgdlM/5j6Wtonp8X6Xt4Lt1CRFolCvzlOxOOxuDbNp2zEf3OYrg
jz8O7voqZkObCtHMZ7Oqgm7LEHB8Sh7zEhNY0drJZBO0
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:48 2024 by rpki-client on console-fra.rpki-client.org