Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/FYuR8XAONQDgN7Y0aEyBojSErtM.roa
File: FYuR8XAONQDgN7Y0aEyBojSErtM.roa (raw, json)
Hash identifier: /BFSTtroffp66FEgJEonKJTqubPFYp2LjDxwD7UTQP0=
Subject key identifier: 15:8B:91:F1:70:0E:35:00:E0:37:B6:34:68:4C:81:A2:34:84:AE:D3
Certificate issuer: /CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Certificate serial: 0191457A3ECECD47B27C8BD8D156E7910AF0
Authority key identifier: 06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/FYuR8XAONQDgN7Y0aEyBojSErtM.roa
Signing time: Mon 12 Aug 2024 07:25:24 +0000
ROA not before: Mon 12 Aug 2024 07:25:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 195.114.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Aug 2024 12:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:45:7a:3e:ce:cd:47:b2:7c:8b:d8:d1:56:e7:91:0a:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Validity
Not Before: Aug 12 07:25:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=158b91f1700e3500e037b634684c81a23484aed3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:c8:b3:5a:56:a2:26:56:1f:01:5c:37:ec:bf:
db:dc:67:99:d0:b9:29:99:75:50:35:a6:f0:33:5d:
c5:bf:3e:0d:b0:17:85:e5:8e:c3:3c:52:b8:dc:c6:
e6:0d:d8:27:6c:27:59:a5:c2:d1:1f:97:86:d5:ee:
4e:c4:47:2c:37:4b:64:0a:43:ef:27:51:2b:ed:cf:
08:72:4a:da:f6:30:96:c7:da:78:6f:ab:9e:de:80:
3b:80:d8:d6:18:98:c8:9e:dc:17:81:ba:72:8a:97:
f7:25:51:d2:21:48:c2:4b:67:99:8f:eb:80:96:31:
bd:1f:3f:6f:76:d9:73:35:5a:3e:6c:13:75:d8:f7:
d9:2c:8a:92:8a:a2:ac:30:8f:ef:78:10:61:c4:e4:
bd:f4:b0:21:f7:95:02:a4:c2:98:8c:e4:10:e0:31:
95:2e:c7:8c:4d:4c:2b:40:e3:59:56:4f:61:e7:10:
a0:ac:4c:4c:7c:4b:8a:28:0e:88:61:11:b7:88:ba:
35:6c:4c:91:5c:8e:e6:d0:75:19:92:14:d4:dc:ec:
19:20:c6:4f:03:fd:ac:76:cf:20:b6:a4:5e:42:d5:
e1:b7:66:68:56:5f:2d:37:2f:46:95:98:53:50:c2:
bf:fd:57:d4:9b:8f:25:37:75:9d:05:b0:ea:2c:c1:
c0:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:8B:91:F1:70:0E:35:00:E0:37:B6:34:68:4C:81:A2:34:84:AE:D3
X509v3 Authority Key Identifier:
keyid:06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/FYuR8XAONQDgN7Y0aEyBojSErtM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/BnHcx6msc1HHHgvCJ4z0X9Agri4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.114.195.0/24
Signature Algorithm: sha256WithRSAEncryption
04:16:8b:22:8c:9b:cf:f7:5b:74:cb:2e:b7:76:ee:4c:72:4f:
c5:b9:e8:51:e8:62:02:dd:06:dd:72:5c:21:39:d0:84:c5:58:
71:db:53:f2:6b:cb:a4:c2:30:25:94:60:f5:ed:0b:28:44:f3:
72:b0:55:18:a9:84:1b:09:83:76:2b:af:b2:8c:67:7d:96:e1:
ff:ce:ad:80:2b:ab:c0:0f:b9:9b:56:0b:3f:83:52:36:57:6f:
1f:b3:70:43:d1:50:73:4d:1c:45:31:ab:c5:3b:5d:2f:7f:6d:
1a:20:70:1f:fb:69:cb:af:2d:8f:ba:34:eb:c5:84:7c:a1:77:
1d:46:31:09:ce:55:d2:5a:4b:71:8f:12:b7:2f:90:7d:94:44:
cf:64:d5:c1:62:57:78:8a:5f:7f:01:0c:f9:43:ef:fa:2c:9b:
29:fc:a3:38:4a:a2:5e:70:4a:54:14:a9:e8:f0:00:10:36:62:
1b:70:6a:14:b8:95:06:35:fb:13:8b:f3:78:74:16:90:0a:6e:
ad:d7:94:d7:dd:5b:f9:d7:67:86:d5:18:a0:eb:5e:fd:09:65:
d8:ae:c9:a7:00:4e:ad:86:1c:e0:62:f2:db:dc:02:25:be:1e:
7d:af:64:2f:d6:a2:a8:a4:04:5a:a7:fc:14:66:85:cf:c2:aa:
12:38:e9:70
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZFFej7OzUeyfIvY0VbnkQrwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2NzFkY2M3YTlhYzczNTFjNzFlMGJjMjI3OGNmNDVmZDAy
MGFlMmUwHhcNMjQwODEyMDcyNTI0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNThiOTFmMTcwMGUzNTAwZTAzN2I2MzQ2ODRjODFhMjM0ODRhZWQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkMizWlaiJlYfAVw37L/b3GeZ0Lkp
mXVQNabwM13Fvz4NsBeF5Y7DPFK43MbmDdgnbCdZpcLRH5eG1e5OxEcsN0tkCkPv
J1Er7c8Ickra9jCWx9p4b6ue3oA7gNjWGJjIntwXgbpyipf3JVHSIUjCS2eZj+uA
ljG9Hz9vdtlzNVo+bBN12PfZLIqSiqKsMI/veBBhxOS99LAh95UCpMKYjOQQ4DGV
LseMTUwrQONZVk9h5xCgrExMfEuKKA6IYRG3iLo1bEyRXI7m0HUZkhTU3OwZIMZP
A/2sds8gtqReQtXht2ZoVl8tNy9GlZhTUMK//VfUm48lN3WdBbDqLMHA/wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBWLkfFwDjUA4De2NGhMgaI0hK7TMB8GA1UdIwQY
MBaAFAZx3MeprHNRxx4LwieM9F/QIK4uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQm5IY3g2bXNjMUhISGd2Q0o0ejBYOUFncmk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS8xZjk0OTMtZDQ2OC00YTdjLThjNGIt
MWRkZWM0Y2NlMjRjLzEvRll1UjhYQU9OUURnTjdZMGFFeUJvalNFcnRNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS8xZjk0OTMtZDQ2OC00YTdjLThjNGItMWRkZWM0Y2NlMjRj
LzEvQm5IY3g2bXNjMUhISGd2Q0o0ejBYOUFncmk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw3LDMA0G
CSqGSIb3DQEBCwUAA4IBAQAEFosijJvP91t0yy63du5Mck/FuehR6GIC3Qbdclwh
OdCExVhx21Pya8ukwjAllGD17QsoRPNysFUYqYQbCYN2K6+yjGd9luH/zq2AK6vA
D7mbVgs/g1I2V28fs3BD0VBzTRxFMavFO10vf20aIHAf+2nLry2PujTrxYR8oXcd
RjEJzlXSWktxjxK3L5B9lETPZNXBYld4il9/AQz5Q+/6LJsp/KM4SqJecEpUFKno
8AAQNmIbcGoUuJUGNfsTi/N4dBaQCm6t15TX3Vv512eG1Rig6179CWXYrsmnAE6t
hhzgYvLb3AIlvh59r2Qv1qKopARap/wUZoXPwqoSOOlw
-----END CERTIFICATE-----
Generated at Wed Aug 14 16:07:25 2024 by rpki-client on console-fra.rpki-client.org