Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/7b7825-a0f7-4f5b-9c23-77cf81041083/1/n95-dxK6RTLB91lB2FyJV-2QOho.roa
File: n95-dxK6RTLB91lB2FyJV-2QOho.roa (raw, json)
Hash identifier: hQg/GWMEnqQw5DxHkHP0eXyBGr1QODo5y0W0BoEW0cA=
Subject key identifier: 9F:DE:7E:77:12:BA:45:32:C1:F7:59:41:D8:5C:89:57:ED:90:3A:1A
Certificate issuer: /CN=6a798f0fe4f4dffdfed2c8e62d235430f49377cd
Certificate serial: 018E8E97542EEB551B24F28B1CFB3BFC048D
Authority key identifier: 6A:79:8F:0F:E4:F4:DF:FD:FE:D2:C8:E6:2D:23:54:30:F4:93:77:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/anmPD-T03_3-0sjmLSNUMPSTd80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/7b7825-a0f7-4f5b-9c23-77cf81041083/1/n95-dxK6RTLB91lB2FyJV-2QOho.roa
Signing time: Sat 30 Mar 2024 09:01:05 +0000
ROA not before: Sat 30 Mar 2024 09:01:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 136258
IP address blocks: 45.154.204.0/24 maxlen: 24
45.154.205.0/24 maxlen: 24
195.137.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Apr 2024 13:43:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:8e:97:54:2e:eb:55:1b:24:f2:8b:1c:fb:3b:fc:04:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a798f0fe4f4dffdfed2c8e62d235430f49377cd
Validity
Not Before: Mar 30 09:01:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9fde7e7712ba4532c1f75941d85c8957ed903a1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:43:fb:d7:15:65:34:e8:96:13:6f:e7:24:cb:
df:44:9c:28:cb:19:00:2f:4c:ac:55:65:c2:8b:5d:
41:c9:fe:2b:6d:b6:30:da:6c:35:d6:2b:58:4b:a6:
aa:c6:e4:8f:f8:4b:ac:7b:3b:ce:c4:29:13:91:5f:
e2:5a:f0:bd:09:ba:b1:b7:aa:1e:b2:da:01:13:24:
9b:b7:54:58:cc:13:0d:ec:14:4d:dc:56:6f:02:47:
d0:2a:02:c2:d8:e5:7a:f1:c8:1b:c3:69:eb:39:37:
51:d5:09:ec:8b:b9:49:20:c8:c4:78:a0:9d:07:07:
df:34:cb:69:d5:6f:66:20:9a:81:e9:7e:0b:7f:50:
a3:81:e8:b0:ad:3c:36:d6:f2:56:d5:98:c8:02:68:
9e:06:1b:c8:0a:ba:c2:ca:28:f4:e0:c0:d2:9f:94:
04:a6:30:92:ab:b8:a4:23:86:99:78:7f:b2:04:23:
06:80:14:f9:ee:05:18:4f:ce:06:23:df:98:fb:13:
de:72:ca:9c:c6:d7:30:1e:fb:6b:d7:eb:12:50:b0:
45:81:53:44:9d:b9:25:35:c8:13:29:18:06:85:a4:
65:5f:fa:a7:e4:37:76:27:bf:00:13:f2:73:72:4a:
83:8a:e1:db:08:dc:72:19:08:a5:0f:47:1b:47:cc:
06:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:DE:7E:77:12:BA:45:32:C1:F7:59:41:D8:5C:89:57:ED:90:3A:1A
X509v3 Authority Key Identifier:
keyid:6A:79:8F:0F:E4:F4:DF:FD:FE:D2:C8:E6:2D:23:54:30:F4:93:77:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/anmPD-T03_3-0sjmLSNUMPSTd80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b7825-a0f7-4f5b-9c23-77cf81041083/1/n95-dxK6RTLB91lB2FyJV-2QOho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b7825-a0f7-4f5b-9c23-77cf81041083/1/anmPD-T03_3-0sjmLSNUMPSTd80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.204.0/23
195.137.220.0/24
Signature Algorithm: sha256WithRSAEncryption
dc:ed:3e:1a:73:a9:44:f2:80:9a:b5:eb:0a:57:4e:4f:71:53:
ea:84:ac:4f:d2:0e:c7:bd:ec:69:13:6e:b2:ce:d5:2d:54:af:
e7:55:4c:25:f5:41:e1:95:fc:ba:da:53:86:f0:b5:75:2c:bf:
1e:33:27:e5:0f:7b:a5:d2:75:b9:2b:ce:c6:2e:22:fb:dd:be:
97:67:85:d7:92:fe:98:9a:1b:bd:a9:c2:35:88:0e:20:21:44:
0b:c3:38:3b:30:a3:b7:ac:8b:64:64:da:43:0d:65:3d:b2:b7:
cc:8d:ed:e4:e7:1f:f2:50:01:ff:fd:34:ff:a7:43:82:6b:7a:
79:d0:62:04:d9:06:e5:56:55:de:ff:50:1b:8b:54:41:6e:90:
ff:f7:3f:32:2e:5e:17:13:c2:f7:d0:37:8e:16:a7:04:df:63:
75:bf:2b:4e:50:13:bc:31:82:5d:c5:57:9e:4b:13:8d:c5:e8:
65:2d:87:75:aa:f3:4d:9f:0d:17:eb:41:1b:ca:05:7a:d4:ce:
36:82:99:26:35:73:23:9d:6a:bd:16:1c:f7:f9:a3:e4:63:c2:
7e:c8:01:0c:6d:4c:05:1a:26:56:b3:52:be:14:c3:7c:15:0e:
6f:d7:a9:d0:df:ed:f8:5c:4b:8d:48:7f:bc:a3:94:93:e3:04:
de:bc:9e:c3
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY6Ol1Qu61UbJPKLHPs7/ASNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZhNzk4ZjBmZTRmNGRmZmRmZWQyYzhlNjJkMjM1NDMwZjQ5
Mzc3Y2QwHhcNMjQwMzMwMDkwMTA1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZmRlN2U3NzEyYmE0NTMyYzFmNzU5NDFkODVjODk1N2VkOTAzYTFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhkP71xVlNOiWE2/nJMvfRJwoyxkA
L0ysVWXCi11Byf4rbbYw2mw11itYS6aqxuSP+EusezvOxCkTkV/iWvC9Cbqxt6oe
stoBEySbt1RYzBMN7BRN3FZvAkfQKgLC2OV68cgbw2nrOTdR1Qnsi7lJIMjEeKCd
BwffNMtp1W9mIJqB6X4Lf1CjgeiwrTw21vJW1ZjIAmieBhvICrrCyij04MDSn5QE
pjCSq7ikI4aZeH+yBCMGgBT57gUYT84GI9+Y+xPecsqcxtcwHvtr1+sSULBFgVNE
nbklNcgTKRgGhaRlX/qn5Dd2J78AE/JzckqDiuHbCNxyGQilD0cbR8wGUwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFJ/efncSukUywfdZQdhciVftkDoaMB8GA1UdIwQY
MBaAFGp5jw/k9N/9/tLI5i0jVDD0k3fNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYW5tUEQtVDAzXzMtMHNqbUxTTlVNUFNUZDgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC83Yjc4MjUtYTBmNy00ZjViLTljMjMt
NzdjZjgxMDQxMDgzLzEvbjk1LWR4SzZSVExCOTFsQjJGeUpWLTJRT2hvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZC83Yjc4MjUtYTBmNy00ZjViLTljMjMtNzdjZjgxMDQxMDgz
LzEvYW5tUEQtVDAzXzMtMHNqbUxTTlVNUFNUZDgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBLZrMAwQA
w4ncMA0GCSqGSIb3DQEBCwUAA4IBAQDc7T4ac6lE8oCatesKV05PcVPqhKxP0g7H
vexpE26yztUtVK/nVUwl9UHhlfy62lOG8LV1LL8eMyflD3ul0nW5K87GLiL73b6X
Z4XXkv6Ymhu9qcI1iA4gIUQLwzg7MKO3rItkZNpDDWU9srfMje3k5x/yUAH//TT/
p0OCa3p50GIE2QblVlXe/1Abi1RBbpD/9z8yLl4XE8L30DeOFqcE32N1vytOUBO8
MYJdxVeeSxONxehlLYd1qvNNnw0X60EbygV61M42gpkmNXMjnWq9Fhz3+aPkY8J+
yAEMbUwFGiZWs1K+FMN8FQ5v16nQ3+34XEuNSH+8o5ST4wTevJ7D
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:17 2024 by rpki-client on console-ams.rpki-client.org