Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/fc392a-6a3e-4da5-b7b9-a7edb7d3f537/1/0XapLM3Whj0ebEYxA3qgZvOprWo.roa
File: 0XapLM3Whj0ebEYxA3qgZvOprWo.roa (raw, json)
Hash identifier: whLstXE//RIs+9tt7InDzVbLQVo9+YWa+87a/GmlB/c=
Subject key identifier: D1:76:A9:2C:CD:D6:86:3D:1E:6C:46:31:03:7A:A0:66:F3:A9:AD:6A
Certificate issuer: /CN=c185d7243ae986cde48414e6ad81f2229c0a57d8
Certificate serial: 01856D8AB6FDE21F9DCA983054B97A7C344C
Authority key identifier: C1:85:D7:24:3A:E9:86:CD:E4:84:14:E6:AD:81:F2:22:9C:0A:57:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wYXXJDrphs3khBTmrYHyIpwKV9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/fc392a-6a3e-4da5-b7b9-a7edb7d3f537/1/0XapLM3Whj0ebEYxA3qgZvOprWo.roa
Signing time: Sun 01 Jan 2023 13:34:45 +0000
ROA not before: Sun 01 Jan 2023 13:34:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15576
IP address blocks: 195.216.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8a:b6:fd:e2:1f:9d:ca:98:30:54:b9:7a:7c:34:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c185d7243ae986cde48414e6ad81f2229c0a57d8
Validity
Not Before: Jan 1 13:34:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d176a92ccdd6863d1e6c4631037aa066f3a9ad6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:4f:9c:79:d6:95:cd:71:6f:62:be:f8:8e:9d:
bc:7c:75:73:47:fa:39:82:aa:7b:c9:5d:86:5b:6d:
bc:15:a6:1e:dc:68:b3:87:0c:1b:08:0f:cb:dd:12:
e4:ab:0e:67:20:74:e2:dd:e6:59:1d:21:34:3a:d7:
2c:8a:9b:8b:fa:e0:83:dd:d6:8a:36:86:b1:ef:c4:
5b:a5:09:ac:b1:bf:b7:1e:a5:d8:b2:14:55:1c:14:
82:93:a7:92:dd:b1:04:52:cf:ff:33:43:32:59:2c:
12:91:1e:71:66:a4:c4:f6:f0:ec:a2:79:a8:19:18:
c0:a7:6f:f7:a2:de:b9:55:05:f6:ea:b1:6c:4f:0a:
0d:a5:8c:e0:57:30:de:4b:89:18:ac:6b:17:74:37:
c1:dc:a7:8c:98:d1:50:ab:23:f5:38:87:4d:54:0e:
82:85:e3:1a:e7:3f:f6:38:b0:b9:46:be:74:76:62:
6b:78:ab:be:8e:cb:8c:ea:3b:67:2e:b1:90:74:af:
ac:06:be:c6:04:2e:78:fb:47:1c:ea:27:36:ca:40:
23:83:7d:f0:f3:8f:7e:55:c5:a8:b8:66:c3:b7:eb:
d6:60:cc:ef:3e:b9:32:09:7f:99:00:1c:42:05:df:
16:50:71:9e:e7:f3:7e:db:ae:f6:f1:c5:87:6d:66:
9c:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:76:A9:2C:CD:D6:86:3D:1E:6C:46:31:03:7A:A0:66:F3:A9:AD:6A
X509v3 Authority Key Identifier:
keyid:C1:85:D7:24:3A:E9:86:CD:E4:84:14:E6:AD:81:F2:22:9C:0A:57:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wYXXJDrphs3khBTmrYHyIpwKV9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/fc392a-6a3e-4da5-b7b9-a7edb7d3f537/1/0XapLM3Whj0ebEYxA3qgZvOprWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/fc392a-6a3e-4da5-b7b9-a7edb7d3f537/1/wYXXJDrphs3khBTmrYHyIpwKV9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.216.227.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:6d:8d:68:48:3b:3b:0b:71:67:d5:31:46:15:51:11:65:e8:
7f:16:cd:fd:67:39:8f:fd:98:fe:99:4d:91:06:1d:54:2d:21:
e4:f6:6e:30:77:fc:be:82:29:74:6c:8c:52:3a:13:3c:68:11:
8d:48:a5:36:d9:71:86:0d:54:98:d1:8d:5e:17:95:c6:2c:86:
6b:87:88:be:06:db:2d:44:55:05:8d:db:61:89:05:60:ba:32:
a7:ef:3d:e6:ed:6b:1c:e8:30:74:ff:eb:82:b1:ad:a0:f7:89:
d2:69:ed:43:eb:18:7a:eb:b2:9e:4f:f2:0a:e9:a2:ef:a6:6b:
52:aa:55:3f:cd:12:b8:cc:ff:7f:4c:f9:75:8c:b2:a2:53:04:
60:14:2f:2b:7f:e9:1e:d0:95:12:46:b6:22:57:2d:a5:41:36:
a4:f0:b4:f6:d0:0e:77:97:a7:ae:5b:4d:ee:41:4a:59:75:75:
ff:57:94:76:9d:a4:ee:65:f4:b3:67:b8:51:e2:a7:dd:08:8d:
9d:91:68:4c:c6:b6:1c:1a:b3:a8:a3:22:f3:ec:cd:cd:53:ab:
02:81:e5:10:f9:1b:42:c1:56:b0:39:4b:9e:78:8f:34:43:e9:
be:33:ab:9c:ef:f4:cc:bb:8e:23:75:ad:02:21:28:a7:75:6a:
8d:f6:78:21
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtirb94h+dypgwVLl6fDRMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMxODVkNzI0M2FlOTg2Y2RlNDg0MTRlNmFkODFmMjIyOWMw
YTU3ZDgwHhcNMjMwMTAxMTMzNDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMTc2YTkyY2NkZDY4NjNkMWU2YzQ2MzEwMzdhYTA2NmYzYTlhZDZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu0+cedaVzXFvYr74jp28fHVzR/o5
gqp7yV2GW228FaYe3GizhwwbCA/L3RLkqw5nIHTi3eZZHSE0OtcsipuL+uCD3daK
Noax78RbpQmssb+3HqXYshRVHBSCk6eS3bEEUs//M0MyWSwSkR5xZqTE9vDsonmo
GRjAp2/3ot65VQX26rFsTwoNpYzgVzDeS4kYrGsXdDfB3KeMmNFQqyP1OIdNVA6C
heMa5z/2OLC5Rr50dmJreKu+jsuM6jtnLrGQdK+sBr7GBC54+0cc6ic2ykAjg33w
849+VcWouGbDt+vWYMzvPrkyCX+ZABxCBd8WUHGe5/N+26728cWHbWacjwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNF2qSzN1oY9HmxGMQN6oGbzqa1qMB8GA1UdIwQY
MBaAFMGF1yQ66YbN5IQU5q2B8iKcClfYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd1lYWEpEcnBoczNraEJUbXJZSHlJcHdLVjlnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9mYzM5MmEtNmEzZS00ZGE1LWI3Yjkt
YTdlZGI3ZDNmNTM3LzEvMFhhcExNM1doajBlYkVZeEEzcWdadk9wcldvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi9mYzM5MmEtNmEzZS00ZGE1LWI3YjktYTdlZGI3ZDNmNTM3
LzEvd1lYWEpEcnBoczNraEJUbXJZSHlJcHdLVjlnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw9jjMA0G
CSqGSIb3DQEBCwUAA4IBAQAubY1oSDs7C3Fn1TFGFVERZeh/Fs39ZzmP/Zj+mU2R
Bh1ULSHk9m4wd/y+gil0bIxSOhM8aBGNSKU22XGGDVSY0Y1eF5XGLIZrh4i+Btst
RFUFjdthiQVgujKn7z3m7Wsc6DB0/+uCsa2g94nSae1D6xh667KeT/IK6aLvpmtS
qlU/zRK4zP9/TPl1jLKiUwRgFC8rf+ke0JUSRrYiVy2lQTak8LT20A53l6euW03u
QUpZdXX/V5R2naTuZfSzZ7hR4qfdCI2dkWhMxrYcGrOooyLz7M3NU6sCgeUQ+RtC
wVawOUueeI80Q+m+M6uc7/TMu44jda0CISindWqN9ngh
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:05 2024 by rpki-client on console-ams.rpki-client.org