Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/qjuMPcmtvQST8wJ3UvmNQv8w9xg.roa
File: qjuMPcmtvQST8wJ3UvmNQv8w9xg.roa (raw, json)
Hash identifier: Kot8OsHjv9mmzJnnxJdvhQ1rg9n780jtvuNtixFGukE=
Subject key identifier: AA:3B:8C:3D:C9:AD:BD:04:93:F3:02:77:52:F9:8D:42:FF:30:F7:18
Certificate issuer: /CN=a1695d5558241e04a872dc1346898f2cea70dfe7
Certificate serial: 018D30914E9D7A46D9FFD43C483B625B0765
Authority key identifier: A1:69:5D:55:58:24:1E:04:A8:72:DC:13:46:89:8F:2C:EA:70:DF:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oWldVVgkHgSoctwTRomPLOpw3-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/qjuMPcmtvQST8wJ3UvmNQv8w9xg.roa
Signing time: Mon 22 Jan 2024 09:47:25 +0000
ROA not before: Mon 22 Jan 2024 09:47:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213296
IP address blocks: 95.128.197.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Apr 2024 16:13:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:30:91:4e:9d:7a:46:d9:ff:d4:3c:48:3b:62:5b:07:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1695d5558241e04a872dc1346898f2cea70dfe7
Validity
Not Before: Jan 22 09:47:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aa3b8c3dc9adbd0493f3027752f98d42ff30f718
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f8:35:75:34:85:d0:4b:fe:ef:7c:e1:7b:4d:
32:ca:f3:35:09:7c:71:80:d5:e9:9c:5b:9a:d8:d3:
32:e7:91:8c:aa:c6:a8:20:24:16:8c:0b:44:9d:20:
c9:88:0d:aa:ee:2f:45:42:57:cf:35:86:4c:7b:e7:
bf:11:e1:6f:d2:de:72:bf:55:ff:eb:74:2e:67:82:
ed:56:1c:f5:98:58:e5:64:41:9a:51:7d:65:10:dd:
0d:81:2b:96:23:7e:30:01:c9:df:eb:72:bb:ea:31:
7e:6e:2a:0f:44:84:3e:73:06:ad:89:e7:f2:9c:85:
5f:0f:15:d7:a2:16:22:97:c8:39:c0:10:06:3a:7e:
69:ef:41:16:f3:8b:28:d8:41:c6:58:e6:5a:70:c6:
d3:cb:d5:ce:6c:31:95:16:d9:02:08:31:05:ec:d8:
72:d5:c0:d2:47:c3:a4:14:89:2c:9f:82:2c:ba:10:
6d:c2:bd:a4:5e:c7:de:02:23:ae:cc:3e:4b:b1:64:
f0:91:e7:de:57:0c:50:7e:60:49:34:23:e9:97:ca:
6c:4b:f1:e7:03:4b:be:aa:50:36:70:5c:6b:53:d9:
ee:3c:93:ac:70:5d:0d:d8:77:d3:03:31:f0:10:f3:
d1:99:0e:91:31:fd:f5:bf:c0:c6:44:d2:dc:35:e6:
73:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:3B:8C:3D:C9:AD:BD:04:93:F3:02:77:52:F9:8D:42:FF:30:F7:18
X509v3 Authority Key Identifier:
keyid:A1:69:5D:55:58:24:1E:04:A8:72:DC:13:46:89:8F:2C:EA:70:DF:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oWldVVgkHgSoctwTRomPLOpw3-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/qjuMPcmtvQST8wJ3UvmNQv8w9xg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.128.197.0/24
Signature Algorithm: sha256WithRSAEncryption
98:c7:56:31:e6:37:c7:59:fc:c8:5d:20:c7:bb:f0:78:d0:aa:
35:2d:93:10:d5:ce:31:d1:f5:2b:bb:8e:a7:90:37:c7:d3:97:
77:fa:7e:b4:d6:d4:f1:42:d4:ad:10:df:db:b8:51:1a:35:ba:
31:60:49:f8:30:a0:48:ce:90:d1:33:5b:c1:9c:dc:d2:a0:60:
10:04:e1:30:04:cd:4f:fe:9c:36:f7:0d:68:ee:11:5c:74:2b:
c5:d2:af:6c:ba:f7:9d:51:8f:96:99:72:42:14:40:fd:9b:04:
26:17:85:84:fe:0e:6f:e8:ce:5f:ab:77:50:d3:6c:a9:10:bf:
42:02:06:4a:b7:f7:a8:46:65:19:01:56:ef:12:5d:57:70:d6:
58:51:07:f1:f9:53:fd:20:16:2a:a5:05:6f:81:ff:47:10:68:
8b:f4:e2:24:8a:6c:c7:94:65:57:9f:48:a9:4c:8f:a9:26:d2:
b2:da:2c:b9:0a:74:75:e4:2c:a2:1e:1e:da:ac:fe:ca:3d:70:
c0:c4:e8:36:6f:c7:11:e3:f9:3b:04:2a:a8:8a:6b:f8:be:f9:
5d:3b:d2:c7:33:89:9e:b7:f3:af:f0:d2:42:6e:d6:15:7d:3b:
0d:5c:c9:b3:5d:2b:4b:e4:90:00:a4:d4:91:f1:df:41:11:1e:
33:cc:cc:8a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY0wkU6dekbZ/9Q8SDtiWwdlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExNjk1ZDU1NTgyNDFlMDRhODcyZGMxMzQ2ODk4ZjJjZWE3
MGRmZTcwHhcNMjQwMTIyMDk0NzI1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYTNiOGMzZGM5YWRiZDA0OTNmMzAyNzc1MmY5OGQ0MmZmMzBmNzE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo/g1dTSF0Ev+73zhe00yyvM1CXxx
gNXpnFua2NMy55GMqsaoICQWjAtEnSDJiA2q7i9FQlfPNYZMe+e/EeFv0t5yv1X/
63QuZ4LtVhz1mFjlZEGaUX1lEN0NgSuWI34wAcnf63K76jF+bioPRIQ+cwatiefy
nIVfDxXXohYil8g5wBAGOn5p70EW84so2EHGWOZacMbTy9XObDGVFtkCCDEF7Nhy
1cDSR8OkFIksn4IsuhBtwr2kXsfeAiOuzD5LsWTwkefeVwxQfmBJNCPpl8psS/Hn
A0u+qlA2cFxrU9nuPJOscF0N2HfTAzHwEPPRmQ6RMf31v8DGRNLcNeZzJQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKo7jD3Jrb0Ek/MCd1L5jUL/MPcYMB8GA1UdIwQY
MBaAFKFpXVVYJB4EqHLcE0aJjyzqcN/nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1dsZFZWZ2tIZ1NvY3R3VFJvbVBMT3B3My1jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC8yN2NhN2YtNjZiNC00YmIxLTlmNWYt
ZjViYTRmZTJiZjU0LzEvcWp1TVBjbXR2UVNUOHdKM1V2bU5Rdjh3OXhnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC8yN2NhN2YtNjZiNC00YmIxLTlmNWYtZjViYTRmZTJiZjU0
LzEvb1dsZFZWZ2tIZ1NvY3R3VFJvbVBMT3B3My1jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAX4DFMA0G
CSqGSIb3DQEBCwUAA4IBAQCYx1Yx5jfHWfzIXSDHu/B40Ko1LZMQ1c4x0fUru46n
kDfH05d3+n601tTxQtStEN/buFEaNboxYEn4MKBIzpDRM1vBnNzSoGAQBOEwBM1P
/pw29w1o7hFcdCvF0q9suvedUY+WmXJCFED9mwQmF4WE/g5v6M5fq3dQ02ypEL9C
AgZKt/eoRmUZAVbvEl1XcNZYUQfx+VP9IBYqpQVvgf9HEGiL9OIkimzHlGVXn0ip
TI+pJtKy2iy5CnR15CyiHh7arP7KPXDAxOg2b8cR4/k7BCqoimv4vvldO9LHM4me
t/Ov8NJCbtYVfTsNXMmzXStL5JAApNSR8d9BER4zzMyK
-----END CERTIFICATE-----
Generated at Mon Apr 8 20:06:37 2024 by rpki-client on console.sobornost.net