Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/K3SSaflgkaNVumlimjnbNRGr4uQ.roa
File: K3SSaflgkaNVumlimjnbNRGr4uQ.roa (raw, json)
Hash identifier: zT3HuBB/PQA5VRKel/oCQG+2bCfWsczscOAM5S6pvdI=
Subject key identifier: 2B:74:92:69:F9:60:91:A3:55:BA:69:62:9A:39:DB:35:11:AB:E2:E4
Certificate issuer: /CN=4434edbe1b4101b28abe232f2bcf2a014897825a
Certificate serial: 0185719E63E95797FEE32C8125DD10529C83
Authority key identifier: 44:34:ED:BE:1B:41:01:B2:8A:BE:23:2F:2B:CF:2A:01:48:97:82:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/K3SSaflgkaNVumlimjnbNRGr4uQ.roa
Signing time: Mon 02 Jan 2023 08:34:43 +0000
ROA not before: Mon 02 Jan 2023 08:34:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59752
IP address blocks: 195.49.136.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:63:e9:57:97:fe:e3:2c:81:25:dd:10:52:9c:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4434edbe1b4101b28abe232f2bcf2a014897825a
Validity
Not Before: Jan 2 08:34:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b749269f96091a355ba69629a39db3511abe2e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:91:96:21:57:23:08:ae:68:59:09:03:34:ec:
97:01:ef:ae:a8:dd:c9:7f:e4:ca:bf:6b:39:e5:5b:
9c:a2:3a:a1:7e:57:07:13:3c:d2:1c:34:8c:47:10:
57:b9:1b:dc:f8:72:88:ab:94:66:f8:2c:44:3a:8a:
c3:cb:50:2b:1c:fe:e1:ba:0f:96:e6:2f:47:f5:60:
5b:64:84:66:07:88:47:e9:1f:01:37:52:01:05:4a:
ec:d1:c5:bd:f6:9a:38:ea:8d:15:f9:db:47:d9:a3:
ee:a5:c2:67:98:87:31:41:ab:b1:d4:31:bd:50:ed:
66:8c:01:d3:da:62:01:32:0f:61:40:98:91:9f:ed:
48:67:14:b9:99:11:41:7b:02:a8:67:b8:d3:23:7c:
3c:e2:75:b3:8e:3d:89:91:b5:60:02:c5:9e:ca:d4:
e2:e5:54:b0:5a:40:8c:ca:e5:d3:b3:64:97:a6:65:
a1:0c:5f:f5:4a:b9:24:24:79:1c:3e:15:7f:ea:40:
8e:2e:1c:de:65:3a:66:b2:6e:25:d3:0c:76:24:e6:
7a:09:5b:dc:ce:e2:ac:91:dd:40:c5:aa:b0:2e:bf:
ff:0f:66:12:cd:0d:6b:45:c9:5a:d9:90:e6:da:ee:
9c:39:2f:e9:49:fc:72:d7:c1:d7:76:d4:7e:7e:57:
8b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:74:92:69:F9:60:91:A3:55:BA:69:62:9A:39:DB:35:11:AB:E2:E4
X509v3 Authority Key Identifier:
keyid:44:34:ED:BE:1B:41:01:B2:8A:BE:23:2F:2B:CF:2A:01:48:97:82:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/K3SSaflgkaNVumlimjnbNRGr4uQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.49.136.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:75:5d:2b:c0:3f:db:91:9d:43:ec:9c:81:69:69:b1:f9:d7:
c1:70:2e:91:7c:e2:18:f7:71:d5:fc:f5:ef:08:6a:21:fa:fe:
36:3f:44:34:bf:ac:0b:04:e6:a3:63:49:0c:93:28:fc:e1:fe:
8b:b6:ba:1e:ac:4e:ca:60:7b:bd:7a:ab:53:34:0c:8d:b3:0e:
72:f8:8d:6c:17:fd:d9:5c:1d:99:31:d3:06:54:eb:0c:da:c7:
31:7b:d5:ef:da:47:ff:72:8b:5b:39:bc:f4:77:e5:5d:f4:c2:
5c:a0:40:e9:3d:9d:cf:2c:c3:7c:03:e8:18:bc:fe:94:84:5e:
cc:c4:ce:10:59:e0:cc:3e:13:cc:90:91:85:0f:81:38:de:da:
86:e1:d4:6d:76:76:92:1d:fe:a3:db:ed:72:a6:2b:cb:1e:5e:
3c:ca:8a:94:6f:33:af:9e:96:58:b7:2f:ed:c8:d1:69:e4:9f:
37:92:39:bf:ff:c8:a4:63:8e:eb:d5:fa:15:55:52:d4:ed:0b:
a1:08:34:06:64:55:72:c9:60:f3:3f:b5:99:31:94:91:a2:88:
d8:1d:33:91:b9:b6:c9:64:76:2a:fd:19:6e:f8:2e:b5:85:7d:
db:95:e9:b0:2a:03:f5:a7:a0:60:c8:d0:99:48:e0:78:36:07:
0a:ad:5c:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:56 2024 by rpki-client on console-ams.rpki-client.org