Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/7612b0-3e24-4ce7-a1ca-c1c66078e5ba/1/1kbDbBx4t6WH7_l_jdb8WJhXMaE.roa
File: 1kbDbBx4t6WH7_l_jdb8WJhXMaE.roa (raw, json)
Hash identifier: haLJQ9F2k+hlIzWYlOib2DVY7XzsGBOR9XAo/OXvLIY=
Subject key identifier: D6:46:C3:6C:1C:78:B7:A5:87:EF:F9:7F:8D:D6:FC:58:98:57:31:A1
Certificate issuer: /CN=4a9db00cb14a34a193f84aca144b2aeb1f3c02c8
Certificate serial: 0185706715696FEC83881D461360736008B1
Authority key identifier: 4A:9D:B0:0C:B1:4A:34:A1:93:F8:4A:CA:14:4B:2A:EB:1F:3C:02:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sp2wDLFKNKGT-ErKFEsq6x88Asg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/7612b0-3e24-4ce7-a1ca-c1c66078e5ba/1/1kbDbBx4t6WH7_l_jdb8WJhXMaE.roa
Signing time: Mon 02 Jan 2023 02:54:41 +0000
ROA not before: Mon 02 Jan 2023 02:54:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35625
IP address blocks: 195.95.168.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:15:69:6f:ec:83:88:1d:46:13:60:73:60:08:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a9db00cb14a34a193f84aca144b2aeb1f3c02c8
Validity
Not Before: Jan 2 02:54:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d646c36c1c78b7a587eff97f8dd6fc58985731a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:fb:42:8c:08:d6:c5:dc:5e:69:c1:b7:08:0e:
56:07:cf:5c:63:77:d9:6d:64:3f:95:7f:56:cf:cc:
3a:f7:f3:0a:e8:0a:69:42:3f:fa:87:d3:94:19:51:
e0:8e:7d:c2:1a:f4:38:a8:bc:ec:4e:72:50:68:88:
1a:b3:2c:92:d7:27:b3:67:28:0e:c0:3e:13:3c:2b:
d1:99:48:f6:e6:32:c0:cb:58:80:a9:7f:b6:61:6c:
73:92:1a:5a:07:1a:1c:fd:c0:f5:29:1e:7e:71:92:
67:15:d1:81:f0:d9:36:87:5f:e4:08:8a:03:82:09:
8a:18:d2:ad:9f:5f:6c:36:0e:dc:00:fa:90:96:5f:
41:90:56:75:76:28:2e:75:8d:c1:48:6e:92:40:f5:
9c:9a:df:e3:fd:30:6e:d0:8c:bb:73:86:89:ed:c4:
96:0e:54:32:03:0a:d0:cb:6a:71:2e:a1:a0:c8:1e:
04:03:05:62:00:68:76:d6:99:a1:98:bd:1c:59:2e:
87:59:6e:90:54:97:38:83:5a:4d:87:96:b5:51:1e:
ca:ce:0a:89:dd:77:27:67:6e:e5:09:98:58:26:87:
fc:53:c5:ea:d2:5b:4e:3f:3d:c7:a2:18:cd:0c:52:
96:e2:2a:35:d1:2d:36:1d:95:0b:02:15:75:50:9f:
f2:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:46:C3:6C:1C:78:B7:A5:87:EF:F9:7F:8D:D6:FC:58:98:57:31:A1
X509v3 Authority Key Identifier:
keyid:4A:9D:B0:0C:B1:4A:34:A1:93:F8:4A:CA:14:4B:2A:EB:1F:3C:02:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sp2wDLFKNKGT-ErKFEsq6x88Asg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/7612b0-3e24-4ce7-a1ca-c1c66078e5ba/1/1kbDbBx4t6WH7_l_jdb8WJhXMaE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/7612b0-3e24-4ce7-a1ca-c1c66078e5ba/1/Sp2wDLFKNKGT-ErKFEsq6x88Asg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.168.0/24
Signature Algorithm: sha256WithRSAEncryption
88:5c:58:f0:0c:4b:44:07:4f:eb:16:54:85:66:6d:ee:4a:78:
17:59:08:6d:80:9c:5e:35:bb:f4:ff:63:fa:1c:ff:a2:7e:d3:
25:fa:22:bd:d9:44:31:26:ac:f3:10:57:92:21:34:df:25:43:
62:4b:01:02:d7:66:15:42:5a:30:b9:48:db:7a:7b:16:b9:b7:
58:07:7f:b9:38:87:23:0d:50:cc:e3:3c:fc:ef:c5:94:d8:1e:
bf:d0:84:78:4c:94:6d:af:fe:53:0b:69:e3:5e:70:f4:ce:91:
81:48:9b:1d:6a:03:f5:9d:63:07:4d:4f:b3:41:85:1e:df:d3:
a9:53:f3:73:d0:a1:17:e5:e0:c7:ae:8a:db:e5:cd:61:3d:93:
42:90:65:0e:54:90:47:e6:d1:a6:6f:de:ba:5a:7d:6a:b2:b9:
58:ea:37:dd:2c:17:60:5e:59:0f:97:45:4b:06:6a:09:5a:d9:
97:e8:d9:a8:47:f3:80:4e:75:a6:d0:7b:18:09:f9:ae:39:1c:
77:43:80:51:9f:a6:e2:0a:4f:51:a7:e9:c4:ba:e8:f4:7f:e1:
98:81:00:dd:96:71:39:61:a2:04:3a:66:4a:d0:8f:82:a7:a7:
f2:d7:58:29:59:2a:d7:0c:4a:fc:00:86:2e:a8:80:b8:cd:41:
ed:aa:89:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:58 2024 by rpki-client on console-fra.rpki-client.org