Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2d620e-5aa4-4759-b088-bac2002932d9/1/p04pQi0HUGr3Lj6lQkGEydR4IjM.roa
File: p04pQi0HUGr3Lj6lQkGEydR4IjM.roa (raw, json)
Hash identifier: L2u01IW+fQ+EmF9Z+cV9bChV+I0WwHCv9UlY7TY+nHM=
Subject key identifier: A7:4E:29:42:2D:07:50:6A:F7:2E:3E:A5:42:41:84:C9:D4:78:22:33
Certificate issuer: /CN=4bf6ac0fb0392673454c3947f4357e4594ed266d
Certificate serial: 018572B4145886067E4A5077B3B7EB529F64
Authority key identifier: 4B:F6:AC:0F:B0:39:26:73:45:4C:39:47:F4:35:7E:45:94:ED:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S_asD7A5JnNFTDlH9DV-RZTtJm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2d620e-5aa4-4759-b088-bac2002932d9/1/p04pQi0HUGr3Lj6lQkGEydR4IjM.roa
Signing time: Mon 02 Jan 2023 13:38:02 +0000
ROA not before: Mon 02 Jan 2023 13:38:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29221
IP address blocks: 195.85.242.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:14:58:86:06:7e:4a:50:77:b3:b7:eb:52:9f:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bf6ac0fb0392673454c3947f4357e4594ed266d
Validity
Not Before: Jan 2 13:38:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a74e29422d07506af72e3ea5424184c9d4782233
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:e6:bb:b1:db:41:ed:99:2a:89:b3:fb:c9:da:
e9:48:d7:dc:3d:cf:e7:5a:85:87:a7:c3:73:d3:b5:
2f:60:8d:0b:ea:58:8f:4d:e1:e6:0e:3c:9f:01:33:
d5:0b:ab:a5:19:ac:75:04:98:26:0f:f1:8c:40:eb:
42:5a:5c:3e:81:8d:01:48:37:c4:52:b1:1f:e5:b0:
94:38:fa:22:29:53:19:41:ae:07:d0:94:d6:9a:62:
89:06:27:1e:9d:05:67:df:be:f4:b1:e6:34:d3:23:
cc:1c:6d:37:7c:12:c5:bf:04:e4:01:56:b6:6f:46:
a6:be:4d:e0:e0:ea:c4:36:09:0d:0b:97:fa:58:46:
55:eb:32:1a:a5:c0:36:a5:a3:f2:8d:51:f1:2a:10:
a5:fa:f2:fa:b2:e1:e9:d4:de:5b:08:ab:5f:fb:92:
2c:1b:a3:9a:df:fc:29:39:91:a0:dd:62:56:0b:5e:
76:4e:45:92:aa:de:6d:06:f0:b7:ed:d9:f9:0a:72:
42:9a:e7:7a:35:80:21:b0:8c:ad:4a:58:4f:23:20:
99:e0:d4:3a:ae:94:fe:7b:87:6d:1c:47:d6:d2:bd:
db:df:f3:ca:54:a6:53:f3:f9:60:41:19:3a:d2:20:
8e:18:ab:ea:a4:cc:50:64:24:57:d0:20:bf:af:f6:
af:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:4E:29:42:2D:07:50:6A:F7:2E:3E:A5:42:41:84:C9:D4:78:22:33
X509v3 Authority Key Identifier:
keyid:4B:F6:AC:0F:B0:39:26:73:45:4C:39:47:F4:35:7E:45:94:ED:26:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S_asD7A5JnNFTDlH9DV-RZTtJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2d620e-5aa4-4759-b088-bac2002932d9/1/p04pQi0HUGr3Lj6lQkGEydR4IjM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2d620e-5aa4-4759-b088-bac2002932d9/1/S_asD7A5JnNFTDlH9DV-RZTtJm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.85.242.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:48:1c:1b:9a:6d:77:c7:6d:82:85:1f:ba:a4:e3:d9:34:76:
2a:5f:a2:32:b3:97:a2:44:79:f7:d4:ff:8a:38:7a:59:6b:c6:
36:7a:44:fb:0a:56:26:46:61:39:ad:2d:70:06:a2:e8:78:49:
91:08:ea:8d:81:3f:01:f0:03:6c:2b:03:2d:db:95:d8:1c:37:
0b:8f:b5:50:e3:5f:b9:17:6b:ee:69:5b:7c:ce:74:6f:83:ba:
0c:2e:f5:ab:03:db:d5:47:f4:bf:05:a7:68:0f:54:70:a2:a4:
f8:22:22:51:de:2e:b6:8d:62:9e:74:d6:7c:58:73:a2:8e:8e:
70:cc:cd:a8:6f:f9:bd:a7:94:29:a7:91:27:6d:4b:78:81:e0:
35:da:89:24:b4:ff:85:ee:4e:bb:fa:a9:39:9a:33:bd:77:af:
a2:01:36:3a:30:a3:16:0c:d3:4c:cd:3c:53:c7:4a:71:04:ca:
ca:29:f0:76:3f:5b:57:c2:b4:e9:c7:bf:15:16:be:7f:4d:64:
99:90:3a:2f:7d:e8:ba:f7:d8:06:6d:09:31:46:e6:51:ed:34:
e0:5c:6a:e5:af:c4:31:c1:9e:37:63:dc:44:35:41:3a:88:56:
ae:57:8c:06:af:ce:e6:23:7f:60:06:61:85:54:e1:1e:43:ee:
35:c0:38:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:56 2024 by rpki-client on console-ams.rpki-client.org