Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/0d1172-4bb2-492c-b511-78dc7b2c3e88/1/_dccEPZlToV5uAbFtylV0QhNMjU.roa
File: _dccEPZlToV5uAbFtylV0QhNMjU.roa (raw, json)
Hash identifier: rm8V9UmOo3DreoJL2V8AM3O0+xM/asJ2EVbR72RSKgc=
Subject key identifier: FD:D7:1C:10:F6:65:4E:85:79:B8:06:C5:B7:29:55:D1:08:4D:32:35
Certificate issuer: /CN=46153e8ac46db5ce574ba7e39e87e8af096c1a89
Certificate serial: 018EF26457EBCB290F447D0023715EB1DBE3
Authority key identifier: 46:15:3E:8A:C4:6D:B5:CE:57:4B:A7:E3:9E:87:E8:AF:09:6C:1A:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RhU-isRttc5XS6fjnoforwlsGok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/0d1172-4bb2-492c-b511-78dc7b2c3e88/1/_dccEPZlToV5uAbFtylV0QhNMjU.roa
Signing time: Thu 18 Apr 2024 18:07:26 +0000
ROA not before: Thu 18 Apr 2024 18:07:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48257
IP address blocks: 195.8.36.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 10 Jun 2024 14:14:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:f2:64:57:eb:cb:29:0f:44:7d:00:23:71:5e:b1:db:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46153e8ac46db5ce574ba7e39e87e8af096c1a89
Validity
Not Before: Apr 18 18:07:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fdd71c10f6654e8579b806c5b72955d1084d3235
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5b:d0:d6:41:9b:b2:6a:99:2f:5e:37:00:01:
88:d1:d3:1a:42:3c:dd:a9:7c:99:37:b1:cd:07:ee:
2d:2c:59:05:88:89:ab:46:a1:a2:69:7f:87:ba:f3:
c4:4a:1a:da:b2:ad:91:2c:85:51:dc:7a:59:e4:79:
99:a3:cf:2e:9b:72:99:64:52:4d:3b:23:de:69:d3:
b1:33:ac:fe:40:79:6e:1b:40:22:26:ae:b7:18:75:
dd:30:3b:a8:dd:09:70:4e:70:4f:56:46:cb:c3:a6:
80:64:33:88:1a:bc:83:e0:51:e3:6d:18:a2:ee:f8:
5b:bc:07:4d:b9:c8:aa:b9:12:6f:49:b1:f7:b1:95:
50:ec:23:4c:67:ca:bf:dd:bc:cd:5d:5e:6b:69:58:
7f:97:8b:29:7d:bd:ea:9b:6e:fa:e9:5c:06:a4:5c:
1a:94:ac:e7:c9:73:db:da:71:cb:0a:88:07:c7:f1:
0e:1f:31:f3:a7:33:e2:bc:3b:7e:bd:a3:54:0a:fb:
0d:dd:be:dd:61:a0:25:22:1b:94:49:69:c4:57:93:
db:e8:8a:85:aa:7c:88:4d:4c:62:01:41:23:7d:00:
f5:dd:2f:6e:2c:09:97:fb:c5:fe:0c:55:c5:20:1a:
1e:f9:59:de:2b:58:2d:c7:49:1a:2d:f9:90:97:80:
34:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:D7:1C:10:F6:65:4E:85:79:B8:06:C5:B7:29:55:D1:08:4D:32:35
X509v3 Authority Key Identifier:
keyid:46:15:3E:8A:C4:6D:B5:CE:57:4B:A7:E3:9E:87:E8:AF:09:6C:1A:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RhU-isRttc5XS6fjnoforwlsGok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/0d1172-4bb2-492c-b511-78dc7b2c3e88/1/_dccEPZlToV5uAbFtylV0QhNMjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/0d1172-4bb2-492c-b511-78dc7b2c3e88/1/RhU-isRttc5XS6fjnoforwlsGok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.8.36.0/23
Signature Algorithm: sha256WithRSAEncryption
8a:89:76:b1:29:89:8e:b8:93:4b:cb:f6:2f:f2:83:1a:5e:59:
8d:46:8d:45:ba:93:d8:0b:a7:9c:6e:f4:13:43:d8:06:71:ed:
a7:13:e9:08:05:13:25:56:b3:33:67:0b:98:06:53:68:dd:13:
1f:af:b8:63:56:bd:48:de:1c:6c:a4:7d:62:4f:87:aa:4a:ae:
b5:b5:23:03:37:85:02:e9:fb:dd:c9:76:b7:a6:6f:9f:cd:d1:
70:9b:0e:29:11:d2:11:bd:7f:33:d0:0e:0a:36:01:df:83:30:
a3:c0:2b:04:63:4e:b9:89:28:e2:a0:48:24:ed:cc:b3:20:0c:
68:00:83:43:a6:96:d1:49:5f:d3:8d:0a:2d:45:82:e5:75:d3:
aa:0b:45:5c:8a:65:f1:14:84:0e:3e:20:2a:32:07:06:c1:c6:
e2:a0:7b:98:d6:50:e6:79:79:33:a9:79:e8:84:35:90:8b:29:
78:06:97:eb:d0:7b:53:f7:33:df:23:69:9a:10:f6:24:79:1b:
dc:74:40:e7:9a:bc:af:a8:9c:cf:2d:c5:3e:7d:3c:35:ee:c5:
00:4c:57:8f:4f:5c:10:bf:a8:82:16:c7:3f:e1:bb:ab:db:41:
0c:93:f9:90:9a:1a:d9:06:ed:d2:23:39:45:26:cb:81:c3:b6:
a7:31:df:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 10 18:28:28 2024 by rpki-client on console-ams.rpki-client.org