Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/oz8pDoZ_bXUM5FTjhTM7uwaFDyA.roa
File: oz8pDoZ_bXUM5FTjhTM7uwaFDyA.roa (raw, json)
Hash identifier: m4Hv3s/qLQlACQMroVnCfzpWCHTH6992/rR+JNnPDws=
Subject key identifier: A3:3F:29:0E:86:7F:6D:75:0C:E4:54:E3:85:33:3B:BB:06:85:0F:20
Certificate issuer: /CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Certificate serial: 018CABCD1415D2847D2B0283D341ECB6A6B3
Authority key identifier: AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/oz8pDoZ_bXUM5FTjhTM7uwaFDyA.roa
Signing time: Wed 27 Dec 2023 15:03:13 +0000
ROA not before: Wed 27 Dec 2023 15:03:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205097
IP address blocks: 195.114.130.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ab:cd:14:15:d2:84:7d:2b:02:83:d3:41:ec:b6:a6:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Validity
Not Before: Dec 27 15:03:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a33f290e867f6d750ce454e385333bbb06850f20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:03:6f:b1:54:52:2d:2c:4e:63:7d:e1:d6:9a:
06:90:0b:21:e9:6a:ec:9f:00:41:e8:42:20:98:7a:
a1:48:86:dc:8a:6f:a6:f2:f4:a5:4e:2a:50:2e:b0:
f3:b1:43:ca:14:1d:e6:de:c7:40:2b:8d:d2:81:33:
1d:32:47:81:65:d5:d4:f5:59:ec:a8:33:9f:ca:bd:
be:5a:b8:10:c1:88:a8:46:8c:28:88:de:3f:f7:f2:
35:3b:d4:b8:13:12:0f:73:a6:ab:82:a8:31:80:40:
15:04:af:d3:3e:2e:e6:4a:a5:ba:90:59:5b:36:e9:
2c:b1:3d:95:0b:a4:f7:73:04:c8:2a:42:84:8b:36:
fb:00:a1:54:17:a0:09:9d:7f:16:3a:9b:4c:9c:5f:
d7:c5:0d:16:13:6f:89:a3:34:27:bb:39:8e:ff:31:
75:2a:fb:b6:2b:11:99:23:d6:09:cd:c7:a8:1c:30:
77:6f:33:c7:22:31:76:cc:11:74:77:a6:ee:66:95:
6b:3b:0a:17:72:1e:ba:29:53:8a:aa:a5:1b:41:61:
92:71:a4:02:40:1e:59:34:e9:04:7c:47:6e:c9:1a:
5c:79:35:14:f0:cf:d6:fd:bb:1b:ae:a5:38:51:4c:
a9:50:30:ff:8e:ea:de:9e:9d:11:90:ad:1f:6a:ca:
00:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:3F:29:0E:86:7F:6D:75:0C:E4:54:E3:85:33:3B:BB:06:85:0F:20
X509v3 Authority Key Identifier:
keyid:AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/oz8pDoZ_bXUM5FTjhTM7uwaFDyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/q8jb5SCDrTNcnx_eYBbsi0kpMUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.114.130.0/24
Signature Algorithm: sha256WithRSAEncryption
31:d2:89:92:6b:bf:69:ab:1c:c1:ef:f9:9d:a2:39:06:a2:c7:
f5:67:db:83:4d:6c:11:cc:d5:af:b7:0e:dc:d6:42:ed:4d:bd:
6f:61:c9:e7:9a:f0:44:7a:c8:ca:77:8e:07:e6:ba:73:fd:46:
01:e3:f4:a8:d8:69:45:5a:94:cf:5b:c3:1f:6c:5f:bb:07:28:
cb:47:47:44:dd:56:1a:ae:ed:e9:c3:60:50:0b:6f:0e:e5:a8:
4d:f1:e4:4a:75:ac:90:60:66:3f:3a:52:ef:04:25:24:fb:d7:
7a:e0:51:5c:4d:13:73:96:88:88:a0:0f:1b:27:ab:82:53:bf:
df:97:94:ed:ee:d5:96:53:55:3b:73:5d:b0:7f:5f:0d:e6:b1:
0c:88:49:22:ea:80:cf:12:e1:2e:01:b2:13:8e:99:84:b1:d6:
f3:5f:3a:8a:48:1d:a8:81:d9:c1:89:67:ee:14:d4:28:99:32:
d7:ac:9a:c5:36:4e:bf:79:9b:b2:e4:64:fc:9e:2b:da:63:42:
75:68:48:9d:48:88:a0:d5:ec:85:79:35:84:7f:34:c0:eb:df:
68:70:87:1a:1a:d0:78:b0:54:11:34:9e:1a:ff:f5:7a:33:ef:
1e:a6:47:bb:3a:52:f9:00:f1:cf:0d:ba:a6:c7:5a:fe:82:65:
2e:79:f9:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:04 2024 by rpki-client on console-ams.rpki-client.org