Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/ce113d-c923-43f4-9708-bb417ec649ab/1/sfdARhq-y-ya70W0jZ0KZihDcQk.roa
File: sfdARhq-y-ya70W0jZ0KZihDcQk.roa (raw, json)
Hash identifier: /wy/jrezBOPGNbvaLrq+3bslW58Q2zIOO/Aj0VAmghE=
Subject key identifier: B1:F7:40:46:1A:BE:CB:EC:9A:EF:45:B4:8D:9D:0A:66:28:43:71:09
Certificate issuer: /CN=711280b1338f12fc6f621c4c90560c7bc5908961
Certificate serial: 0185CFFC9198EC8F0EE09BD34C23CD35BFB7
Authority key identifier: 71:12:80:B1:33:8F:12:FC:6F:62:1C:4C:90:56:0C:7B:C5:90:89:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cRKAsTOPEvxvYhxMkFYMe8WQiWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/ce113d-c923-43f4-9708-bb417ec649ab/1/sfdARhq-y-ya70W0jZ0KZihDcQk.roa
Signing time: Fri 20 Jan 2023 16:21:54 +0000
ROA not before: Fri 20 Jan 2023 16:21:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56911
IP address blocks: 195.234.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:30:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:cf:fc:91:98:ec:8f:0e:e0:9b:d3:4c:23:cd:35:bf:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=711280b1338f12fc6f621c4c90560c7bc5908961
Validity
Not Before: Jan 20 16:21:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1f740461abecbec9aef45b48d9d0a6628437109
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:6c:6b:bc:5d:fd:7d:43:04:8d:78:e2:4f:28:
e8:ac:24:08:f8:c4:b0:1d:76:df:06:1b:67:db:a6:
83:0a:f2:d8:7e:b3:04:15:cc:69:b3:c8:b2:77:65:
6d:5a:e1:12:96:d2:24:a8:a6:fb:c7:37:19:78:b4:
0f:70:56:e0:d1:05:8d:fc:36:51:41:ac:1f:ce:4c:
dc:d8:3c:c9:f9:dd:ef:b1:65:a0:f6:3a:3d:bc:68:
9f:77:8b:53:cc:29:ab:7e:4b:28:28:15:8e:05:1c:
0e:09:9d:b6:e6:aa:fd:ee:e8:9a:b7:77:7e:40:0b:
1e:49:fe:ec:3e:7a:08:0d:6b:1c:48:3d:be:4d:26:
08:7e:da:8b:30:b3:46:89:38:1c:cc:42:43:27:53:
f6:a6:b7:22:26:6b:02:a3:ab:d4:45:10:4b:ad:9f:
88:17:b0:e6:c5:56:cd:d0:39:f1:14:8e:06:7e:eb:
20:3f:c3:61:7c:68:ab:18:17:3a:e1:fa:8e:fd:eb:
c3:45:ff:5f:d3:60:8c:aa:ac:12:28:76:b3:e2:c0:
fb:06:ed:cc:ba:70:7c:8e:ec:d3:d1:12:1c:08:61:
f3:d7:e6:94:37:94:da:00:1c:91:16:be:21:09:9d:
1a:bd:f2:04:68:b4:b0:e0:56:d2:df:4c:0e:fd:fa:
2b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:F7:40:46:1A:BE:CB:EC:9A:EF:45:B4:8D:9D:0A:66:28:43:71:09
X509v3 Authority Key Identifier:
keyid:71:12:80:B1:33:8F:12:FC:6F:62:1C:4C:90:56:0C:7B:C5:90:89:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cRKAsTOPEvxvYhxMkFYMe8WQiWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/ce113d-c923-43f4-9708-bb417ec649ab/1/sfdARhq-y-ya70W0jZ0KZihDcQk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/ce113d-c923-43f4-9708-bb417ec649ab/1/cRKAsTOPEvxvYhxMkFYMe8WQiWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.234.94.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:7b:e2:ef:29:1a:5c:6b:07:00:bf:80:f2:b2:e7:b7:d6:66:
67:13:e2:22:9d:eb:f8:a9:25:8f:91:c7:a2:41:bd:b0:57:fa:
29:a9:25:ef:58:32:4e:17:d7:05:e6:88:9e:f3:d6:27:43:1c:
c6:ac:83:51:b3:59:bf:59:40:d4:c3:2e:f6:35:2d:2d:ba:ee:
ea:f6:d3:dd:c9:9d:df:3e:d1:0c:d3:b3:e3:ac:13:e1:37:a3:
e9:ec:d8:2e:4e:f7:cb:0b:68:81:d7:27:cc:f8:7a:24:d8:e2:
f5:b9:8b:b1:69:4f:7c:42:de:b3:60:56:61:23:a5:0f:db:df:
91:57:b1:38:4f:36:56:3c:bf:2a:05:5b:b8:be:e6:e6:04:65:
96:57:fa:fb:2a:cd:2a:fd:04:df:61:c7:b8:41:11:9d:16:a5:
94:c2:c3:d2:2f:fa:c6:59:5b:fb:75:84:6f:52:5d:c4:c6:7b:
37:c4:ef:fe:03:67:bb:14:cf:1d:e9:e7:65:8b:4f:59:c5:1c:
8f:d4:5a:65:50:2b:3e:49:61:ee:d8:51:1e:2e:6e:03:cf:7e:
47:a5:ab:47:e7:64:fb:75:65:d3:67:61:e5:9e:69:17:dc:fe:
c9:4a:37:a4:df:25:80:90:30:e1:d5:ff:2d:6d:bd:3c:f7:95:
67:e1:4e:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:25 2024 by rpki-client on console-ams.rpki-client.org