Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/d56693-2254-4a3b-acbb-efaaff0a982f/1/1-ys12nIEqFs-qx5utsBoSRUGSNA.roa
File: 1-ys12nIEqFs-qx5utsBoSRUGSNA.roa (raw, json)
Hash identifier: apnVYskNhomJK+wUNJ/m6HPBvbpg3F6Yvy2JnF7K50U=
Subject key identifier: FB:2B:35:DA:72:04:A8:5B:3E:AB:1E:6E:B6:C0:68:49:15:06:48:D0
Certificate issuer: /CN=47d064fb3e541f23563065e48f300f2cfdfe009a
Certificate serial: 01856B40D70015D1CB30F9B66C5C75ACD60F
Authority key identifier: 47:D0:64:FB:3E:54:1F:23:56:30:65:E4:8F:30:0F:2C:FD:FE:00:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R9Bk-z5UHyNWMGXkjzAPLP3-AJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/d56693-2254-4a3b-acbb-efaaff0a982f/1/1-ys12nIEqFs-qx5utsBoSRUGSNA.roa
Signing time: Sun 01 Jan 2023 02:54:49 +0000
ROA not before: Sun 01 Jan 2023 02:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 195.244.28.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:40:d7:00:15:d1:cb:30:f9:b6:6c:5c:75:ac:d6:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47d064fb3e541f23563065e48f300f2cfdfe009a
Validity
Not Before: Jan 1 02:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fb2b35da7204a85b3eab1e6eb6c06849150648d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:04:1a:22:91:9a:a1:2d:05:3d:fd:02:2c:f5:
7b:9a:81:69:3c:9e:dd:27:b4:dc:80:80:28:23:69:
ad:14:68:90:19:ec:9a:db:2a:19:87:51:30:8c:bf:
44:8f:42:54:d4:90:de:2c:10:2a:70:9b:ed:ad:9f:
29:aa:88:07:68:f8:04:30:e2:21:23:65:88:41:7d:
af:07:80:7f:15:08:23:57:5b:54:4c:1a:bf:bd:86:
62:63:01:ef:85:0a:58:66:71:78:a2:d3:2e:74:a0:
af:db:b4:83:9b:7e:e4:55:d0:a8:ac:ed:08:90:10:
94:71:a8:91:5b:3a:d1:59:ef:a4:ef:7c:b4:c1:3b:
cb:21:fc:fc:e4:0e:ba:23:3d:e2:e2:93:68:6e:ff:
5d:68:41:91:02:21:7c:62:53:8f:73:98:38:45:f4:
df:a4:73:e9:ed:15:b5:9c:30:30:ec:05:e3:75:91:
5a:b6:22:6a:8b:4d:fe:86:a7:4f:33:99:2a:c8:fd:
1d:f6:22:32:58:a7:55:21:8d:3c:0a:e0:cb:67:57:
e1:26:1c:d6:98:c6:eb:4a:03:b6:1b:2b:41:8b:77:
77:14:fb:df:f9:b9:2b:09:44:3e:e6:f1:3f:43:27:
b3:fd:a5:00:b8:f0:be:56:79:db:11:1c:60:a8:fd:
4d:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:2B:35:DA:72:04:A8:5B:3E:AB:1E:6E:B6:C0:68:49:15:06:48:D0
X509v3 Authority Key Identifier:
keyid:47:D0:64:FB:3E:54:1F:23:56:30:65:E4:8F:30:0F:2C:FD:FE:00:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R9Bk-z5UHyNWMGXkjzAPLP3-AJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d56693-2254-4a3b-acbb-efaaff0a982f/1/1-ys12nIEqFs-qx5utsBoSRUGSNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d56693-2254-4a3b-acbb-efaaff0a982f/1/R9Bk-z5UHyNWMGXkjzAPLP3-AJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.244.28.0/23
Signature Algorithm: sha256WithRSAEncryption
59:b9:73:25:17:45:8c:4d:29:f5:b3:b4:b8:ab:40:2c:a6:99:
e3:87:89:ed:a8:4d:a6:cb:77:59:37:fc:ef:8c:73:fc:f3:01:
fb:56:8f:ae:54:64:11:b4:cc:80:f7:d9:73:95:d8:3a:d3:7e:
84:df:35:b2:7a:67:a6:18:39:5a:fe:e6:a8:79:4e:6f:9f:45:
79:ba:86:71:0a:fe:50:91:12:6a:7c:1b:a7:6a:4e:47:a1:8e:
3d:17:36:aa:25:50:18:7c:06:d8:32:ae:8d:02:92:67:4f:7c:
be:1a:01:0f:11:ff:e2:56:4b:e0:86:4d:c1:b3:ab:87:66:b8:
92:5a:e3:c8:ac:dd:f6:72:d9:aa:0e:de:f9:b8:b1:8a:2c:83:
f8:ef:61:72:ca:15:71:d8:e5:29:66:99:b8:ab:c0:e1:6d:46:
5a:69:f6:ab:7b:51:0d:99:27:bd:3d:8a:2f:e5:b9:4d:1e:36:
85:42:97:52:83:fd:0e:5a:35:c5:66:07:af:00:dc:5c:f5:b0:
3f:af:f5:01:7d:f8:bb:d9:6b:0c:f8:c0:87:9e:28:ff:17:26:
14:d5:ad:ba:12:de:8a:49:22:14:c2:4b:e2:fe:b4:99:58:51:
0d:15:64:bb:96:fb:b3:41:18:d5:ea:6e:b8:a1:55:17:0a:7d:
03:1d:0b:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:55 2024 by rpki-client on console-fra.rpki-client.org