Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/LlYBOmS9AbIK1qny1fDcRXyZwGQ.roa
File: LlYBOmS9AbIK1qny1fDcRXyZwGQ.roa (raw, json)
Hash identifier: gUet7pWa3G70p1dB0Z437rXQ3J8qBkWtPulHPT5/GVo=
Subject key identifier: 2E:56:01:3A:64:BD:01:B2:0A:D6:A9:F2:D5:F0:DC:45:7C:99:C0:64
Certificate issuer: /CN=2378a4a9c52325a85920809ba1a4d89e21c02f17
Certificate serial: 01856F9DCD9FA6F83A1BF3A8453663D5AF93
Authority key identifier: 23:78:A4:A9:C5:23:25:A8:59:20:80:9B:A1:A4:D8:9E:21:C0:2F:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/LlYBOmS9AbIK1qny1fDcRXyZwGQ.roa
Signing time: Sun 01 Jan 2023 23:14:50 +0000
ROA not before: Sun 01 Jan 2023 23:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212071
IP address blocks: 195.230.143.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 26 Apr 2023 09:37:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:cd:9f:a6:f8:3a:1b:f3:a8:45:36:63:d5:af:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2378a4a9c52325a85920809ba1a4d89e21c02f17
Validity
Not Before: Jan 1 23:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2e56013a64bd01b20ad6a9f2d5f0dc457c99c064
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:eb:64:a1:21:35:49:02:67:b6:18:40:2a:38:
38:c5:0e:94:41:2c:fc:7f:2e:a1:e8:2c:24:6d:ef:
84:d8:c8:15:35:0b:65:1b:7c:d9:88:9c:f9:8e:a9:
d5:1c:eb:d6:fa:de:c2:0f:96:8d:26:f0:d7:d9:3e:
45:d1:82:30:15:16:4e:11:bf:f3:a3:7d:35:bd:cb:
58:6e:f9:04:49:bf:63:90:7e:b7:99:3c:67:6e:8f:
00:4c:45:cb:72:4d:e8:88:b9:d7:91:1f:7d:41:47:
04:a9:d0:0f:3f:dd:04:63:bc:3d:ce:a6:04:c6:06:
53:6b:97:d4:59:06:aa:a1:26:85:30:e3:b0:a7:a8:
b1:c5:27:d9:cf:c7:35:fc:a7:c6:f5:0f:dd:a6:42:
a0:3b:c1:d2:31:32:af:b9:e4:79:dc:54:2f:92:37:
48:05:0d:db:47:f4:5f:43:27:f7:71:ee:81:45:ef:
2a:2b:7c:f9:8c:a1:12:3e:2d:a0:d7:b0:bc:99:ea:
ae:bb:81:50:81:56:dc:2d:97:18:6c:1f:51:8c:c3:
8c:cd:a1:78:3d:1e:d1:e8:58:09:54:24:9a:63:76:
1e:08:9c:0a:c9:5e:67:67:13:2b:97:36:ae:b5:79:
4f:f1:a4:80:30:9b:ac:0b:c3:f5:34:48:3b:14:ec:
3a:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:56:01:3A:64:BD:01:B2:0A:D6:A9:F2:D5:F0:DC:45:7C:99:C0:64
X509v3 Authority Key Identifier:
keyid:23:78:A4:A9:C5:23:25:A8:59:20:80:9B:A1:A4:D8:9E:21:C0:2F:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/LlYBOmS9AbIK1qny1fDcRXyZwGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.230.143.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:4a:dc:61:5d:6b:6c:b2:27:77:f4:81:b7:0e:d3:b7:e2:11:
bc:e1:fe:68:a4:06:e7:cd:f8:a4:07:27:ec:ba:64:78:d7:81:
7c:b8:93:02:3f:08:64:21:10:b6:c3:9b:ec:4d:65:5a:d2:10:
1e:b6:3b:bf:ab:f2:ea:2a:82:7d:06:0c:91:07:1d:19:d3:8b:
9f:66:b8:73:98:62:9c:0e:1a:cc:ef:07:82:b2:7a:41:16:6e:
73:50:a5:d4:5b:30:85:ce:2b:37:f7:15:30:43:a8:43:13:31:
8c:e4:68:27:b5:6d:de:97:3c:5f:c4:0a:37:29:82:06:71:cf:
58:15:b5:ef:5f:ac:66:04:f6:78:35:b4:b1:17:db:d3:e9:bc:
c8:e6:c8:3a:64:7f:fd:77:60:28:ea:8e:70:97:58:60:25:46:
0d:ba:48:0d:9a:c5:71:a5:fd:41:9a:68:4e:53:c1:26:f2:91:
34:c6:e6:58:fb:bc:bb:57:f0:52:62:73:30:ca:13:8f:47:df:
39:5a:9c:f0:6d:e7:dc:58:77:11:97:d2:ed:3c:c6:06:75:f6:
72:6f:03:22:8c:59:18:b7:c9:60:5f:e2:14:fb:06:df:d7:03:
91:6f:96:1d:53:dc:d8:c6:92:9f:6b:02:41:7b:f3:77:1b:8e:
fe:d0:cd:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:47 2024 by rpki-client on console-fra.rpki-client.org