Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/8efa86-c35f-41b6-ad01-4906103dbd16/1/f73SZIpE4UQdnXwGqGbAQu0i5qg.roa
File: f73SZIpE4UQdnXwGqGbAQu0i5qg.roa (raw, json)
Hash identifier: KXVghC8fMO5FGjgNAFRwgTPxOKIWeG7MI5r23GfzBYM=
Subject key identifier: 7F:BD:D2:64:8A:44:E1:44:1D:9D:7C:06:A8:66:C0:42:ED:22:E6:A8
Certificate issuer: /CN=34531c54b1e7956c2cc371b23e0a75567aa27518
Certificate serial: 0188F2A592802E102D2FB8747544C6922F3C
Authority key identifier: 34:53:1C:54:B1:E7:95:6C:2C:C3:71:B2:3E:0A:75:56:7A:A2:75:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NFMcVLHnlWwsw3GyPgp1VnqidRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/8efa86-c35f-41b6-ad01-4906103dbd16/1/f73SZIpE4UQdnXwGqGbAQu0i5qg.roa
Signing time: Sun 25 Jun 2023 13:01:57 +0000
ROA not before: Sun 25 Jun 2023 13:01:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42337
IP address blocks: 195.2.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 05 Nov 2023 13:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:f2:a5:92:80:2e:10:2d:2f:b8:74:75:44:c6:92:2f:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34531c54b1e7956c2cc371b23e0a75567aa27518
Validity
Not Before: Jun 25 13:01:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7fbdd2648a44e1441d9d7c06a866c042ed22e6a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:29:ee:63:05:44:d1:ea:82:74:0e:2a:50:da:
66:91:b7:02:58:16:a1:fe:db:64:c6:76:20:7a:c7:
ff:09:ab:a8:fd:3d:e8:51:4b:2e:8a:8a:bb:98:47:
8b:03:bd:5e:4d:bd:75:dc:50:99:01:9c:b4:58:4f:
cb:a9:25:1f:41:17:c6:9b:64:98:31:bb:b7:80:dd:
15:52:21:bc:99:6c:9e:60:82:d4:37:3f:32:b7:fb:
9a:56:ca:c4:91:1d:04:85:c6:77:62:cd:8a:e6:56:
fc:2d:d3:54:f9:8b:ce:69:0e:eb:f0:8e:4e:49:1b:
ab:86:7b:07:b7:27:eb:b7:34:4c:34:67:69:2c:8b:
35:17:2c:22:c3:9f:d6:19:7d:2b:37:57:53:3c:d1:
76:b0:26:12:3c:50:d0:ee:cf:0f:0b:0f:21:66:8b:
e4:4f:9c:aa:74:d0:23:e9:b3:9c:d4:7a:50:07:62:
97:59:16:92:fe:9f:88:f0:fd:d5:eb:91:98:6c:50:
f0:28:67:e5:9c:72:52:21:fa:18:c0:23:6b:42:2b:
28:72:3b:72:92:0a:44:be:91:fc:6d:0e:a9:ae:6e:
43:76:f1:dc:2b:84:5e:63:3b:ff:f5:ab:44:f9:c4:
c3:9d:81:46:f5:c1:26:c4:94:1d:95:d3:df:e8:c1:
fd:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:BD:D2:64:8A:44:E1:44:1D:9D:7C:06:A8:66:C0:42:ED:22:E6:A8
X509v3 Authority Key Identifier:
keyid:34:53:1C:54:B1:E7:95:6C:2C:C3:71:B2:3E:0A:75:56:7A:A2:75:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NFMcVLHnlWwsw3GyPgp1VnqidRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/8efa86-c35f-41b6-ad01-4906103dbd16/1/f73SZIpE4UQdnXwGqGbAQu0i5qg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/8efa86-c35f-41b6-ad01-4906103dbd16/1/NFMcVLHnlWwsw3GyPgp1VnqidRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.2.234.0/24
Signature Algorithm: sha256WithRSAEncryption
70:a9:93:46:99:63:d9:f8:1b:a5:ee:63:ea:2a:87:f2:53:6d:
e0:68:e6:bf:0a:36:c0:46:4e:e8:b3:56:8b:52:b9:d3:99:51:
80:c8:0d:83:d0:97:fb:ff:a3:00:de:31:b5:b9:9e:37:12:9a:
93:e7:13:01:e2:7e:39:d7:27:cb:17:1a:65:66:bd:7f:6a:40:
ae:bb:7c:89:74:19:10:5b:45:22:18:52:1f:a5:0f:e1:b2:88:
ce:37:1e:c9:83:e0:18:26:eb:84:af:35:db:27:dc:81:2b:dc:
de:7f:f6:5a:11:26:e3:ba:10:ba:6f:ca:f1:f3:08:86:fc:f2:
c5:69:25:2f:da:ae:bb:00:f2:98:97:3b:35:a9:39:e4:51:ca:
5c:f4:e5:b0:a9:90:19:17:e4:96:7c:b2:25:9c:cf:91:c7:76:
12:72:63:90:ae:38:06:de:b7:44:d0:8f:c3:da:01:3a:c6:96:
f3:a7:63:1d:a4:d4:04:7d:b5:67:18:93:bb:ea:4a:df:55:15:
f8:80:00:16:9a:01:93:9e:19:f8:24:8e:ae:2f:0f:c9:c9:c7:
16:81:50:76:12:b5:0e:1a:25:ab:58:49:6b:fd:c9:77:fe:27:
67:9a:dc:76:41:43:37:ed:6c:75:1e:b7:95:d3:fe:38:c3:ad:
3a:9f:f6:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:37 2024 by rpki-client on console-ams.rpki-client.org