Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/8efa86-c35f-41b6-ad01-4906103dbd16/1/y1QbfKxDd5RiwuE2OKOImUMKReQ.roa
File: y1QbfKxDd5RiwuE2OKOImUMKReQ.roa (raw, json)
Hash identifier: qkOIU3VBHwByQS2biSO9NJ1qAC4VIQQ/KmaSwtbEuCw=
Subject key identifier: CB:54:1B:7C:AC:43:77:94:62:C2:E1:36:38:A3:88:99:43:0A:45:E4
Certificate issuer: /CN=34531c54b1e7956c2cc371b23e0a75567aa27518
Certificate serial: 0189154AD78BB63D636EA7203DC981A9C0DC
Authority key identifier: 34:53:1C:54:B1:E7:95:6C:2C:C3:71:B2:3E:0A:75:56:7A:A2:75:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NFMcVLHnlWwsw3GyPgp1VnqidRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/8efa86-c35f-41b6-ad01-4906103dbd16/1/y1QbfKxDd5RiwuE2OKOImUMKReQ.roa
Signing time: Sun 02 Jul 2023 06:29:33 +0000
ROA not before: Sun 02 Jul 2023 06:29:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202251
IP address blocks: 195.2.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 05 Nov 2023 13:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:15:4a:d7:8b:b6:3d:63:6e:a7:20:3d:c9:81:a9:c0:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34531c54b1e7956c2cc371b23e0a75567aa27518
Validity
Not Before: Jul 2 06:29:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb541b7cac43779462c2e13638a38899430a45e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:8f:de:d0:5e:3b:d6:56:41:69:42:9a:d4:73:
82:32:3f:dd:ed:d6:4b:82:31:1a:63:29:e9:81:21:
53:9b:e8:4f:4b:2e:bc:58:27:7a:ed:36:f8:71:c5:
19:d4:cf:d2:8e:1b:b4:29:85:d7:e6:b8:2b:4e:e7:
42:e0:95:7c:ec:a3:93:f9:66:ad:b1:76:e7:34:b6:
d2:7a:ee:dd:f7:60:05:43:1d:26:36:5b:3b:a8:72:
28:4c:62:57:92:ab:62:b9:af:07:5d:e3:cc:05:5a:
93:7e:13:98:65:a9:f1:22:87:8d:d7:e6:57:73:a9:
24:41:f2:22:9d:1d:b2:91:3b:31:2c:1b:12:5e:8c:
53:e8:a4:ca:bb:66:af:73:3a:88:ee:58:16:f6:20:
07:67:27:e3:74:77:13:80:fc:98:dd:e9:7c:f9:d4:
e7:79:69:1b:50:68:5e:f7:0e:a3:85:f9:aa:19:cc:
8a:a8:7f:bc:b9:8f:7f:ab:31:11:67:68:98:8b:a0:
2f:c7:34:61:5c:4c:f3:63:57:05:b6:5e:09:5a:8a:
3a:f7:cc:77:fd:58:c1:01:99:83:d5:f7:21:d9:1b:
2c:73:e8:10:d2:9f:eb:6d:f9:84:96:aa:02:fa:17:
07:e8:dc:29:78:4c:f3:cf:85:91:10:92:c3:72:49:
8d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:54:1B:7C:AC:43:77:94:62:C2:E1:36:38:A3:88:99:43:0A:45:E4
X509v3 Authority Key Identifier:
keyid:34:53:1C:54:B1:E7:95:6C:2C:C3:71:B2:3E:0A:75:56:7A:A2:75:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NFMcVLHnlWwsw3GyPgp1VnqidRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/8efa86-c35f-41b6-ad01-4906103dbd16/1/y1QbfKxDd5RiwuE2OKOImUMKReQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/8efa86-c35f-41b6-ad01-4906103dbd16/1/NFMcVLHnlWwsw3GyPgp1VnqidRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.2.234.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:47:b1:9c:1d:ed:f2:b0:84:70:92:b2:db:88:d5:24:77:f8:
0b:5f:a3:89:75:cd:cc:3a:fa:f7:f8:9c:12:31:bb:6e:cf:02:
00:bb:f8:51:a4:48:f7:73:ec:7a:d5:66:27:5c:0b:47:2c:74:
cb:b8:b9:ae:84:57:d2:cb:1a:ec:1b:a0:e2:9f:e6:26:be:d2:
12:34:20:28:c0:d4:23:65:cb:84:31:9c:b4:e5:1c:fb:7f:ab:
79:5b:02:c9:9a:b8:13:38:b1:64:b7:de:43:0d:25:76:c0:c6:
ca:c2:14:6d:24:af:01:31:f6:6e:36:a5:9a:4e:16:54:22:4b:
e5:7b:45:c8:b9:5c:96:62:c7:b5:23:f9:39:e8:ba:d2:b7:5c:
b4:b1:d3:39:1b:10:b6:64:da:d9:cd:ae:7c:b6:1b:a0:aa:b8:
c9:c8:9c:50:7a:df:84:c1:ef:cc:a4:ec:e1:af:91:82:53:79:
9d:f4:4b:16:34:0c:75:df:31:99:4a:7e:8e:1c:9b:bc:7f:f0:
a6:9c:86:48:1c:04:a6:0d:36:f4:7d:b7:ee:ef:6f:10:37:65:
32:b0:8e:e4:df:85:90:4b:a0:4e:8b:dd:83:25:80:7e:af:5d:
e2:8d:6d:c5:de:17:7b:3b:5c:bd:8e:53:82:a3:4e:1c:e1:c0:
7a:35:4d:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:37 2024 by rpki-client on console-ams.rpki-client.org