Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/f4e03e-27b2-494b-8c0f-6f7009bee915/1/OvGVQhQjMoPcZtPiWXUCcutEbPc.roa
File: OvGVQhQjMoPcZtPiWXUCcutEbPc.roa (raw, json)
Hash identifier: 2klkCoyGu3c8t4Ahz2fLJtQPbORdPXW7J6tS71Ip0C4=
Subject key identifier: 3A:F1:95:42:14:23:32:83:DC:66:D3:E2:59:75:02:72:EB:44:6C:F7
Certificate issuer: /CN=089c8c7f334053c8a90a3408009ef3d3b7a82e3d
Certificate serial: 018CC802BEC857176958F6BBFA7571211B8E
Authority key identifier: 08:9C:8C:7F:33:40:53:C8:A9:0A:34:08:00:9E:F3:D3:B7:A8:2E:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CJyMfzNAU8ipCjQIAJ7z07eoLj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/f4e03e-27b2-494b-8c0f-6f7009bee915/1/OvGVQhQjMoPcZtPiWXUCcutEbPc.roa
Signing time: Tue 02 Jan 2024 02:31:12 +0000
ROA not before: Tue 02 Jan 2024 02:31:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201507
IP address blocks: 195.137.221.0/24 maxlen: 24
2a13:2440:a0::/44 maxlen: 44
Validation: Failed, certificate revoked on Thu 30 May 2024 14:30:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:be:c8:57:17:69:58:f6:bb:fa:75:71:21:1b:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=089c8c7f334053c8a90a3408009ef3d3b7a82e3d
Validity
Not Before: Jan 2 02:31:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3af1954214233283dc66d3e259750272eb446cf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:44:28:92:76:8f:ca:98:e1:08:4d:74:ca:c3:
85:2b:97:2b:e7:4c:f5:17:3f:26:05:57:2a:44:dd:
c4:37:92:9c:58:07:36:7d:81:2b:18:9a:0c:ee:12:
18:8c:be:1d:87:80:40:e1:05:02:e5:17:f4:0b:d8:
2d:f2:3c:2d:3b:26:71:d9:71:25:cf:2e:b9:44:27:
95:81:ff:f6:3e:81:03:92:07:65:1c:bd:67:c8:be:
c7:de:bf:67:43:48:21:79:4c:d9:a7:d8:39:8b:03:
53:87:58:ca:b4:a7:13:63:31:46:1d:ea:11:4f:8e:
d6:f6:c7:24:ba:5f:c0:d0:68:14:7b:39:cf:78:b4:
12:09:54:3f:8d:48:08:b8:6d:5c:7a:2f:6f:b0:33:
f7:90:81:c7:54:0c:8c:4b:d0:61:df:4e:d4:55:a0:
57:9d:5a:1f:b0:20:a7:58:d3:d3:61:d1:4c:f3:f5:
50:4c:f8:80:cf:ae:09:7f:62:9a:6a:11:7a:36:98:
81:d3:ad:c1:fe:ba:eb:6e:df:96:df:67:84:02:dd:
55:6c:c0:5b:d7:14:4c:d8:18:52:f1:9d:c4:8b:e9:
a4:d6:22:da:a9:53:02:80:39:b2:fd:7a:6a:3d:fb:
fc:34:36:6e:e3:19:b7:05:ac:e8:2d:e8:88:40:33:
b8:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:F1:95:42:14:23:32:83:DC:66:D3:E2:59:75:02:72:EB:44:6C:F7
X509v3 Authority Key Identifier:
keyid:08:9C:8C:7F:33:40:53:C8:A9:0A:34:08:00:9E:F3:D3:B7:A8:2E:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CJyMfzNAU8ipCjQIAJ7z07eoLj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f4e03e-27b2-494b-8c0f-6f7009bee915/1/OvGVQhQjMoPcZtPiWXUCcutEbPc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f4e03e-27b2-494b-8c0f-6f7009bee915/1/CJyMfzNAU8ipCjQIAJ7z07eoLj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.137.221.0/24
IPv6:
2a13:2440:a0::/44
Signature Algorithm: sha256WithRSAEncryption
31:76:e9:89:03:38:b3:a3:34:39:de:46:34:ec:a9:1d:c2:8c:
bc:e4:8f:fc:0d:68:20:39:53:f7:af:f9:61:be:57:ca:18:0c:
b7:b2:05:81:e0:6a:49:60:df:56:fa:5f:cf:0f:bb:2f:ab:e2:
fa:cd:30:7f:b9:c1:7e:d6:4c:13:6f:04:2c:1d:39:6c:56:90:
00:28:da:15:bf:b4:53:ce:16:d4:97:fb:c0:55:c0:fc:de:a4:
30:29:6b:02:77:95:b6:06:f0:ea:b6:44:6b:b6:f8:b2:5d:ab:
5e:f1:25:d5:37:b2:53:1a:0d:a1:f7:82:a9:51:cd:9c:08:fd:
00:84:9f:19:70:a3:fe:c1:b0:74:ac:5d:4e:43:c1:97:16:02:
c2:1d:a6:95:57:bb:7b:0a:58:c5:af:58:4a:1b:73:5a:43:17:
88:ce:be:e0:a1:b8:87:37:55:25:83:3c:97:3f:13:14:95:0f:
15:3c:6b:61:43:22:7c:a3:5e:2f:57:9e:57:8e:f7:0c:8a:d8:
f8:59:82:14:7d:51:f8:0f:ee:40:23:1a:3a:50:70:f7:48:11:
4d:80:01:8b:19:2e:38:d4:25:9a:a8:7e:89:ab:13:fa:fe:42:
9f:8d:7f:21:d0:39:64:5b:45:97:fc:03:83:cc:b3:b0:85:2c:
d9:aa:84:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:40 2024 by rpki-client on console-ams.rpki-client.org