Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/e7723d-fe9b-4294-bfca-3dda23cbde59/1/oF89TaH17wE0IXAxwAI1_4GFncw.roa
File: oF89TaH17wE0IXAxwAI1_4GFncw.roa (raw, json)
Hash identifier: BA2p4pXWB/RFqHDVN4r9R9XU9BK50AS0fMezLZSUh5k=
Subject key identifier: A0:5F:3D:4D:A1:F5:EF:01:34:21:70:31:C0:02:35:FF:81:85:9D:CC
Certificate issuer: /CN=9064b39e80ca1cde4cadc0bc8ea2b41ea6d27c76
Certificate serial: 01856BEEC87A283DFE3A4ECE21D0D42E7B11
Authority key identifier: 90:64:B3:9E:80:CA:1C:DE:4C:AD:C0:BC:8E:A2:B4:1E:A6:D2:7C:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kGSznoDKHN5MrcC8jqK0HqbSfHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/e7723d-fe9b-4294-bfca-3dda23cbde59/1/oF89TaH17wE0IXAxwAI1_4GFncw.roa
Signing time: Sun 01 Jan 2023 06:04:49 +0000
ROA not before: Sun 01 Jan 2023 06:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40985
IP address blocks: 195.189.216.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:c8:7a:28:3d:fe:3a:4e:ce:21:d0:d4:2e:7b:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9064b39e80ca1cde4cadc0bc8ea2b41ea6d27c76
Validity
Not Before: Jan 1 06:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a05f3d4da1f5ef0134217031c00235ff81859dcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:bc:e5:5f:22:cc:ef:82:23:3a:7d:09:41:ac:
85:f6:42:d3:e2:1c:be:4f:dd:e2:f1:12:61:81:f2:
41:83:cf:b6:dd:29:d4:66:40:43:8e:89:3a:e3:1e:
96:4e:2e:32:8f:bc:b9:fe:64:c3:63:73:f0:7b:b0:
14:59:f2:e8:5e:be:cd:78:45:e4:e6:dd:bb:46:bf:
a6:0b:5e:76:9f:48:86:fa:f0:02:9c:b5:e7:1f:aa:
4a:b2:3e:68:3a:b8:88:fc:46:69:7e:a2:7a:42:01:
f8:50:1d:87:1b:6c:36:49:77:01:3b:56:c1:e7:b4:
1e:8e:0f:88:24:8c:36:4e:68:dc:66:12:0b:ba:51:
e8:1c:2e:8d:53:45:86:0f:d3:92:b6:69:4d:e7:65:
f4:9f:7d:47:a7:77:a5:7e:aa:a7:77:72:ad:d8:3c:
c1:3f:7d:3e:e8:32:d9:69:70:31:7a:65:bf:a1:f0:
d3:3a:45:59:12:47:94:e8:75:09:5e:14:c2:47:4e:
0b:a2:6d:83:ec:10:3e:0b:ee:8d:e9:33:6b:8b:9a:
be:ef:7b:c4:54:93:f0:1a:e1:94:3a:d5:67:63:a4:
a1:7e:48:05:ca:06:08:7d:af:cf:63:6a:f2:62:e0:
1d:c5:a6:2f:3c:7d:21:20:33:48:47:67:bb:e7:97:
ed:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:5F:3D:4D:A1:F5:EF:01:34:21:70:31:C0:02:35:FF:81:85:9D:CC
X509v3 Authority Key Identifier:
keyid:90:64:B3:9E:80:CA:1C:DE:4C:AD:C0:BC:8E:A2:B4:1E:A6:D2:7C:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kGSznoDKHN5MrcC8jqK0HqbSfHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/e7723d-fe9b-4294-bfca-3dda23cbde59/1/oF89TaH17wE0IXAxwAI1_4GFncw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/e7723d-fe9b-4294-bfca-3dda23cbde59/1/kGSznoDKHN5MrcC8jqK0HqbSfHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.189.216.0/23
Signature Algorithm: sha256WithRSAEncryption
73:7c:b6:be:b6:28:47:a4:a1:7d:c5:3b:6e:9e:ba:94:ce:3a:
79:78:c5:f2:64:64:94:f1:3e:8f:e7:6d:a9:46:f0:e5:50:9c:
d4:5b:1b:7f:bc:31:2a:68:c1:49:15:57:03:77:22:6b:9a:78:
f6:f1:4e:62:0a:cd:4d:c9:18:c6:63:7c:56:57:53:0c:30:5b:
68:42:07:5e:18:04:24:bf:b7:ff:32:fb:57:a4:96:3a:35:69:
da:2f:21:e2:1b:c6:af:83:37:98:6c:f4:25:1d:bd:35:bc:be:
09:56:2b:dc:0a:b2:4e:79:ca:8f:35:54:48:43:4e:7c:e6:2b:
9f:7b:32:11:e0:ef:d2:7c:21:76:51:8b:dc:33:fd:4b:3c:d8:
bf:a9:bf:0c:32:aa:92:d4:4c:6e:46:36:d3:16:47:c0:d3:c2:
83:44:c0:23:b4:d9:b1:d3:30:fd:97:9f:d6:a8:83:72:a3:2a:
a2:6e:18:b9:fa:13:15:87:84:cb:c2:0e:e2:41:e6:9e:e8:36:
be:00:7a:f8:55:61:80:25:37:b2:f6:f4:97:63:e4:74:d2:a0:
3b:3f:9b:1e:2b:a3:78:34:5d:19:16:2b:65:81:b8:4c:c7:2b:
ab:cb:31:48:db:82:5d:f8:44:e3:50:85:22:98:ad:00:05:82:
a6:91:14:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:57 2024 by rpki-client on console-ams.rpki-client.org