Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/NYowKxec9ZVcK5QVlLDWUxfBLbA.roa
File: NYowKxec9ZVcK5QVlLDWUxfBLbA.roa (raw, json)
Hash identifier: pbakIYrSbkCinzDtNINGFTqK+iTbp6pO5QXkc20PzVc=
Subject key identifier: 35:8A:30:2B:17:9C:F5:95:5C:2B:94:15:94:B0:D6:53:17:C1:2D:B0
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 01870DA3B60F52FD34268D08552A87180D68
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/NYowKxec9ZVcK5QVlLDWUxfBLbA.roa
Signing time: Thu 23 Mar 2023 08:44:05 +0000
ROA not before: Thu 23 Mar 2023 08:44:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209195
IP address blocks: 195.55.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:0d:a3:b6:0f:52:fd:34:26:8d:08:55:2a:87:18:0d:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: Mar 23 08:44:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=358a302b179cf5955c2b941594b0d65317c12db0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:d6:58:9c:1a:2d:fa:0d:bf:3f:12:58:09:d9:
01:f9:96:96:fe:83:6e:69:0f:3c:88:fa:07:88:88:
da:88:82:86:d9:1e:9d:f6:7d:48:ff:73:2f:c6:6e:
06:9b:a6:6b:14:f6:9f:dd:b2:77:03:b4:02:2e:8b:
0e:6e:d5:b4:76:ce:14:b6:6b:cf:9c:d6:15:03:90:
33:4d:62:6e:63:c8:2c:e8:b9:bc:99:72:6a:58:b2:
57:36:c0:7f:30:00:1a:63:ba:8d:d4:69:b8:3a:bb:
f1:a0:fb:3f:57:0d:62:91:01:58:b2:bc:8b:7c:db:
d8:55:89:2e:d7:65:b4:f7:1c:df:11:1b:97:9b:ef:
d3:d2:9d:c1:7f:17:84:2d:02:04:cf:52:0d:a0:c2:
4b:07:7e:57:f4:53:19:d8:5d:18:91:01:74:46:a8:
80:df:32:5f:27:be:c8:a0:f0:07:42:06:cb:85:7c:
a5:a7:ac:52:d2:6d:bb:bb:85:5d:9c:9c:f2:7c:c6:
f1:fc:df:bf:9c:96:49:8c:e1:b5:2d:74:a3:81:7c:
9e:35:3b:da:94:52:af:61:64:08:e8:04:d4:89:4a:
9d:4b:f3:13:af:9d:29:2d:99:2b:bd:e2:c3:2d:00:
81:60:2a:cc:d0:e6:09:3c:45:d9:e6:2a:7b:59:d4:
2f:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:8A:30:2B:17:9C:F5:95:5C:2B:94:15:94:B0:D6:53:17:C1:2D:B0
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/NYowKxec9ZVcK5QVlLDWUxfBLbA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.55.46.0/24
Signature Algorithm: sha256WithRSAEncryption
09:13:e2:00:40:ae:f7:7c:d1:98:6e:5d:88:5a:30:d0:34:d0:
e0:9b:83:4f:d6:6d:43:35:70:33:53:0e:74:e5:87:24:5d:0b:
41:25:95:d0:d3:19:76:13:0c:5c:05:2b:c9:e1:40:a2:27:cc:
7f:ff:62:1e:e2:4f:85:9e:64:b6:5a:bc:16:15:d6:69:3c:d0:
66:f3:80:18:86:15:60:10:d1:ed:63:07:44:fa:b4:62:1b:47:
8a:05:b6:c0:6a:64:60:bc:48:52:cb:bc:9f:aa:4c:5d:2f:82:
16:a6:4d:4e:f6:1e:84:21:ed:05:45:2f:e1:50:5b:3a:78:87:
8b:e6:23:c2:ab:e6:26:ff:0b:02:17:2c:15:c0:e3:4d:63:0a:
0b:ba:fd:82:c5:ba:8d:2f:a5:7d:ac:c6:04:34:6f:31:f5:56:
13:d2:7c:90:46:b2:40:2c:d7:a9:10:22:46:7e:dd:7a:3f:c7:
f8:fd:45:bb:dd:6c:07:df:89:34:f3:f2:36:b1:cb:d1:1b:d2:
69:2d:37:4a:d0:d0:35:9e:43:00:81:a8:38:fc:d8:bb:c9:ef:
38:f8:02:c0:60:ca:1f:b9:e8:4c:9b:14:ea:a4:61:62:6c:35:
c6:e6:ae:ac:c9:58:a2:77:61:f8:64:f3:6a:b5:3d:4c:fb:02:
be:93:2a:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:13 2024 by rpki-client on console-ams.rpki-client.org