Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/j3vbE3_Pq4HujgsYhmkxtsphXU0.roa
File: j3vbE3_Pq4HujgsYhmkxtsphXU0.roa (raw, json)
Hash identifier: vXhFc4I/f8UAh/lMgjSIDmBixCHxB9+YYm3A7RcrGUI=
Subject key identifier: 8F:7B:DB:13:7F:CF:AB:81:EE:8E:0B:18:86:69:31:B6:CA:61:5D:4D
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 01870DA62BACEDEEF46AC402632A24FC6552
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/j3vbE3_Pq4HujgsYhmkxtsphXU0.roa
Signing time: Thu 23 Mar 2023 08:46:46 +0000
ROA not before: Thu 23 Mar 2023 08:46:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210995
IP address blocks: 195.53.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 25 May 2023 10:58:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:0d:a6:2b:ac:ed:ee:f4:6a:c4:02:63:2a:24:fc:65:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: Mar 23 08:46:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8f7bdb137fcfab81ee8e0b18866931b6ca615d4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:2b:1d:4c:9c:43:05:ac:51:7b:ca:1b:67:12:
15:40:3e:e1:27:f7:ca:77:2d:9f:26:ce:be:79:81:
7e:ac:42:c4:90:f8:c8:9f:1b:e5:80:e8:7c:f5:37:
78:f3:4f:95:49:92:b1:6c:0d:02:e9:c3:ad:17:ba:
a6:a8:cb:d3:5c:56:a8:7b:6c:4a:74:9c:7e:92:07:
00:00:f4:e4:fb:77:21:c7:6a:f9:c2:af:ff:46:da:
11:66:f1:0f:7f:50:ed:af:1b:7a:ce:ef:0f:27:18:
73:7f:e5:50:d9:d9:a7:57:59:03:9b:c8:8b:a7:a3:
df:92:16:95:8b:7a:3a:dc:76:fd:6a:01:76:e8:57:
ce:8f:69:7b:ec:15:fa:9e:36:c7:6f:65:74:ed:ba:
5f:56:08:34:72:ff:9e:09:a5:e7:a5:27:cd:e8:4c:
89:1e:c2:17:9b:40:09:6c:42:de:f4:3e:06:af:33:
a2:6b:0d:60:04:a8:f1:95:bd:70:eb:87:e1:fc:76:
85:0c:22:d8:9a:72:13:36:c1:e5:d3:2b:49:cc:57:
7a:b8:68:7d:13:72:61:64:d8:1b:f2:81:42:53:0c:
3c:42:95:4c:28:41:e0:d5:3f:16:3c:cc:8b:56:50:
e2:3d:fa:c8:cb:57:19:fe:3b:a9:38:98:5c:e8:30:
bf:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:7B:DB:13:7F:CF:AB:81:EE:8E:0B:18:86:69:31:B6:CA:61:5D:4D
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/j3vbE3_Pq4HujgsYhmkxtsphXU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.53.239.0/24
Signature Algorithm: sha256WithRSAEncryption
53:2a:b1:7c:29:31:dd:bd:67:db:e9:0b:39:70:52:31:96:3b:
48:57:d1:6d:65:7a:f1:cc:18:14:97:02:8c:db:8d:e6:ca:ff:
5a:68:7c:41:59:c3:c3:74:76:01:4a:19:f7:38:ba:2a:26:73:
1a:4a:61:6f:f2:cb:3e:ab:03:9e:d1:85:e4:ef:03:54:9a:de:
f6:50:bd:13:fc:3d:6f:e3:57:a7:e0:9c:59:42:6d:5f:ff:29:
cf:e5:30:bb:84:0c:34:bd:ff:89:bd:69:b9:4b:97:da:4a:10:
d0:81:73:84:0b:0c:74:1f:61:fe:9d:49:fc:8e:2e:46:05:e1:
e6:38:77:80:b5:89:3c:4e:de:e1:e2:5d:5b:84:a6:8a:b2:70:
8f:25:6d:b8:f1:f0:2e:14:11:53:87:b4:62:ff:4c:e7:e7:7f:
2b:32:71:55:81:04:d9:8d:98:04:14:d8:7e:04:b3:52:93:d2:
9a:f0:7a:e8:98:38:b8:0f:3e:e5:c9:31:11:a1:39:f2:ce:57:
20:c3:ff:62:ef:77:e4:73:db:6d:67:c8:1a:0d:9e:d4:7b:47:
fe:cb:07:db:7e:5e:95:64:9f:1b:c7:2a:ad:79:f6:7c:04:99:
16:52:94:fa:32:0f:11:7e:d1:46:06:b8:cd:81:58:1a:7a:60:
6f:96:bd:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:05 2024 by rpki-client on console-fra.rpki-client.org