Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/sI65xfd8W0RhDjWhAoIm99qDn9E.roa
File: sI65xfd8W0RhDjWhAoIm99qDn9E.roa (raw, json)
Hash identifier: ZF5ECuKAVk18EWLGsVxWvxr6w+xLwB6EKxCxjAC9wC8=
Subject key identifier: B0:8E:B9:C5:F7:7C:5B:44:61:0E:35:A1:02:82:26:F7:DA:83:9F:D1
Certificate issuer: /CN=47e94ccb7b601da0ca09469f60f653640fed8c1c
Certificate serial: 01856D13BD26DC41EE51E948B1B288731039
Authority key identifier: 47:E9:4C:CB:7B:60:1D:A0:CA:09:46:9F:60:F6:53:64:0F:ED:8C:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R-lMy3tgHaDKCUafYPZTZA_tjBw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/sI65xfd8W0RhDjWhAoIm99qDn9E.roa
Signing time: Sun 01 Jan 2023 11:24:48 +0000
ROA not before: Sun 01 Jan 2023 11:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29137
IP address blocks: 195.234.250.0/23 maxlen: 23
195.234.248.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:13:bd:26:dc:41:ee:51:e9:48:b1:b2:88:73:10:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47e94ccb7b601da0ca09469f60f653640fed8c1c
Validity
Not Before: Jan 1 11:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b08eb9c5f77c5b44610e35a1028226f7da839fd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f9:7b:f6:c7:a3:5b:20:3a:61:6c:66:36:5f:
48:24:7a:b6:3a:9e:39:97:97:36:f6:c8:5e:46:59:
b0:32:40:62:71:36:5e:91:73:42:da:e8:e5:26:4c:
04:de:f3:5c:be:22:c0:4a:6d:80:01:cc:11:c4:38:
22:43:47:5e:42:85:3a:3a:28:b4:cf:48:79:9d:c3:
56:f5:2f:73:cf:a8:33:45:b9:a7:42:cc:f8:eb:16:
03:fd:b8:36:8b:93:c9:59:e8:5e:b5:db:e7:de:87:
60:42:5c:da:8c:99:82:66:ad:72:c3:fd:77:8f:02:
44:14:89:6d:7c:75:af:19:4b:b0:c2:3a:a4:08:ad:
18:c3:b1:77:d2:bc:ed:63:01:6e:a2:2c:fb:08:f2:
04:48:22:d5:ed:21:d6:82:0b:0c:2a:12:37:e7:ef:
37:11:14:19:14:02:72:9e:d6:3f:55:3c:36:bb:c4:
89:fc:0f:33:20:9f:66:87:6c:15:3c:5a:2a:18:b8:
ff:d7:7d:6f:6b:de:06:8b:97:68:e9:32:bc:c5:1b:
83:29:2a:fd:6c:e5:94:62:a5:4c:5f:26:eb:57:25:
1c:88:f1:3d:a3:0c:da:16:44:3b:5e:76:3f:9a:e7:
bd:2c:d0:a7:9d:6b:5d:ef:ac:35:05:4e:93:40:4f:
2d:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:8E:B9:C5:F7:7C:5B:44:61:0E:35:A1:02:82:26:F7:DA:83:9F:D1
X509v3 Authority Key Identifier:
keyid:47:E9:4C:CB:7B:60:1D:A0:CA:09:46:9F:60:F6:53:64:0F:ED:8C:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R-lMy3tgHaDKCUafYPZTZA_tjBw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/sI65xfd8W0RhDjWhAoIm99qDn9E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/R-lMy3tgHaDKCUafYPZTZA_tjBw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.234.248.0/22
Signature Algorithm: sha256WithRSAEncryption
29:ad:64:3c:d4:ca:c4:e3:6c:66:d4:26:da:52:52:ca:81:11:
e5:eb:61:d5:be:46:67:6b:6b:73:d1:1e:78:59:b3:70:e8:d4:
13:44:32:a3:34:d7:54:6e:42:23:4d:79:85:05:5b:15:c3:d9:
23:1f:1b:88:07:fb:5e:26:c0:85:29:59:93:d1:1e:df:5a:50:
66:9c:c9:68:a5:6e:99:23:76:b5:57:4f:4d:b0:ed:6a:d6:2c:
8a:01:82:00:4b:cd:68:54:1f:27:b5:4a:35:55:26:31:3f:38:
03:17:ca:19:25:8e:e5:a4:c9:0d:33:b7:31:96:53:9d:4c:fc:
30:6f:0c:fa:88:c8:db:da:e6:7d:b5:d3:e5:0f:43:bc:f0:ef:
3c:fd:e8:ca:98:0d:68:d5:64:18:ba:c6:7c:b4:e7:48:98:41:
04:78:4d:02:c9:a7:dd:80:70:9e:a5:f0:aa:22:70:7e:d0:c8:
12:59:17:28:ef:3a:87:12:5c:f5:a2:64:07:bb:da:d2:a0:00:
c2:b9:5f:44:03:af:d4:78:44:a3:b9:34:fa:48:7f:2f:99:a6:
0a:6d:4a:5a:c2:66:8e:4a:94:04:a2:eb:ae:de:48:a5:d3:1f:
ae:c3:3c:9f:54:0b:3f:70:13:1d:4e:7d:7b:10:fc:f6:44:2d:
42:2f:fc:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:01 2024 by rpki-client on console-ams.rpki-client.org