Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/21519e-b8dc-4240-aa78-8d218665027d/1/iAOUZQjVFOVfFLQylyNmlyKDWx0.roa
File: iAOUZQjVFOVfFLQylyNmlyKDWx0.roa (raw, json)
Hash identifier: t+epQzl8WsYgv8IyvJ4KnhGF2/gMd2K1ivMtZPppUDM=
Subject key identifier: 88:03:94:65:08:D5:14:E5:5F:14:B4:32:97:23:66:97:22:83:5B:1D
Certificate issuer: /CN=8bdf76c54b9e6935c30a9b4c9ba9309ac470ec02
Certificate serial: 018C2291AE4F2759464FA34FA4EFE31C3740
Authority key identifier: 8B:DF:76:C5:4B:9E:69:35:C3:0A:9B:4C:9B:A9:30:9A:C4:70:EC:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i992xUueaTXDCptMm6kwmsRw7AI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/21519e-b8dc-4240-aa78-8d218665027d/1/iAOUZQjVFOVfFLQylyNmlyKDWx0.roa
Signing time: Thu 30 Nov 2023 23:30:21 +0000
ROA not before: Thu 30 Nov 2023 23:30:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7029
IP address blocks: 195.222.127.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:22:91:ae:4f:27:59:46:4f:a3:4f:a4:ef:e3:1c:37:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bdf76c54b9e6935c30a9b4c9ba9309ac470ec02
Validity
Not Before: Nov 30 23:30:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8803946508d514e55f14b4329723669722835b1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:80:67:3f:4e:2d:09:31:4d:80:8f:22:3a:12:
14:8d:91:5d:41:e7:6a:f2:98:36:de:45:e6:fe:23:
9f:37:c6:2e:ee:9d:df:8f:af:7b:3a:d1:e2:b5:30:
ca:a0:73:7e:3c:a8:ad:c5:19:c5:1f:4e:2f:f2:d8:
1a:dd:ae:24:44:7c:b0:bc:ca:97:bb:93:7b:86:d9:
2b:ac:97:b9:f3:ad:48:de:1d:1c:0d:5b:8b:60:c4:
35:c5:ff:ad:fe:cf:6f:c0:af:d0:5d:05:27:a4:75:
36:30:23:92:ad:27:d4:e4:27:2b:ff:06:96:c0:79:
f2:ef:f0:b9:10:c8:85:ce:5d:86:46:7f:ce:7a:38:
85:3a:22:29:86:e5:e5:d0:52:cf:bd:20:df:79:a3:
61:e7:7b:6d:71:ef:48:37:89:d7:48:46:1f:ae:7e:
6b:d8:ea:f4:a4:6f:66:2b:18:c4:d5:8e:d5:b0:86:
d7:f4:58:78:c4:f8:27:9c:7d:de:d8:1f:19:7f:b6:
60:8b:7b:32:5d:7a:69:e4:1e:b1:58:3c:01:b0:11:
87:53:e7:71:1c:7f:55:5d:9e:5d:97:98:85:0a:e1:
d9:f9:5e:d3:16:c8:28:d7:29:15:59:17:d5:d0:77:
69:47:36:7c:80:a5:8d:89:15:1e:33:0a:b5:2b:5e:
6a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:03:94:65:08:D5:14:E5:5F:14:B4:32:97:23:66:97:22:83:5B:1D
X509v3 Authority Key Identifier:
keyid:8B:DF:76:C5:4B:9E:69:35:C3:0A:9B:4C:9B:A9:30:9A:C4:70:EC:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i992xUueaTXDCptMm6kwmsRw7AI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/21519e-b8dc-4240-aa78-8d218665027d/1/iAOUZQjVFOVfFLQylyNmlyKDWx0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/21519e-b8dc-4240-aa78-8d218665027d/1/i992xUueaTXDCptMm6kwmsRw7AI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.222.127.0/24
Signature Algorithm: sha256WithRSAEncryption
96:fc:57:f2:1f:a5:88:6b:07:29:2d:86:56:8f:6d:ab:a6:15:
0d:28:4f:54:a3:42:7f:38:a9:c6:76:01:b0:39:73:57:0c:17:
7a:1d:94:41:3d:59:e4:6b:53:a2:d7:3f:4f:44:0c:85:5d:8e:
0f:6d:d6:67:da:e7:1b:5d:c5:eb:49:8b:c7:d0:3f:14:6e:a8:
2b:31:75:43:e0:43:3b:35:c3:a4:f0:1d:1b:84:31:7c:ed:a1:
2b:88:bf:97:92:1e:d6:a0:c4:2c:a3:bb:b3:9c:79:57:a2:7e:
ef:20:ac:6b:51:44:07:89:d4:46:9b:d6:3b:55:9a:8f:cb:af:
3a:0e:61:e7:bf:d1:ec:09:aa:d6:76:fa:c6:2e:7b:df:e0:33:
4f:7d:b1:18:c8:f6:1f:ae:8f:f7:3c:01:cc:f5:cf:a5:ba:b8:
9a:aa:ca:58:46:bf:ff:06:48:3e:17:c7:ee:5c:e8:cc:51:f4:
ec:a6:39:57:bd:c2:a2:9f:5e:41:ef:cc:7c:4c:b4:45:76:03:
65:f7:09:1b:03:4c:1e:5f:43:0e:72:23:3f:0d:3e:0f:1d:83:
a6:18:98:82:0f:81:b1:31:10:d2:2f:a3:f5:91:a0:0a:59:e2:
eb:3a:42:d6:2c:34:7b:61:95:d4:06:53:11:af:5b:8a:26:96:
a3:9a:31:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:50 2024 by rpki-client on console-fra.rpki-client.org