Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/f2b840-2c85-465b-8b93-5b5beb10513b/1/V_pZl3OTP9U2Z9nDrH75GA7fJdI.roa
File: V_pZl3OTP9U2Z9nDrH75GA7fJdI.roa (raw, json)
Hash identifier: uQE7lmuoycfVIIc2LYna9L7GmbEYhVuSdpnNk/nnRN8=
Subject key identifier: 57:FA:59:97:73:93:3F:D5:36:67:D9:C3:AC:7E:F9:18:0E:DF:25:D2
Certificate issuer: /CN=01c4b784d8166e8bd0f47d720fde5faec1645b34
Certificate serial: 01856F02129E61C378E0DCF0A824FB80284F
Authority key identifier: 01:C4:B7:84:D8:16:6E:8B:D0:F4:7D:72:0F:DE:5F:AE:C1:64:5B:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AcS3hNgWbovQ9H1yD95frsFkWzQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/f2b840-2c85-465b-8b93-5b5beb10513b/1/V_pZl3OTP9U2Z9nDrH75GA7fJdI.roa
Signing time: Sun 01 Jan 2023 20:24:44 +0000
ROA not before: Sun 01 Jan 2023 20:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20675
IP address blocks: 195.42.250.0/24 maxlen: 24
193.41.83.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:12:9e:61:c3:78:e0:dc:f0:a8:24:fb:80:28:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01c4b784d8166e8bd0f47d720fde5faec1645b34
Validity
Not Before: Jan 1 20:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=57fa599773933fd53667d9c3ac7ef9180edf25d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:dd:e1:82:e2:bc:3a:06:59:a2:ca:94:be:bd:
ed:77:bb:33:81:b3:a1:82:2e:2a:b0:68:9d:e7:65:
19:3b:2d:e5:e9:60:f5:11:d5:c5:ab:fa:4f:3d:c0:
c7:b8:f1:32:a7:f8:a3:c5:38:d7:72:e4:23:0d:1b:
05:2d:3a:0e:d4:52:f9:d7:36:e2:e3:03:fa:5b:25:
72:2e:78:31:cd:71:37:2d:51:f1:54:af:1f:d7:91:
c2:a0:81:2e:f9:47:1a:d4:24:e6:37:70:15:ad:1c:
d1:bc:ff:bc:23:c7:3d:2b:73:f8:b4:f6:6e:c9:c1:
31:4c:9a:b3:f5:f3:10:74:23:a8:ae:a4:f3:75:ec:
4a:9a:20:ae:21:34:87:0a:06:99:cf:5b:32:68:0d:
b8:e4:63:6a:11:1e:f8:d7:2c:a2:49:d1:98:42:11:
96:21:00:22:1b:e9:6a:74:ff:79:ca:c6:5e:36:46:
ce:85:6d:50:e3:bc:45:9d:a1:99:8e:8c:27:9d:42:
e5:e5:f3:77:b9:e9:8f:dd:47:db:77:7e:39:9e:c2:
65:83:5a:b3:32:b7:8e:bd:20:bb:fa:f0:ce:86:86:
90:83:2f:59:5a:d1:80:2c:69:b7:ad:24:f1:c2:c5:
ac:68:8e:4c:5d:e6:54:88:0f:70:9e:49:ab:17:db:
8e:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:FA:59:97:73:93:3F:D5:36:67:D9:C3:AC:7E:F9:18:0E:DF:25:D2
X509v3 Authority Key Identifier:
keyid:01:C4:B7:84:D8:16:6E:8B:D0:F4:7D:72:0F:DE:5F:AE:C1:64:5B:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AcS3hNgWbovQ9H1yD95frsFkWzQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/f2b840-2c85-465b-8b93-5b5beb10513b/1/V_pZl3OTP9U2Z9nDrH75GA7fJdI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/f2b840-2c85-465b-8b93-5b5beb10513b/1/AcS3hNgWbovQ9H1yD95frsFkWzQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.41.83.0/24
195.42.250.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:0e:58:a9:06:73:9c:bb:bc:16:b9:f8:e1:af:7a:88:fa:38:
aa:4e:81:18:60:f2:d4:e6:1a:2e:0d:13:e6:23:1e:ec:7b:10:
0f:62:0a:c8:a6:62:74:73:e6:09:2a:16:4e:65:ff:c1:a6:36:
5f:80:29:c1:c6:9a:f9:33:50:63:f5:2c:cb:88:b0:40:1e:44:
9a:aa:af:e6:e3:e3:55:db:42:92:55:52:5e:bf:0a:f6:14:56:
42:dd:2a:80:ee:d7:a1:e3:23:39:be:4b:59:35:02:a6:27:03:
91:6e:85:8e:ec:70:ff:a8:78:5d:78:b5:17:6c:3c:62:f4:f4:
93:30:0d:fe:95:d9:0a:ce:27:8e:a0:0d:64:5b:e6:62:eb:89:
df:fc:ff:0f:bf:13:ba:5c:ab:2c:a7:3b:60:9d:1e:40:8a:de:
c2:2e:54:21:c6:9e:64:13:f7:7c:87:76:ec:fd:52:fc:f5:91:
a0:6c:e0:df:35:21:a7:c6:b4:a1:a3:1e:bf:b8:e9:98:43:e8:
5d:01:80:b2:21:a5:85:a6:ed:df:cd:be:bb:b6:05:c4:8a:19:
c2:bf:1c:e8:b2:7b:68:54:8c:0d:9c:73:19:ef:47:d4:28:eb:
17:ff:a8:5c:87:ab:91:7b:ec:3c:a3:8f:8d:22:51:09:6b:7f:
25:4d:70:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:56 2024 by rpki-client on console-fra.rpki-client.org