Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01f08c-065e-4ac1-8e80-b15e3f09e01b/1/sZmQKwPa24F4_pCL_4K6zJqS0lM.roa
File: sZmQKwPa24F4_pCL_4K6zJqS0lM.roa (raw, json)
Hash identifier: om5IYhjqigYLW+a+KKMlwS6efl0vsveQgYL5tYYzdPk=
Subject key identifier: B1:99:90:2B:03:DA:DB:81:78:FE:90:8B:FF:82:BA:CC:9A:92:D2:53
Certificate issuer: /CN=0c7161e622f63c0db8568d8cb4c4d7c0d9808346
Certificate serial: 0186601D96D8ADEDED7479277F608E508421
Authority key identifier: 0C:71:61:E6:22:F6:3C:0D:B8:56:8D:8C:B4:C4:D7:C0:D9:80:83:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DHFh5iL2PA24Vo2MtMTXwNmAg0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01f08c-065e-4ac1-8e80-b15e3f09e01b/1/sZmQKwPa24F4_pCL_4K6zJqS0lM.roa
Signing time: Fri 17 Feb 2023 16:03:17 +0000
ROA not before: Fri 17 Feb 2023 16:03:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203735
IP address blocks: 195.7.8.0/24 maxlen: 24
195.7.10.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:60:1d:96:d8:ad:ed:ed:74:79:27:7f:60:8e:50:84:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c7161e622f63c0db8568d8cb4c4d7c0d9808346
Validity
Not Before: Feb 17 16:03:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b199902b03dadb8178fe908bff82bacc9a92d253
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:71:37:51:35:15:9d:56:1e:7e:0f:dd:20:74:
0f:71:00:b8:a5:5c:44:41:89:bd:ac:24:2d:ac:e1:
02:0a:ed:5d:3c:7c:03:1f:a0:c8:08:28:88:c5:c5:
fa:83:e5:5f:1d:7b:e9:15:9a:19:3e:df:c7:f8:8d:
7d:08:08:12:b8:16:f3:99:fb:61:eb:d6:9d:6d:34:
6b:5d:1c:60:ce:a7:9e:f4:5d:8e:c5:b3:cb:cc:10:
84:5d:74:2e:fa:74:f0:36:6b:0e:30:e2:9b:70:31:
ac:f5:c6:f7:15:c3:e8:11:9c:d4:f7:87:7a:25:47:
88:fd:77:fc:82:d8:8d:da:dc:9e:b0:1f:ea:39:7c:
90:9c:b2:d8:ff:8d:0a:96:6a:e6:0b:98:fc:e7:55:
6f:92:38:ff:88:3a:f1:6a:3b:e6:81:23:47:3f:10:
f8:17:21:39:00:58:6a:ea:29:40:e2:ff:c4:2f:6a:
7c:29:5d:43:0b:46:5f:a2:11:1a:de:e7:ef:d1:38:
09:62:88:d0:f7:76:3f:cc:36:7c:9a:cf:c2:e5:09:
ae:97:da:a8:0e:b8:9a:33:86:95:45:11:73:d3:ce:
54:2f:5a:ae:7b:9c:ae:41:5b:b6:f9:75:a5:ca:de:
98:e7:b8:3d:db:a0:bd:4b:35:74:e0:c0:62:90:12:
54:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:99:90:2B:03:DA:DB:81:78:FE:90:8B:FF:82:BA:CC:9A:92:D2:53
X509v3 Authority Key Identifier:
keyid:0C:71:61:E6:22:F6:3C:0D:B8:56:8D:8C:B4:C4:D7:C0:D9:80:83:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DHFh5iL2PA24Vo2MtMTXwNmAg0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01f08c-065e-4ac1-8e80-b15e3f09e01b/1/sZmQKwPa24F4_pCL_4K6zJqS0lM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01f08c-065e-4ac1-8e80-b15e3f09e01b/1/DHFh5iL2PA24Vo2MtMTXwNmAg0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.7.8.0/24
195.7.10.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:7f:37:43:32:4a:68:a1:7f:53:b7:24:9b:11:f4:af:53:c7:
9e:0c:15:e2:ca:cc:40:55:31:b6:67:5a:bf:bc:86:a9:b2:08:
49:45:c5:12:a0:78:7a:ac:6f:6a:eb:f6:ea:1f:0c:cc:15:2e:
ed:59:ba:d2:19:85:7d:b1:f9:58:0d:16:cb:6b:27:1a:eb:cb:
ed:e8:67:7a:d5:57:93:fb:9b:50:da:5f:e4:86:df:5a:38:1f:
81:bb:88:6f:2d:57:64:b5:58:45:5e:db:0a:de:1c:7b:ac:97:
cf:c2:ee:63:85:bf:58:f7:5b:6d:ff:42:53:c9:16:d6:09:84:
0b:c5:0c:f4:b9:31:85:e4:5f:7c:e0:bf:e4:3d:a5:54:b8:2b:
e0:90:8f:ab:bb:76:16:35:90:14:99:ba:61:d2:41:af:dd:69:
08:62:db:df:4e:66:33:f8:21:60:a0:c4:73:c3:4c:59:f1:a9:
28:9b:2e:bb:ec:cb:02:83:2b:b9:bf:e9:62:86:9a:34:13:39:
18:22:c5:13:10:37:3a:0a:f5:c2:bc:ce:2c:c5:b3:82:51:36:
2e:cc:6d:ec:2b:f1:f0:42:66:fe:36:a9:4b:06:1b:bf:29:53:
3f:e3:32:55:af:e5:9d:14:92:89:a8:41:db:ff:a4:2a:a7:8d:
09:5e:53:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:46 2024 by rpki-client on console-ams.rpki-client.org