Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/0IEi-p56QhbCSoiPT7YWBnMDd4Y.roa
File: 0IEi-p56QhbCSoiPT7YWBnMDd4Y.roa (raw, json)
Hash identifier: 1Wz+cgXVzZjzRpl92WOHT6ItWK3fSzhyVznspcr2tEs=
Subject key identifier: D0:81:22:FA:9E:7A:42:16:C2:4A:88:8F:4F:B6:16:06:73:03:77:86
Certificate issuer: /CN=a2d08cdc6a430ef0da8829917256b6ad8d0a36f9
Certificate serial: 018A3ADA9AB6650A4676FC74EC2006AEB3B6
Authority key identifier: A2:D0:8C:DC:6A:43:0E:F0:DA:88:29:91:72:56:B6:AD:8D:0A:36:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/otCM3GpDDvDaiCmRcla2rY0KNvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/0IEi-p56QhbCSoiPT7YWBnMDd4Y.roa
Signing time: Mon 28 Aug 2023 06:35:19 +0000
ROA not before: Mon 28 Aug 2023 06:35:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60652
IP address blocks: 195.137.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:3a:da:9a:b6:65:0a:46:76:fc:74:ec:20:06:ae:b3:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2d08cdc6a430ef0da8829917256b6ad8d0a36f9
Validity
Not Before: Aug 28 06:35:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d08122fa9e7a4216c24a888f4fb6160673037786
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:29:72:76:29:06:33:50:24:93:e0:66:90:71:
0f:ff:02:a9:3a:8f:71:ff:32:1e:5e:52:f7:a8:32:
a7:15:10:6d:a0:0c:b1:58:bc:94:d1:cf:d2:7e:0c:
88:90:4b:a6:68:fb:5f:ae:7b:b6:5f:c4:05:61:68:
2c:67:cd:b0:9b:b6:3a:26:b3:c1:11:3b:c0:5b:12:
c8:71:3f:24:eb:4e:61:f5:03:3a:83:e4:6e:69:79:
fc:42:53:df:3b:82:b0:56:5e:76:b5:45:2d:94:97:
80:94:a9:82:42:11:4e:a0:fc:35:27:6a:69:30:a7:
80:23:8c:db:4e:5c:c4:77:38:a2:fb:7a:87:ed:3d:
b6:8a:3d:4b:67:56:ce:73:c5:f5:9d:ae:3a:90:2c:
39:46:f9:6e:4e:8d:d6:9b:40:27:c5:46:e5:0a:d8:
ba:c4:38:dd:80:55:af:80:eb:ee:db:8b:06:b3:50:
7f:33:f9:79:6a:2d:7a:55:08:70:04:f8:e1:4f:a0:
a6:87:82:f6:3c:3b:ed:e4:a0:12:c3:b1:d1:9d:42:
cf:25:4d:46:4f:ad:f3:cc:04:57:83:ff:33:17:84:
c4:e6:6d:91:18:36:1f:0b:c2:64:cf:fc:1e:fe:5e:
1f:9e:48:25:e2:2c:57:83:4a:97:69:ad:57:24:ec:
cc:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:81:22:FA:9E:7A:42:16:C2:4A:88:8F:4F:B6:16:06:73:03:77:86
X509v3 Authority Key Identifier:
keyid:A2:D0:8C:DC:6A:43:0E:F0:DA:88:29:91:72:56:B6:AD:8D:0A:36:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/otCM3GpDDvDaiCmRcla2rY0KNvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/0IEi-p56QhbCSoiPT7YWBnMDd4Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.137.230.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:15:f1:bb:3b:a4:db:56:f7:5c:7d:26:4c:0e:c9:12:88:58:
e3:00:f8:9e:05:50:2b:dd:d8:6e:0d:db:1e:be:b1:f4:7a:80:
51:4f:0b:8c:19:99:53:1f:fd:cb:1f:ba:9b:1f:04:71:da:0e:
f4:48:de:d6:9a:57:e7:24:0d:d2:66:a0:a8:1c:55:c9:b4:2a:
b7:eb:d3:dc:ef:7f:1e:f3:c2:72:6f:5a:0f:69:0c:47:93:ee:
06:71:97:78:1d:95:76:e7:5d:e9:95:b4:81:c0:6c:09:65:59:
6f:e2:ed:e4:6b:f5:eb:1f:73:6f:fe:de:90:27:40:21:ab:28:
d3:ce:eb:92:6c:eb:55:a4:91:65:c5:b9:40:4c:b8:2c:85:93:
29:a1:46:b7:68:33:7f:5b:b0:ad:9c:cf:b9:ea:da:02:e1:32:
9a:a1:0a:a6:db:fb:39:ff:57:15:7e:65:a8:6b:ad:88:ad:83:
af:b3:0f:71:fd:5a:95:18:d7:14:1f:aa:98:67:33:87:ea:e9:
b8:38:de:98:7a:53:28:0a:ab:76:56:7c:b8:0e:e0:b6:8a:fc:
2a:f9:79:11:93:dd:5b:cb:35:5c:c2:50:46:54:6a:74:5a:64:
98:04:a6:e5:35:28:6c:b0:da:ba:d1:fc:ee:09:7b:03:ae:1e:
e4:c6:b1:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:49 2024 by rpki-client on console-fra.rpki-client.org