Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/ed94b1-b573-45e4-9e21-3f42c71780bc/1/V3j5RvJo8hPmLp3nR4C6ZyHpuTA.roa
File: V3j5RvJo8hPmLp3nR4C6ZyHpuTA.roa (raw, json)
Hash identifier: bBt5KNVy7OCMDsRSjukkDbYmCT4mNgBvB4ncxsq2UAg=
Subject key identifier: 57:78:F9:46:F2:68:F2:13:E6:2E:9D:E7:47:80:BA:67:21:E9:B9:30
Certificate issuer: /CN=851272e4e8186b9cf3d1eb42665c53ce714f4d4b
Certificate serial: 0186EAC0CE92805D1E37C265CEF0AF779531
Authority key identifier: 85:12:72:E4:E8:18:6B:9C:F3:D1:EB:42:66:5C:53:CE:71:4F:4D:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hRJy5OgYa5zz0etCZlxTznFPTUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/ed94b1-b573-45e4-9e21-3f42c71780bc/1/V3j5RvJo8hPmLp3nR4C6ZyHpuTA.roa
Signing time: Thu 16 Mar 2023 14:09:09 +0000
ROA not before: Thu 16 Mar 2023 14:09:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12337
IP address blocks: 195.190.8.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ea:c0:ce:92:80:5d:1e:37:c2:65:ce:f0:af:77:95:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=851272e4e8186b9cf3d1eb42665c53ce714f4d4b
Validity
Not Before: Mar 16 14:09:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5778f946f268f213e62e9de74780ba6721e9b930
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:48:52:62:cb:4a:33:5c:06:19:12:92:80:1f:
3b:40:ca:26:58:b6:d2:99:bc:3d:ee:e8:5d:13:6b:
74:d7:61:7d:95:40:cc:e9:68:13:d7:22:7f:d1:a1:
67:94:a2:6d:3d:ad:00:d5:1f:7b:8e:15:98:75:18:
6b:2d:d6:d5:55:c3:bf:93:d9:d7:16:48:09:d6:60:
f7:9c:00:e0:11:8c:76:7c:13:f2:57:fc:79:a0:e3:
f4:c4:7a:62:45:5e:af:66:39:dd:f7:a7:ef:46:7f:
3d:d0:d7:0d:83:f0:0e:a5:75:33:73:3e:bc:b9:45:
ee:c3:a5:d2:1c:e7:1d:d0:b8:52:4f:a5:48:cf:58:
24:3a:f7:a4:40:99:70:b7:6d:85:3d:78:ae:ef:cc:
3a:f1:91:ed:2f:f0:82:6b:03:6e:66:8c:d7:f0:4b:
e2:d9:59:25:61:7a:b8:af:c2:f9:14:a8:85:b3:0c:
50:30:df:c5:14:e5:d7:00:ba:89:1d:8e:c0:b7:52:
26:a9:32:04:6f:31:c1:da:e9:06:14:83:e0:0f:9e:
05:2f:39:49:c0:60:8a:7c:41:a0:e1:0c:08:40:2a:
72:aa:3b:70:ef:9c:c6:ca:0f:7f:1f:7d:76:e7:56:
c8:75:96:f2:44:7c:17:6e:af:1c:94:b8:16:ef:57:
76:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:78:F9:46:F2:68:F2:13:E6:2E:9D:E7:47:80:BA:67:21:E9:B9:30
X509v3 Authority Key Identifier:
keyid:85:12:72:E4:E8:18:6B:9C:F3:D1:EB:42:66:5C:53:CE:71:4F:4D:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hRJy5OgYa5zz0etCZlxTznFPTUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/ed94b1-b573-45e4-9e21-3f42c71780bc/1/V3j5RvJo8hPmLp3nR4C6ZyHpuTA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/ed94b1-b573-45e4-9e21-3f42c71780bc/1/hRJy5OgYa5zz0etCZlxTznFPTUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.190.8.0/24
Signature Algorithm: sha256WithRSAEncryption
55:90:68:ee:6c:0b:a3:c2:0c:52:48:7b:01:51:39:28:77:c1:
70:ec:43:86:89:d6:e8:e4:87:3e:82:93:81:5f:34:d7:5d:41:
6b:e8:b6:0f:26:20:fd:b9:17:3a:6f:0e:da:ec:df:bb:89:ce:
c0:8b:46:21:9d:cd:e3:b6:65:95:7c:30:57:b9:40:85:0e:89:
7e:bd:4a:dc:6c:76:57:9b:8b:85:e9:a6:21:b6:bb:db:37:3d:
ef:1c:ce:56:9b:f5:7d:7a:29:40:91:85:53:ca:df:0f:22:32:
be:b3:e4:c3:9f:4f:01:5a:8f:5f:80:a5:67:c1:9a:91:84:7c:
fa:79:5f:a8:6c:d1:11:96:61:66:40:de:a8:8a:b4:1a:ca:f2:
0b:b0:ac:a6:ef:8c:fc:5a:c8:fa:f7:42:c6:f9:5c:fa:8f:4d:
e5:84:4e:23:0d:66:2d:34:e9:8a:43:7c:d7:04:3a:f4:fd:bf:
2e:ed:d6:31:15:d5:8b:51:5e:82:23:ae:65:e8:0a:1f:b0:d5:
83:5e:ee:e9:37:c2:5f:94:5f:4a:3c:53:2f:57:22:0b:32:e3:
fc:f0:a2:29:d9:ba:89:d0:2d:3f:02:1c:a7:4e:ad:21:15:50:
f1:e3:6a:2a:ee:d0:3e:5d:59:5d:0b:b7:ee:5a:a4:c0:bb:b6:
fa:9e:81:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:18 2024 by rpki-client on console-fra.rpki-client.org