Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/a3glJ4G5WfZ61zdtqHZXUqaA4J0.roa
File: a3glJ4G5WfZ61zdtqHZXUqaA4J0.roa (raw, json)
Hash identifier: snHChEWaT29PSMJkx9q2pwPIOzHFT4GMEXkQU+9vpYg=
Subject key identifier: 6B:78:25:27:81:B9:59:F6:7A:D7:37:6D:A8:76:57:52:A6:80:E0:9D
Certificate issuer: /CN=0bf543e23e29fb03748d0939726f30fe9affa19e
Certificate serial: 0185726B726E1C956069E7F4DF1ECDD59D05
Authority key identifier: 0B:F5:43:E2:3E:29:FB:03:74:8D:09:39:72:6F:30:FE:9A:FF:A1:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/a3glJ4G5WfZ61zdtqHZXUqaA4J0.roa
Signing time: Mon 02 Jan 2023 12:18:42 +0000
ROA not before: Mon 02 Jan 2023 12:18:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60829
IP address blocks: 188.95.151.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:6b:72:6e:1c:95:60:69:e7:f4:df:1e:cd:d5:9d:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bf543e23e29fb03748d0939726f30fe9affa19e
Validity
Not Before: Jan 2 12:18:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6b78252781b959f67ad7376da8765752a680e09d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:64:8c:33:82:31:3e:58:22:80:42:b3:48:ed:
cd:29:d3:b4:b9:ed:d9:d9:aa:12:6c:e0:13:f1:06:
6c:ea:6a:b0:fb:a6:50:1f:de:d9:26:c4:48:84:d6:
44:72:6f:0a:88:b6:5d:f5:72:1b:51:4e:f9:68:7c:
23:88:55:d8:5a:b7:3a:89:3e:e3:68:90:fc:f9:f2:
85:46:05:dc:5f:6d:5a:68:46:fd:5d:7d:3c:af:51:
cc:ba:c0:d1:1d:68:26:e4:57:66:78:c8:ad:76:f7:
1c:66:cf:7b:73:96:14:db:ce:7a:1b:fb:94:52:30:
c8:d4:90:7e:e8:1e:84:c8:45:c5:1b:a1:09:26:6c:
74:2a:94:41:b3:39:7f:87:86:70:38:a9:c9:dd:81:
8b:c2:b7:f3:9f:13:63:f1:47:bd:ff:76:4f:d3:a3:
bd:eb:37:48:ad:f0:2d:f0:81:b6:0a:99:d9:14:56:
3f:54:da:9b:1e:e9:38:23:4f:96:32:b0:01:62:96:
f7:a4:16:5a:7b:f4:d1:12:5d:ac:8f:2b:ff:09:fb:
7b:40:1c:cc:1f:71:d6:6c:78:6c:d3:c1:17:94:ec:
35:95:fa:bc:36:0e:11:2d:b1:0b:f5:3e:ec:79:c7:
87:8b:96:cd:30:5a:f1:fd:32:0b:21:da:ba:a8:96:
80:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:78:25:27:81:B9:59:F6:7A:D7:37:6D:A8:76:57:52:A6:80:E0:9D
X509v3 Authority Key Identifier:
keyid:0B:F5:43:E2:3E:29:FB:03:74:8D:09:39:72:6F:30:FE:9A:FF:A1:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/a3glJ4G5WfZ61zdtqHZXUqaA4J0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.95.151.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:83:c7:d8:63:ae:55:87:7d:a0:b9:92:f5:d0:57:20:40:37:
81:23:8e:47:14:e1:fa:14:18:e8:41:3f:be:28:16:66:67:79:
54:28:50:a4:08:f4:c4:b0:7b:68:b2:8f:52:24:00:02:2c:79:
70:b3:10:79:50:12:43:dd:47:9e:ed:32:5a:27:6f:d2:5a:28:
c3:e0:f9:7e:7a:fb:ae:b3:51:8d:3c:80:59:55:01:0e:40:56:
45:dc:c7:b1:45:97:76:d6:f3:4d:be:84:35:0d:b4:0c:76:7d:
04:c3:9e:4a:5f:58:95:e2:32:da:72:7a:b6:85:27:ca:89:9f:
0e:a9:b1:56:15:be:cb:50:ac:8d:7c:6e:6e:e6:37:a7:35:1a:
0e:e2:c0:3f:f2:0a:be:86:db:f7:93:a1:e6:1d:af:ee:5a:c4:
cd:6f:8a:0e:10:94:e0:d9:b3:30:16:21:12:67:bd:c9:c1:56:
78:14:df:a8:f0:d4:5b:85:8c:73:0c:10:5b:fd:6f:64:76:aa:
b6:fb:3f:ed:a7:9c:fc:39:c4:b0:15:3f:f2:f5:57:c9:70:bb:
e0:3d:eb:ee:7a:0c:24:fc:b6:b1:d1:da:41:01:38:70:e0:03:
fb:98:c4:96:58:b5:65:35:c3:46:75:49:e3:56:bd:63:64:f8:
e7:d5:49:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:03 2024 by rpki-client on console-fra.rpki-client.org