Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/1-GRDbFd-9OnmiejN7bKPPWuFiEM.roa
File: 1-GRDbFd-9OnmiejN7bKPPWuFiEM.roa (raw, json)
Hash identifier: 2RhaMpRIDkvPOj8BfrLrYhCo9MvIhsezkTdvngNX4f4=
Subject key identifier: F8:64:43:6C:57:7E:F4:E9:E6:89:E8:CD:ED:B2:8F:3D:6B:85:88:43
Certificate issuer: /CN=2b051ef23060eb51bfd8c79795f6a4daf48a3aa0
Certificate serial: 0190E8E2EF0060F989100749690950791794
Authority key identifier: 2B:05:1E:F2:30:60:EB:51:BF:D8:C7:97:95:F6:A4:DA:F4:8A:3A:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KwUe8jBg61G_2MeXlfak2vSKOqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/1-GRDbFd-9OnmiejN7bKPPWuFiEM.roa
Signing time: Thu 25 Jul 2024 07:55:04 +0000
ROA not before: Thu 25 Jul 2024 07:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 195.234.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 26 Jul 2024 12:03:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e8:e2:ef:00:60:f9:89:10:07:49:69:09:50:79:17:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b051ef23060eb51bfd8c79795f6a4daf48a3aa0
Validity
Not Before: Jul 25 07:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f864436c577ef4e9e689e8cdedb28f3d6b858843
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:61:fe:80:74:8e:2d:3e:9a:4c:2c:19:9f:05:
ce:61:8a:b5:32:c3:fa:8b:7d:08:d6:c3:e1:ab:42:
39:fa:93:65:05:15:f0:48:9d:d0:ef:ae:46:67:00:
e2:e2:86:df:5a:b9:6d:02:31:e9:54:47:56:30:22:
58:65:d3:ba:4e:b1:92:56:8e:15:62:a3:bf:0c:e8:
d2:a4:3d:5b:ea:98:1d:a7:d9:ee:4b:e1:c5:06:17:
dc:e9:c1:fd:be:b7:8d:24:60:90:22:e9:7b:99:45:
36:49:cb:af:b9:5a:88:58:84:48:a6:b6:62:e1:d5:
ed:d6:58:fa:7f:22:5b:51:38:59:e2:3f:15:c4:16:
67:6a:1f:20:fd:b4:b4:80:e0:22:22:51:09:49:80:
24:ea:bf:b7:8c:9e:dc:7b:84:6e:86:33:1c:2d:e5:
c7:34:94:b7:1d:81:29:fd:dd:2c:86:26:07:27:0d:
0c:a6:da:90:db:5b:98:63:7c:e5:71:ea:9c:7c:d6:
3e:11:8f:f6:fb:03:9b:35:14:f1:32:e4:29:d8:b5:
04:43:4d:90:29:1d:a5:60:25:be:a3:40:88:6c:43:
68:95:0d:cb:b2:5c:c8:67:96:3b:61:fe:7b:c8:db:
06:77:b2:e3:32:b0:d4:8e:57:89:f8:d6:5a:9a:15:
67:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:64:43:6C:57:7E:F4:E9:E6:89:E8:CD:ED:B2:8F:3D:6B:85:88:43
X509v3 Authority Key Identifier:
keyid:2B:05:1E:F2:30:60:EB:51:BF:D8:C7:97:95:F6:A4:DA:F4:8A:3A:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KwUe8jBg61G_2MeXlfak2vSKOqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/1-GRDbFd-9OnmiejN7bKPPWuFiEM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/KwUe8jBg61G_2MeXlfak2vSKOqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.234.153.0/24
Signature Algorithm: sha256WithRSAEncryption
37:b7:e6:60:01:d4:27:94:f6:58:b3:df:38:fa:db:32:20:b2:
79:a7:97:5a:9d:35:a0:2c:a5:39:ed:33:0c:f5:48:dc:86:c1:
d6:35:ea:76:18:30:39:8a:4d:c3:68:dc:a0:f3:bc:57:f2:27:
1d:a5:f9:d5:58:ad:23:eb:9f:bb:fe:e3:a9:08:4b:ef:50:e4:
74:5c:ab:01:36:bd:1e:3e:51:07:cc:41:fb:ee:28:7d:51:c7:
da:02:bd:af:4e:90:f2:b9:d9:ee:67:86:d6:34:2f:21:53:a9:
ea:7f:99:40:20:11:c3:48:f8:d7:6a:f4:d1:6e:3c:eb:b1:bc:
1a:51:25:b0:66:33:cc:d4:47:00:25:d4:9a:36:a3:a5:79:cb:
f3:a8:74:ac:cc:14:dc:6a:6e:9a:01:96:03:08:45:1b:6d:fb:
0a:d1:a2:49:84:7b:46:09:9b:88:3a:b1:95:1b:f3:ae:9f:1c:
bf:19:7f:ce:ee:2c:1c:3f:2f:93:cb:20:18:0f:3a:ac:70:de:
ef:db:6e:ad:7d:d5:4f:cf:21:6d:c8:d6:05:6e:54:86:1f:81:
d1:2c:6b:49:94:17:ee:df:e7:8b:62:65:33:be:43:7f:83:46:
19:a6:16:ce:12:de:72:0d:73:58:07:b4:97:e8:11:f0:25:e0:
bd:5f:bf:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 26 14:10:38 2024 by rpki-client on console-fra.rpki-client.org