Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/Q8GYecqYyXokE6n9p_fNE2DMZFE.roa
File: Q8GYecqYyXokE6n9p_fNE2DMZFE.roa (raw, json)
Hash identifier: bUnoX5jNYqE8pgy7B/XJi/u9iPi0gCxu4ektfzanYrQ=
Subject key identifier: 43:C1:98:79:CA:98:C9:7A:24:13:A9:FD:A7:F7:CD:13:60:CC:64:51
Certificate issuer: /CN=2b051ef23060eb51bfd8c79795f6a4daf48a3aa0
Certificate serial: 018A0A797038E4D26E98143520ADE16C2B09
Authority key identifier: 2B:05:1E:F2:30:60:EB:51:BF:D8:C7:97:95:F6:A4:DA:F4:8A:3A:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KwUe8jBg61G_2MeXlfak2vSKOqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/Q8GYecqYyXokE6n9p_fNE2DMZFE.roa
Signing time: Fri 18 Aug 2023 21:07:25 +0000
ROA not before: Fri 18 Aug 2023 21:07:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 195.234.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:0a:79:70:38:e4:d2:6e:98:14:35:20:ad:e1:6c:2b:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b051ef23060eb51bfd8c79795f6a4daf48a3aa0
Validity
Not Before: Aug 18 21:07:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=43c19879ca98c97a2413a9fda7f7cd1360cc6451
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:31:57:36:1a:e4:26:1e:0d:47:f3:0c:bd:80:
16:59:1b:3d:d8:2d:d8:e0:fa:df:d4:1c:6f:5d:95:
27:6f:1d:d8:00:2b:8d:59:70:bd:f4:4f:15:49:5a:
2d:1d:56:87:bb:28:86:84:4a:f3:c5:ff:e1:0f:6d:
8c:82:cc:a7:ae:aa:a5:5c:96:a0:22:80:26:0f:3b:
2b:2b:64:54:9e:0d:db:40:4f:d1:cd:ad:0b:d0:17:
76:b8:9f:54:b8:eb:7c:1e:1a:ba:3e:58:c2:12:3e:
90:91:fe:29:3a:2e:f4:9b:58:d5:79:5c:1b:68:f7:
d6:37:39:6c:ac:66:19:e0:f8:47:45:33:02:49:74:
f7:18:8f:d2:34:01:43:4e:45:0f:4e:fb:f3:f5:31:
a9:ca:b3:0c:fe:f9:c1:12:05:83:91:e7:7b:09:87:
4c:19:bb:d1:46:1b:19:b4:30:a4:34:c5:99:eb:7e:
eb:a7:a1:5f:a1:d8:9a:7d:88:8e:3a:24:bc:a1:6b:
8a:e1:a0:37:7e:74:a4:7c:10:eb:ad:8d:83:76:11:
de:17:43:e7:91:fe:4c:02:44:8d:20:af:59:d7:31:
f6:6d:9e:e7:c9:ff:ce:30:f1:52:9d:40:16:c5:c1:
a3:ab:ec:41:cb:7c:a1:62:cd:b2:56:18:1d:ce:58:
b6:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:C1:98:79:CA:98:C9:7A:24:13:A9:FD:A7:F7:CD:13:60:CC:64:51
X509v3 Authority Key Identifier:
keyid:2B:05:1E:F2:30:60:EB:51:BF:D8:C7:97:95:F6:A4:DA:F4:8A:3A:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KwUe8jBg61G_2MeXlfak2vSKOqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/Q8GYecqYyXokE6n9p_fNE2DMZFE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/KwUe8jBg61G_2MeXlfak2vSKOqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.234.153.0/24
Signature Algorithm: sha256WithRSAEncryption
10:67:e6:1e:ba:62:99:b5:96:0d:30:fc:ed:fe:14:f4:45:53:
8c:52:a0:a7:2e:af:4b:a6:bd:16:cc:d2:88:fc:43:e4:aa:dd:
d2:67:42:15:65:96:9c:16:77:bf:d9:24:87:2f:98:31:17:6d:
8b:57:58:b7:f1:a0:05:84:13:03:28:be:ca:ff:1d:ed:fc:e4:
8f:a2:0f:2e:dd:ff:92:ae:e2:77:db:a3:74:41:4e:e7:63:6a:
7e:2e:ac:bb:b3:9f:ac:6a:3e:e7:fb:a7:ed:25:2f:1d:09:ef:
21:d3:6e:26:23:57:25:3a:59:02:ec:17:ca:c9:9f:e5:b6:bd:
bb:ca:22:02:00:70:10:91:09:c6:55:a9:fe:de:f4:47:94:00:
86:44:59:4f:ef:d9:91:94:a1:83:5b:27:ee:ef:26:48:13:2a:
5e:29:42:c9:2c:2e:9c:44:d8:4c:32:9d:02:ff:aa:2d:48:7d:
f6:36:9b:8d:de:0d:f3:5a:4c:ea:8d:9d:3d:ef:2f:c9:a7:2e:
71:b7:f7:91:11:31:1c:d0:b5:4f:63:1c:67:72:fc:fc:04:6b:
2b:e1:36:93:fd:10:12:d3:f8:b6:15:ab:92:e6:75:c2:ad:d4:
73:f5:2e:a6:e8:de:8a:8d:f0:58:36:d7:99:69:ed:a8:41:40:
b2:46:b0:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:42 2024 by rpki-client on console-fra.rpki-client.org