Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/nEOzQebysH4QVG03Zkkd-fuDl6o.roa
File: nEOzQebysH4QVG03Zkkd-fuDl6o.roa (raw, json)
Hash identifier: +L5+ZtH1qmLYKDIT9boniP1++YaNrDaojS0dSAn1ZjQ=
Subject key identifier: 9C:43:B3:41:E6:F2:B0:7E:10:54:6D:37:66:49:1D:F9:FB:83:97:AA
Certificate issuer: /CN=2b051ef23060eb51bfd8c79795f6a4daf48a3aa0
Certificate serial: 01856E821217554FF06E7A66E34954141C0E
Authority key identifier: 2B:05:1E:F2:30:60:EB:51:BF:D8:C7:97:95:F6:A4:DA:F4:8A:3A:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KwUe8jBg61G_2MeXlfak2vSKOqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/nEOzQebysH4QVG03Zkkd-fuDl6o.roa
Signing time: Sun 01 Jan 2023 18:04:55 +0000
ROA not before: Sun 01 Jan 2023 18:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 195.234.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 21 Jul 2023 16:17:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:82:12:17:55:4f:f0:6e:7a:66:e3:49:54:14:1c:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b051ef23060eb51bfd8c79795f6a4daf48a3aa0
Validity
Not Before: Jan 1 18:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9c43b341e6f2b07e10546d3766491df9fb8397aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:e9:b8:78:25:db:5a:bd:b0:7a:0d:66:39:c0:
ed:4e:2d:b0:38:92:3a:ff:0b:1f:95:52:4e:54:33:
d6:08:44:d7:79:8f:6d:f5:ec:1f:1f:2e:4a:65:8b:
07:af:21:35:ce:33:98:d3:bb:fd:36:d0:b6:45:07:
9b:9e:ea:ee:c7:5e:b4:78:86:14:99:73:7a:f0:2b:
aa:26:16:58:1e:ec:89:48:60:e9:dd:15:b2:c6:fb:
ca:a3:f6:2e:79:94:39:cb:d1:e9:34:34:80:36:44:
12:d6:fc:70:8a:b6:4f:77:36:ea:61:87:84:f5:20:
51:de:98:ac:41:f4:d9:a7:94:f1:70:7a:46:0e:fc:
a4:a2:b3:06:35:0d:f9:8d:42:ff:5d:25:4e:42:fa:
81:76:f3:ce:d3:1b:a0:c6:5e:1e:ef:ec:09:a3:26:
df:07:8b:b2:96:cb:cb:e3:18:df:1e:b7:63:6f:03:
a4:13:96:f7:b9:be:01:ad:bd:f4:5f:f2:e8:55:e2:
8d:ea:0a:29:84:9c:1f:21:a6:92:c8:bb:e0:e1:58:
67:b8:e2:d6:78:81:d9:cd:21:21:4d:f2:4a:59:be:
00:9d:78:87:e4:9e:fd:94:f9:f7:ba:0f:66:7f:d9:
00:98:f0:1c:bf:7b:91:07:75:51:1f:13:41:2a:ba:
3c:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:43:B3:41:E6:F2:B0:7E:10:54:6D:37:66:49:1D:F9:FB:83:97:AA
X509v3 Authority Key Identifier:
keyid:2B:05:1E:F2:30:60:EB:51:BF:D8:C7:97:95:F6:A4:DA:F4:8A:3A:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KwUe8jBg61G_2MeXlfak2vSKOqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/nEOzQebysH4QVG03Zkkd-fuDl6o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/KwUe8jBg61G_2MeXlfak2vSKOqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.234.153.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:d5:5c:90:3b:e4:e1:67:28:06:20:4c:d9:2c:2c:57:88:e9:
2f:d9:aa:15:f9:a5:d6:c1:1e:49:8b:19:1f:f8:f1:f4:77:4f:
b5:29:37:05:c2:5e:94:ca:39:6c:07:17:fd:1b:2d:1b:e2:9c:
a9:1e:2d:8a:a5:2a:37:54:31:70:3f:22:73:28:98:33:ad:18:
8a:af:e9:fa:e4:4f:43:cc:fa:ca:9b:bc:22:a9:99:60:ad:e2:
15:3c:03:33:f3:b5:bf:3d:65:b4:58:39:db:98:ed:64:55:9f:
4c:8f:62:e2:e4:de:31:27:bc:f9:a2:2f:a9:18:bd:41:59:03:
37:f8:ab:40:92:aa:8d:6a:bb:e0:ac:76:3f:91:04:68:7f:a4:
b5:5b:f1:25:a6:e8:69:0d:27:9a:35:f2:8b:a6:b9:66:e4:74:
59:5d:7f:26:84:40:a4:5c:dd:77:b7:59:18:13:02:59:69:ef:
ba:24:9f:02:19:63:61:3d:e3:c3:aa:17:f1:55:b7:34:99:fe:
9f:57:29:e6:f0:6d:59:b1:96:5e:2c:cb:e1:0b:48:27:22:fc:
04:c8:be:f7:c1:07:2b:70:56:82:13:19:f8:54:d7:d2:35:f0:
26:f4:f1:28:5f:27:24:c0:6c:62:e9:28:d7:b7:ca:34:cb:f4:
f3:60:dd:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:42 2024 by rpki-client on console-fra.rpki-client.org