Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/b13164-2fc3-4e31-bfc3-c58c5393cff8/1/CpYk0cEYqQ-m7yL4fBoUYor1Nwo.roa
File: CpYk0cEYqQ-m7yL4fBoUYor1Nwo.roa (raw, json)
Hash identifier: ROqeGHZQGT9qs5bZEOidPctVQcLVGkzpzJD4/CXvHZE=
Subject key identifier: 0A:96:24:D1:C1:18:A9:0F:A6:EF:22:F8:7C:1A:14:62:8A:F5:37:0A
Certificate issuer: /CN=570d1b39385a3ded1ef063d1a1be93593b71fc2e
Certificate serial: 018571B9ED8B0A079EC5A6BA69AED4B94856
Authority key identifier: 57:0D:1B:39:38:5A:3D:ED:1E:F0:63:D1:A1:BE:93:59:3B:71:FC:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vw0bOThaPe0e8GPRob6TWTtx_C4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/b13164-2fc3-4e31-bfc3-c58c5393cff8/1/CpYk0cEYqQ-m7yL4fBoUYor1Nwo.roa
Signing time: Mon 02 Jan 2023 09:04:48 +0000
ROA not before: Mon 02 Jan 2023 09:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31102
IP address blocks: 195.225.140.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b9:ed:8b:0a:07:9e:c5:a6:ba:69:ae:d4:b9:48:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=570d1b39385a3ded1ef063d1a1be93593b71fc2e
Validity
Not Before: Jan 2 09:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0a9624d1c118a90fa6ef22f87c1a14628af5370a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:77:2f:37:98:28:db:77:db:39:15:3a:fc:2c:
1a:74:34:54:a5:a6:fe:26:c3:01:9f:a4:fd:5b:e4:
20:99:4d:9c:58:bc:a8:eb:9d:68:6d:a9:99:30:df:
6b:b7:6f:c2:ba:66:ea:29:b3:22:21:7c:87:ff:5a:
ee:58:1b:6b:aa:fb:e4:28:b2:3d:af:8e:f5:28:5b:
c5:58:51:be:50:e0:a3:54:3c:c6:a7:30:84:fe:3e:
96:ec:b9:e0:5a:85:2e:55:09:97:72:88:ca:14:ca:
75:50:21:55:87:5f:ad:32:2d:d5:0f:61:30:6f:e7:
d2:e2:e7:f8:66:3e:37:9a:24:02:9c:2d:14:d9:0c:
d4:2a:e3:47:d3:fe:06:91:54:97:e9:9a:e5:ca:f9:
45:97:3b:c2:13:0a:17:fc:b2:3f:b5:19:3f:62:32:
bd:d7:15:1b:51:7b:71:42:5e:42:6e:28:03:1c:13:
fc:36:e5:af:4c:f3:7c:d9:a6:89:fd:6f:bc:45:97:
46:5c:4f:a4:1b:06:fb:2e:10:1f:0e:9d:04:b1:11:
a4:3e:42:c9:9e:dd:e4:1c:6a:af:3e:da:80:f9:41:
ad:66:8c:bd:28:ef:39:22:1b:01:a5:c0:76:7a:51:
f8:81:fa:f5:08:00:45:51:02:b0:79:41:f3:b0:33:
92:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:96:24:D1:C1:18:A9:0F:A6:EF:22:F8:7C:1A:14:62:8A:F5:37:0A
X509v3 Authority Key Identifier:
keyid:57:0D:1B:39:38:5A:3D:ED:1E:F0:63:D1:A1:BE:93:59:3B:71:FC:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vw0bOThaPe0e8GPRob6TWTtx_C4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/b13164-2fc3-4e31-bfc3-c58c5393cff8/1/CpYk0cEYqQ-m7yL4fBoUYor1Nwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/b13164-2fc3-4e31-bfc3-c58c5393cff8/1/Vw0bOThaPe0e8GPRob6TWTtx_C4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.225.140.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:97:05:29:9d:ec:66:63:2f:08:4e:f3:64:6d:b1:31:8f:ee:
3f:51:bb:53:d7:5f:6b:e7:09:ee:df:b8:64:dc:da:31:8f:69:
5f:ba:78:97:82:06:d5:57:12:17:c9:96:21:bc:71:06:ef:03:
6f:b3:82:f4:68:36:4d:e0:4a:6b:8c:2e:96:17:4f:85:84:03:
68:c5:ca:58:e1:4f:09:07:33:6b:66:3e:0e:0d:98:73:a9:08:
18:14:8a:a6:e2:de:97:2f:c6:31:5d:4a:01:25:fc:93:db:8e:
0c:db:96:4a:03:9a:ac:80:4f:e4:31:52:91:63:a5:9b:f7:b0:
6a:25:77:d7:e0:99:0e:6b:96:39:00:ec:fd:d2:52:d9:2d:c3:
4b:f9:b2:8c:9f:18:a8:5b:31:26:a3:66:f1:5d:13:b5:c2:3a:
30:21:89:67:ca:a8:42:1f:c6:0b:15:92:e7:d6:4e:9f:c0:21:
0d:86:3d:6d:1d:b5:e1:69:77:1f:a9:c2:b6:31:dc:89:05:4b:
12:98:a2:2b:b6:8a:be:b2:25:1d:0c:73:c1:23:68:c3:e1:98:
b2:28:02:62:05:87:c9:26:01:54:c7:5c:7e:36:6d:d5:a6:ed:
a8:fc:59:56:56:a2:05:ae:a0:ac:7b:39:55:da:dd:c8:11:88:
d3:07:44:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:52 2024 by rpki-client on console-fra.rpki-client.org