Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e5195d-6698-4604-9114-68b3768f50dc/1/bITf1f7hkQaDjXqiy3nHV_yZoag.roa
File: bITf1f7hkQaDjXqiy3nHV_yZoag.roa (raw, json)
Hash identifier: APpaqt+J74bYpHVq5U31pf+JSE+9iSFqvK9po2G9qIk=
Subject key identifier: 6C:84:DF:D5:FE:E1:91:06:83:8D:7A:A2:CB:79:C7:57:FC:99:A1:A8
Certificate issuer: /CN=4d7683d6ea539fef1b6b6dbdd74a31d05e5f0a23
Certificate serial: 0185723A1D1527585202A173E815DF9553C5
Authority key identifier: 4D:76:83:D6:EA:53:9F:EF:1B:6B:6D:BD:D7:4A:31:D0:5E:5F:0A:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TXaD1upTn-8ba22910ox0F5fCiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e5195d-6698-4604-9114-68b3768f50dc/1/bITf1f7hkQaDjXqiy3nHV_yZoag.roa
Signing time: Mon 02 Jan 2023 11:24:49 +0000
ROA not before: Mon 02 Jan 2023 11:24:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 63140
IP address blocks: 195.244.30.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:3a:1d:15:27:58:52:02:a1:73:e8:15:df:95:53:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d7683d6ea539fef1b6b6dbdd74a31d05e5f0a23
Validity
Not Before: Jan 2 11:24:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c84dfd5fee19106838d7aa2cb79c757fc99a1a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:e0:1c:57:51:37:81:00:4a:a4:7a:69:33:03:
5e:ed:7f:ad:8f:0e:98:a4:78:fb:8a:4b:f6:30:62:
7e:60:7f:f0:d5:0b:f4:b7:36:bb:41:8f:33:51:1f:
c0:2e:a3:35:8c:61:fe:48:6a:9b:1b:f6:a4:5d:fc:
88:4c:dc:82:3e:9e:ec:f2:83:88:d3:70:7c:cc:a8:
bb:a9:b9:ef:bb:34:1d:e7:11:93:70:51:0c:f4:6c:
f2:34:09:0e:af:47:24:53:8e:0d:ab:5f:30:6e:7c:
69:cb:19:76:e4:19:88:5b:1b:20:2a:41:10:f2:1c:
77:77:89:3c:1a:82:c5:ac:6b:ef:0a:20:0e:9d:a9:
e4:94:b6:b4:42:ef:f0:01:58:51:73:f4:92:e5:0b:
cc:92:76:5c:40:fe:a8:7d:34:35:b3:2d:c6:0e:97:
6d:47:54:cf:90:8d:a3:77:d4:37:3f:7e:62:50:ac:
53:8c:98:d2:db:f1:1b:ee:35:87:10:ec:28:72:4c:
bf:5e:35:87:e5:6b:d8:e7:8a:9c:05:a4:ea:51:51:
40:c0:a3:87:f8:6e:19:7d:d9:2a:d2:eb:34:7d:cd:
66:ba:fd:35:92:e5:31:46:53:8b:9c:50:1b:65:ea:
23:7e:98:40:b6:cb:6e:af:b7:c7:70:fa:05:ca:7e:
ae:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:84:DF:D5:FE:E1:91:06:83:8D:7A:A2:CB:79:C7:57:FC:99:A1:A8
X509v3 Authority Key Identifier:
keyid:4D:76:83:D6:EA:53:9F:EF:1B:6B:6D:BD:D7:4A:31:D0:5E:5F:0A:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TXaD1upTn-8ba22910ox0F5fCiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e5195d-6698-4604-9114-68b3768f50dc/1/bITf1f7hkQaDjXqiy3nHV_yZoag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e5195d-6698-4604-9114-68b3768f50dc/1/TXaD1upTn-8ba22910ox0F5fCiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.244.30.0/23
Signature Algorithm: sha256WithRSAEncryption
06:ac:5d:08:65:f6:91:c7:c7:cd:45:6c:d6:67:21:a8:6a:1d:
e6:ae:44:59:f4:b2:82:17:7f:0b:9e:95:8e:01:e7:50:d9:67:
ff:09:f2:2c:87:27:e5:90:ca:89:34:37:5b:3b:9d:f9:69:2d:
cf:13:b3:95:70:f3:da:04:c8:7f:6f:9e:b1:43:26:57:73:3e:
51:de:5b:8b:5d:f5:e1:31:bf:d1:38:38:7f:ff:b1:bf:f5:0c:
f3:fd:bb:28:09:55:c2:4c:13:bc:e3:60:45:f4:34:3b:39:f4:
bc:26:b7:c0:ad:07:c4:cf:9e:96:c5:53:0c:f8:74:90:9a:01:
b8:30:09:cc:e2:c9:29:95:6d:09:2d:77:7e:03:f6:10:cf:80:
8c:ae:19:80:96:f0:e1:49:aa:4a:08:e2:f8:29:71:0b:b3:ca:
e4:f0:16:9b:d7:48:78:70:a3:00:b4:a6:71:2f:60:c2:64:01:
73:51:6e:ae:2b:90:f6:2b:b2:9d:7f:fc:67:b3:86:ea:b5:5c:
44:41:0d:ec:60:d0:f1:ea:4f:6e:2b:cf:8a:14:2d:fb:da:78:
5e:6a:16:c4:bc:6c:9f:b2:f4:99:9d:21:f1:1c:c3:33:9b:f8:
f8:3a:9c:c1:ea:9d:a4:11:30:cd:e0:b4:74:67:3e:d0:0d:c2:
2c:df:de:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:11 2024 by rpki-client on console-fra.rpki-client.org