Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/0d64e2-e2da-468a-8f7d-7fe328571938/1/jY2uliuuMLvr1kJlwMt0qIWHh1c.roa
File: jY2uliuuMLvr1kJlwMt0qIWHh1c.roa (raw, json)
Hash identifier: +CI+TAPlrKIXQoqxV9xnSb+df60i57bzRUSbn6I7rR4=
Subject key identifier: 8D:8D:AE:96:2B:AE:30:BB:EB:D6:42:65:C0:CB:74:A8:85:87:87:57
Certificate issuer: /CN=39f086ca6211bb95d0643089c7da576fe67c2152
Certificate serial: 018CC492EAD22A9AB13DE125BDCE08799054
Authority key identifier: 39:F0:86:CA:62:11:BB:95:D0:64:30:89:C7:DA:57:6F:E6:7C:21:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OfCGymIRu5XQZDCJx9pXb-Z8IVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/0d64e2-e2da-468a-8f7d-7fe328571938/1/jY2uliuuMLvr1kJlwMt0qIWHh1c.roa
Signing time: Mon 01 Jan 2024 10:30:11 +0000
ROA not before: Mon 01 Jan 2024 10:30:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 195.211.164.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Apr 2024 10:13:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:92:ea:d2:2a:9a:b1:3d:e1:25:bd:ce:08:79:90:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39f086ca6211bb95d0643089c7da576fe67c2152
Validity
Not Before: Jan 1 10:30:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8d8dae962bae30bbebd64265c0cb74a885878757
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:33:f1:e6:09:75:ba:52:00:5e:b4:43:4d:5d:
b7:7c:e4:0d:c8:6b:95:5d:a9:bd:af:4b:09:3b:aa:
c9:23:c1:49:23:fa:00:2f:61:11:3a:e1:09:82:52:
9b:8b:14:38:68:61:46:28:66:ab:a6:3f:d0:b3:05:
20:06:e8:13:68:56:a8:a7:9d:b2:57:0d:dd:ef:6e:
c7:3b:78:e8:7e:bc:e7:9c:75:27:7f:55:60:0e:30:
4c:45:d7:c4:6e:83:44:bc:28:95:d9:a9:65:ff:da:
c1:25:c6:4c:92:0e:af:3f:d0:79:61:9e:ed:ed:d3:
21:54:b8:ff:8a:04:ca:42:e2:0c:c3:26:d5:1e:c2:
b2:cf:e0:c2:09:ff:ca:eb:fa:4c:6b:4c:df:df:5f:
a4:89:93:51:7e:ca:6d:69:ca:73:48:33:08:63:f1:
ba:69:b4:d6:35:7e:a2:4b:3f:85:31:d3:c5:04:3f:
fa:a2:b7:e5:7e:fb:58:00:e1:fa:57:53:a4:2c:a1:
28:57:dd:da:ac:0f:62:b9:0a:da:5e:04:82:f4:88:
17:31:9f:a7:ce:70:26:8b:df:94:9d:dc:61:a0:b3:
74:c7:60:47:2a:6f:37:03:fc:03:e2:d6:02:a0:b8:
85:c4:67:09:59:25:68:dc:8e:32:93:d1:dd:b9:b8:
98:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:8D:AE:96:2B:AE:30:BB:EB:D6:42:65:C0:CB:74:A8:85:87:87:57
X509v3 Authority Key Identifier:
keyid:39:F0:86:CA:62:11:BB:95:D0:64:30:89:C7:DA:57:6F:E6:7C:21:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OfCGymIRu5XQZDCJx9pXb-Z8IVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/0d64e2-e2da-468a-8f7d-7fe328571938/1/jY2uliuuMLvr1kJlwMt0qIWHh1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/0d64e2-e2da-468a-8f7d-7fe328571938/1/OfCGymIRu5XQZDCJx9pXb-Z8IVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.211.164.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:62:81:98:42:14:d8:f9:7f:8f:80:1a:19:e5:eb:9a:0c:f4:
20:cd:e8:b5:31:ac:29:91:e7:d2:18:2d:ad:e9:87:8d:88:0a:
ca:1e:c0:70:f3:b3:ec:66:15:f7:67:c6:b2:59:fe:5a:68:26:
a6:47:45:e4:1e:fd:9a:b8:be:d5:e3:af:1e:9a:46:59:39:56:
65:88:57:32:5e:83:a3:08:36:7b:81:aa:50:ec:d6:4c:34:7e:
8f:ff:3f:76:6b:4a:0c:82:87:3f:09:cb:64:0f:6c:d8:d4:4f:
bb:d5:0c:d0:3e:9f:06:b2:e1:d2:f3:2b:65:23:36:5c:08:ac:
51:c2:f2:65:61:83:34:b8:67:f8:7c:8d:3f:da:65:47:9d:f7:
6d:38:f0:0a:d9:d3:80:f7:e1:a8:96:ca:f3:0f:e5:e9:50:0c:
da:9b:9f:14:01:c1:7e:d3:7b:25:96:98:30:50:d3:29:71:5f:
cc:46:21:75:3b:34:85:c5:90:87:4c:26:f3:e6:c3:ab:f2:c8:
4b:ab:b1:15:6e:20:a5:c0:15:4c:19:aa:d7:b6:6c:16:5f:50:
1f:f9:df:d0:49:a9:69:35:c4:19:79:18:3b:76:04:0d:f6:65:
17:3c:f6:3b:ce:24:3e:45:64:e5:08:93:ef:3f:7f:d5:81:fa:
58:05:68:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:47 2024 by rpki-client on console-ams.rpki-client.org