Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/9a10c3-212f-4c5e-97bb-e0d576a5450e/1/drlK8LSM2nZIQ3w02F4fW4RhrTA.roa
File: drlK8LSM2nZIQ3w02F4fW4RhrTA.roa (raw, json)
Hash identifier: znHjKA9uSGku1xLi4c8LtgOZ1F0nbApfcAtLYYdsmmA=
Subject key identifier: 76:B9:4A:F0:B4:8C:DA:76:48:43:7C:34:D8:5E:1F:5B:84:61:AD:30
Certificate issuer: /CN=71986731925be8551a53091afe6d0972dfa3807e
Certificate serial: 018B3E2EB790073B01AF801504E4A0F33CD9
Authority key identifier: 71:98:67:31:92:5B:E8:55:1A:53:09:1A:FE:6D:09:72:DF:A3:80:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cZhnMZJb6FUaUwka_m0Jct-jgH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/9a10c3-212f-4c5e-97bb-e0d576a5450e/1/drlK8LSM2nZIQ3w02F4fW4RhrTA.roa
Signing time: Tue 17 Oct 2023 15:08:50 +0000
ROA not before: Tue 17 Oct 2023 15:08:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211007
IP address blocks: 195.85.222.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:3e:2e:b7:90:07:3b:01:af:80:15:04:e4:a0:f3:3c:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71986731925be8551a53091afe6d0972dfa3807e
Validity
Not Before: Oct 17 15:08:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=76b94af0b48cda7648437c34d85e1f5b8461ad30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c8:fb:6e:4d:30:f3:cc:ac:f8:82:89:c6:b1:
59:34:98:70:5d:ec:8a:9d:06:d3:bf:59:77:87:72:
53:f4:c7:ca:2e:45:29:13:0b:71:7c:73:79:b1:02:
dc:b5:2b:75:72:cb:96:75:1c:12:3f:fb:7a:79:35:
05:58:25:26:8b:92:1b:e9:e8:d5:dd:6f:90:4a:83:
61:99:e1:1b:63:ae:69:5b:09:b5:98:41:80:de:34:
f8:47:c8:43:38:e2:49:e3:af:fc:e6:df:83:1c:97:
bb:da:07:b1:0e:8b:98:8e:f8:32:8b:a9:ad:31:8b:
89:a1:01:02:32:f3:ce:02:08:2d:e6:06:55:2c:3e:
f8:a5:91:af:f1:21:fc:e7:5b:75:1b:9c:de:7b:ed:
cc:da:5e:3c:ec:4a:24:7f:c2:c2:44:57:62:49:1c:
ee:e7:8d:d2:52:48:52:9f:0c:c6:f3:3c:65:51:27:
83:f1:e1:cf:d9:52:9d:09:97:f4:47:d1:1f:21:a0:
6f:e3:72:1d:20:37:93:a2:1a:92:c2:9c:d3:19:4b:
e3:39:c2:67:05:77:39:ef:0a:4d:a6:53:89:11:18:
e3:6c:f9:12:c6:64:28:f9:e0:24:af:73:8d:fe:3c:
60:d6:72:fc:9c:b3:af:cb:64:c8:fe:61:94:9f:87:
5e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:B9:4A:F0:B4:8C:DA:76:48:43:7C:34:D8:5E:1F:5B:84:61:AD:30
X509v3 Authority Key Identifier:
keyid:71:98:67:31:92:5B:E8:55:1A:53:09:1A:FE:6D:09:72:DF:A3:80:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cZhnMZJb6FUaUwka_m0Jct-jgH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/9a10c3-212f-4c5e-97bb-e0d576a5450e/1/drlK8LSM2nZIQ3w02F4fW4RhrTA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/9a10c3-212f-4c5e-97bb-e0d576a5450e/1/cZhnMZJb6FUaUwka_m0Jct-jgH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.85.222.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:fd:40:7a:63:ce:9b:fa:a0:51:0b:2d:db:95:b8:47:38:e1:
ff:64:04:0c:b9:f1:b6:21:fd:30:44:fa:9b:5e:8b:3c:56:db:
eb:07:b1:ff:53:7d:36:9d:18:83:ea:49:23:87:c3:2b:41:6b:
ad:19:24:b5:fe:81:56:80:81:2f:82:0b:c5:70:8b:2b:91:46:
95:f8:38:22:27:d5:d3:72:00:cb:f8:eb:fc:01:20:10:98:62:
b4:7c:9a:2a:f2:e9:d7:28:ed:a8:d6:e9:57:04:d9:f8:e3:12:
11:94:8a:01:0a:d2:79:ed:bc:5e:7e:dc:5d:f2:14:be:1a:c2:
27:38:9e:79:f1:16:1e:c5:95:db:90:f6:09:b4:be:cd:64:70:
5f:19:d0:65:04:a8:74:c6:db:a8:7d:94:4c:bf:12:3d:14:26:
6d:5f:a2:d7:ae:eb:e5:5b:f4:77:57:e7:f8:24:6d:bb:e6:19:
de:38:32:83:dc:a4:31:13:a9:7f:e5:58:37:a2:b6:e1:1d:02:
71:cf:ff:9d:ae:79:d2:7c:d4:cf:5e:5e:0e:48:22:3b:57:74:
46:d4:41:4f:49:1a:29:d1:60:52:d4:b3:f6:6e:5b:59:0e:ec:
21:25:45:9e:41:39:82:57:88:65:94:e6:bc:3b:b5:f6:2d:27:
81:7f:a1:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:18 2024 by rpki-client on console-ams.rpki-client.org