Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/yx7m_77uFJEYBtHI72Ajwak4oQA.roa
File: yx7m_77uFJEYBtHI72Ajwak4oQA.roa (raw, json)
Hash identifier: AyGpSKpCExdFTvhhm6+38aAlaWejQgYORLBeXpdnBBs=
Subject key identifier: CB:1E:E6:FF:BE:EE:14:91:18:06:D1:C8:EF:60:23:C1:A9:38:A1:00
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 01856DEF6C7BFB7B104C448DA9AEB01EE3A9
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/yx7m_77uFJEYBtHI72Ajwak4oQA.roa
Signing time: Sun 01 Jan 2023 15:24:45 +0000
ROA not before: Sun 01 Jan 2023 15:24:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48690
IP address blocks: 195.187.141.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ef:6c:7b:fb:7b:10:4c:44:8d:a9:ae:b0:1e:e3:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Jan 1 15:24:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb1ee6ffbeee14911806d1c8ef6023c1a938a100
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:24:1f:a5:c5:64:15:06:36:8a:a2:90:d8:43:
7a:5e:ea:16:7f:7a:ff:6d:08:7c:db:28:38:b7:72:
10:fa:6d:bb:4d:b3:1e:2c:0e:50:e8:59:76:09:82:
91:58:09:1b:9d:f7:19:4e:ec:55:fc:b3:a2:5c:4d:
19:cd:59:44:5c:4a:44:24:91:f5:47:67:bd:1a:ac:
b9:6a:fc:11:00:d8:95:c6:a9:7e:57:3f:76:e0:d3:
4a:c8:fd:eb:34:58:b4:23:88:f6:2e:a3:4b:5e:46:
c8:79:ef:90:fe:a6:ba:fb:7f:78:cd:7a:c4:ab:1b:
13:fb:24:94:23:e6:d5:66:a3:c7:a0:0e:82:45:d1:
85:90:db:1c:99:23:a2:20:df:01:85:28:d9:60:dd:
7b:ab:39:10:d4:e5:f0:37:fe:3c:f3:df:b8:53:5e:
0a:95:6e:c0:44:d8:c2:37:ca:ca:e0:58:52:9c:c9:
97:a4:7b:67:c0:40:c3:82:ae:b0:a9:99:3c:48:7c:
df:55:0a:83:cb:ec:95:04:f8:16:b7:f7:61:77:8f:
c4:73:58:fa:89:f6:80:8d:0b:d9:3f:61:ec:30:c4:
1a:ea:c7:aa:aa:8a:be:c9:31:d0:a6:2b:2e:e9:7a:
32:c0:7e:cd:21:88:f8:4e:bf:d2:04:63:c0:0f:68:
45:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:1E:E6:FF:BE:EE:14:91:18:06:D1:C8:EF:60:23:C1:A9:38:A1:00
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/yx7m_77uFJEYBtHI72Ajwak4oQA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.187.141.0/24
Signature Algorithm: sha256WithRSAEncryption
05:79:28:af:d9:5e:c3:43:dc:39:88:24:83:37:1e:85:34:27:
30:bd:9f:b0:00:32:6b:77:fe:1b:34:40:d8:c2:fa:b1:67:b2:
95:d5:93:5a:ba:76:96:50:38:0e:e2:0f:49:dd:4c:f3:22:a8:
9a:2e:8e:f9:ca:2a:33:d8:f4:a7:1c:00:3c:f6:bb:01:3f:a9:
93:27:df:55:a0:03:bd:64:47:0a:29:56:d3:1b:77:85:f6:60:
96:67:8f:7a:26:73:93:64:d5:23:a9:1a:ad:18:25:94:a4:cb:
8c:16:b2:0d:97:77:23:6f:25:80:9a:4b:48:a7:98:bd:8a:34:
f0:ba:6d:8e:51:2c:d5:ad:80:0a:4e:28:33:80:e3:f3:98:33:
2e:89:21:8b:ea:0b:09:ed:cd:af:59:bd:79:f2:b1:af:55:15:
86:5e:b3:9b:3b:18:f0:fc:a9:5a:c6:f3:07:cd:0b:93:f6:35:
23:1a:2b:7f:53:13:ec:43:49:f9:cb:1b:73:6c:fc:dd:7a:28:
35:3e:52:da:44:f6:30:f8:f9:46:d1:f7:88:ed:6c:fd:b7:f3:
dd:e8:df:ac:f6:e6:3a:cc:27:22:e4:1f:03:f9:a6:47:d9:dc:
ac:20:c7:f9:9e:00:27:c2:8e:e2:7e:82:8c:05:fb:e9:1e:e2:
bf:03:d2:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:40 2024 by rpki-client on console-fra.rpki-client.org