Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/2f45ae-75c0-439c-a311-671d68188688/1/Id1t-76mCuCmAucCMh7V4gyqBlU.roa
File: Id1t-76mCuCmAucCMh7V4gyqBlU.roa (raw, json)
Hash identifier: QlKLMMCdRPnasVlwod65SfVCb/GfCq0akzb7XVX4Cfk=
Subject key identifier: 21:DD:6D:FB:BE:A6:0A:E0:A6:02:E7:02:32:1E:D5:E2:0C:AA:06:55
Certificate issuer: /CN=b7601d7cc820dc71915ea930673ef47f241a71c8
Certificate serial: 01856E8B4755A6FB7F8629B85680C548A701
Authority key identifier: B7:60:1D:7C:C8:20:DC:71:91:5E:A9:30:67:3E:F4:7F:24:1A:71:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t2AdfMgg3HGRXqkwZz70fyQaccg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/2f45ae-75c0-439c-a311-671d68188688/1/Id1t-76mCuCmAucCMh7V4gyqBlU.roa
Signing time: Sun 01 Jan 2023 18:14:59 +0000
ROA not before: Sun 01 Jan 2023 18:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51695
IP address blocks: 195.191.118.0/24 maxlen: 24
193.202.120.0/24 maxlen: 24
193.23.156.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:31:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:8b:47:55:a6:fb:7f:86:29:b8:56:80:c5:48:a7:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7601d7cc820dc71915ea930673ef47f241a71c8
Validity
Not Before: Jan 1 18:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=21dd6dfbbea60ae0a602e702321ed5e20caa0655
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:e7:83:8e:15:94:90:10:38:51:30:28:98:8d:
dd:bf:bf:f9:e2:50:47:4d:fa:a2:ba:70:ac:af:52:
1c:d8:fd:37:fe:a2:32:f1:e6:cc:c4:71:6b:ae:29:
fd:b1:88:a5:da:09:9c:f3:ea:4d:b9:9a:e8:14:9b:
fe:4e:4d:22:3c:46:5e:ab:0f:b9:78:d3:59:2f:b1:
d3:3c:d2:18:23:e4:62:e8:16:c6:a8:ec:6a:7b:68:
43:3d:84:33:e8:dc:59:cc:bf:3f:28:23:f8:3d:d0:
9d:fd:90:1f:ef:97:8f:be:e4:5a:d2:a7:2d:9c:aa:
ca:b8:08:d9:8f:e2:e7:4e:dd:9c:bd:80:1c:c2:78:
4c:ef:d2:ce:35:25:b2:8c:b0:66:46:bc:5e:0c:ea:
18:a0:63:15:23:9f:71:38:5d:e6:61:5e:f1:78:37:
0a:39:e9:dd:97:35:3c:26:7d:ea:8b:86:9e:3a:eb:
b7:c7:31:b3:6d:9a:5c:92:ee:23:0e:ad:9c:23:26:
79:a0:3b:16:09:ae:f2:32:d4:00:14:d7:77:17:08:
ed:15:30:8b:60:a3:be:aa:b1:dc:2a:70:20:90:a5:
b7:8f:15:24:e2:97:02:44:53:aa:a9:3f:e2:74:30:
31:ae:0d:bb:b4:76:47:69:37:73:03:ea:68:7b:d8:
6a:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:DD:6D:FB:BE:A6:0A:E0:A6:02:E7:02:32:1E:D5:E2:0C:AA:06:55
X509v3 Authority Key Identifier:
keyid:B7:60:1D:7C:C8:20:DC:71:91:5E:A9:30:67:3E:F4:7F:24:1A:71:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t2AdfMgg3HGRXqkwZz70fyQaccg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/2f45ae-75c0-439c-a311-671d68188688/1/Id1t-76mCuCmAucCMh7V4gyqBlU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/2f45ae-75c0-439c-a311-671d68188688/1/t2AdfMgg3HGRXqkwZz70fyQaccg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.23.156.0/24
193.202.120.0/24
195.191.118.0/24
Signature Algorithm: sha256WithRSAEncryption
80:41:67:ac:c5:b7:99:fe:0f:c5:a2:7d:58:0e:fa:64:36:35:
77:01:17:a0:a3:e1:5d:7c:4c:3f:01:0e:5d:87:2b:f9:c1:f6:
c6:f4:c8:33:4e:71:00:13:e5:01:fd:be:36:18:db:94:43:29:
3e:0b:14:fa:30:c6:db:cc:60:93:d1:1a:1f:3f:25:26:f9:49:
7c:b9:be:4f:e7:d2:88:7b:af:e9:b9:5d:0c:68:21:0b:e6:69:
5a:0e:5e:59:9f:4a:96:3f:a8:76:99:1f:62:50:b6:3c:61:d2:
fe:77:76:d5:af:55:c7:36:08:e0:81:26:48:f9:56:01:a6:aa:
f6:61:3c:77:76:62:c8:b4:8d:ae:59:1c:4d:26:cf:c1:c2:83:
a0:8b:b7:e1:ee:b9:af:58:6c:b5:be:ef:0a:c0:35:91:cf:a2:
ef:80:77:dd:99:03:f4:a4:ad:da:2e:09:df:24:0f:24:e7:4a:
46:f1:9b:0e:46:4d:87:27:c6:09:0a:71:c5:85:03:e0:52:f2:
26:94:26:4b:79:9b:fb:2c:7b:58:71:d7:30:28:ee:70:dd:ca:
6f:d7:8e:8b:3e:7b:b6:b1:f4:1b:ce:01:93:73:90:c2:b3:87:
35:a0:f5:69:19:b9:f3:d6:3d:03:0a:00:cf:af:0a:3d:39:f6:
d8:b3:d5:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:15 2024 by rpki-client on console-ams.rpki-client.org