Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/456eac-65df-4dd1-bf9c-0103a899c2de/1/9Bor3AXhg_NF1-UGWdD7n_CTuUI.roa
File: 9Bor3AXhg_NF1-UGWdD7n_CTuUI.roa (raw, json)
Hash identifier: Uua83OOkTkCGir8wlS+Ll2VnRK+JqeV1MbjDY9fCWO8=
Subject key identifier: F4:1A:2B:DC:05:E1:83:F3:45:D7:E5:06:59:D0:FB:9F:F0:93:B9:42
Certificate issuer: /CN=99fad2527eafa95215a8fed67a27fad3cfb2d37f
Certificate serial: 018C037495EFA19A8756BBAF3F4A6B49B152
Authority key identifier: 99:FA:D2:52:7E:AF:A9:52:15:A8:FE:D6:7A:27:FA:D3:CF:B2:D3:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mfrSUn6vqVIVqP7Weif608-y038.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/456eac-65df-4dd1-bf9c-0103a899c2de/1/9Bor3AXhg_NF1-UGWdD7n_CTuUI.roa
Signing time: Fri 24 Nov 2023 22:30:21 +0000
ROA not before: Fri 24 Nov 2023 22:30:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 195.184.76.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 27 Nov 2023 06:41:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:03:74:95:ef:a1:9a:87:56:bb:af:3f:4a:6b:49:b1:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99fad2527eafa95215a8fed67a27fad3cfb2d37f
Validity
Not Before: Nov 24 22:30:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f41a2bdc05e183f345d7e50659d0fb9ff093b942
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:1b:c0:d0:96:82:63:17:36:a8:10:f3:18:14:
b0:22:12:e0:b8:96:0e:e9:c8:6c:fc:0f:45:81:ee:
c9:e8:73:f6:97:ab:ba:bf:eb:a4:45:8d:36:7a:e1:
84:05:09:fb:d2:4d:a8:df:c8:53:a7:9c:28:3a:cc:
0d:b2:5e:d9:83:03:88:56:2f:df:a2:66:72:c1:75:
70:32:54:9b:37:2b:40:5a:5d:d9:c1:e0:7e:db:5c:
42:c2:a4:99:8a:24:b3:36:c9:8e:b8:53:47:2e:c4:
8b:55:cf:83:d6:e3:f5:ea:72:52:5e:42:69:db:76:
b8:30:13:37:09:a6:34:69:82:87:d9:3f:a7:2e:5f:
cb:a5:d7:6f:53:44:89:c1:35:cb:8b:71:73:e5:82:
8f:0a:a3:2b:e2:f9:95:0b:b2:06:ae:0a:95:6a:38:
c2:a0:bc:9b:25:ab:9a:3b:8e:7e:15:b6:bf:e5:bd:
46:dc:7e:cf:6d:01:20:ae:e2:7e:b4:09:f8:f0:c5:
a6:d2:1e:e3:9c:cf:69:13:19:24:6a:f5:96:45:3a:
7c:f7:81:a0:b6:42:ab:06:10:7b:5f:a8:da:40:f1:
a8:14:3a:83:c2:ec:bd:a2:80:9a:f9:7c:cf:0d:a9:
2c:74:3c:d2:7c:41:0c:02:22:55:24:1c:65:09:af:
9f:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:1A:2B:DC:05:E1:83:F3:45:D7:E5:06:59:D0:FB:9F:F0:93:B9:42
X509v3 Authority Key Identifier:
keyid:99:FA:D2:52:7E:AF:A9:52:15:A8:FE:D6:7A:27:FA:D3:CF:B2:D3:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mfrSUn6vqVIVqP7Weif608-y038.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/456eac-65df-4dd1-bf9c-0103a899c2de/1/9Bor3AXhg_NF1-UGWdD7n_CTuUI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/456eac-65df-4dd1-bf9c-0103a899c2de/1/mfrSUn6vqVIVqP7Weif608-y038.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.184.76.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:16:87:f6:67:6b:08:92:e3:ec:83:6b:28:1d:92:e3:ca:ca:
7f:7c:02:fb:b7:92:0b:d9:2d:6a:ab:d8:20:63:ff:49:a1:dc:
ed:31:9e:d7:5d:95:6c:dd:11:b0:4a:01:4d:7c:14:4b:d5:87:
c2:c8:f4:2c:80:0d:89:52:d8:fa:71:5d:c9:72:8e:90:41:e6:
a4:6f:13:d3:ae:67:17:46:cc:ef:0b:66:24:80:c8:49:42:1f:
24:ed:40:58:5c:37:0d:80:52:70:1c:d2:47:b4:bf:40:9c:42:
8c:11:fe:95:49:85:26:5e:48:6d:e2:99:67:3a:c2:37:db:72:
1e:c4:34:80:bd:28:46:48:78:6d:60:46:7e:e0:48:be:71:fc:
11:2b:ca:fb:2f:58:8e:18:2a:0e:59:79:f2:4a:cf:79:4e:9c:
91:14:df:b4:42:5c:14:03:71:44:09:c4:6a:c0:c1:20:12:d5:
44:e6:1d:e3:7e:d5:8e:8a:a2:a6:0e:78:ab:60:2f:4a:59:ef:
b3:77:12:cb:f1:9f:37:fa:f0:61:e2:f1:ac:49:89:7b:35:d0:
77:05:54:5a:6d:ef:d5:cd:65:53:43:19:2e:4e:d6:3c:eb:3c:
ee:15:fc:17:b7:2c:f6:d9:1b:5a:bf:71:4d:5b:dc:31:f4:cf:
f1:b7:93:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:16 2024 by rpki-client on console-ams.rpki-client.org