Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/456eac-65df-4dd1-bf9c-0103a899c2de/1/ahjvO4urwL_Ivlkuqn1qNDNQcDU.roa
File: ahjvO4urwL_Ivlkuqn1qNDNQcDU.roa (raw, json)
Hash identifier: FSCBv4uEVTdYvdOA0D+C0DmMPSg5KNIoWfYZhVcer0Q=
Subject key identifier: 6A:18:EF:3B:8B:AB:C0:BF:C8:BE:59:2E:AA:7D:6A:34:33:50:70:35
Certificate issuer: /CN=99fad2527eafa95215a8fed67a27fad3cfb2d37f
Certificate serial: 018BA13F34528C43BE4076C13076B67124CB
Authority key identifier: 99:FA:D2:52:7E:AF:A9:52:15:A8:FE:D6:7A:27:FA:D3:CF:B2:D3:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mfrSUn6vqVIVqP7Weif608-y038.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/456eac-65df-4dd1-bf9c-0103a899c2de/1/ahjvO4urwL_Ivlkuqn1qNDNQcDU.roa
Signing time: Sun 05 Nov 2023 20:49:15 +0000
ROA not before: Sun 05 Nov 2023 20:49:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198825
IP address blocks: 195.184.76.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 11 Nov 2023 21:57:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a1:3f:34:52:8c:43:be:40:76:c1:30:76:b6:71:24:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99fad2527eafa95215a8fed67a27fad3cfb2d37f
Validity
Not Before: Nov 5 20:49:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a18ef3b8babc0bfc8be592eaa7d6a3433507035
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e7:86:ec:2e:8e:6d:25:01:6a:97:f4:3b:db:
e9:ff:14:50:a7:20:61:4a:7f:32:a6:29:32:f4:2e:
6f:37:ce:15:cd:ee:88:e2:08:83:24:06:b5:94:2e:
cc:ee:75:da:a4:fc:9c:07:af:df:b2:c6:c6:ce:36:
8d:a0:c2:f2:96:e0:6a:c4:14:ea:48:41:b8:87:77:
b2:79:7b:1b:84:64:3d:69:bc:50:cc:66:59:2a:2f:
f9:48:09:39:ac:dc:de:66:0d:0c:33:2a:e7:65:e7:
5b:94:94:ef:05:c8:58:4b:87:05:c3:25:35:ba:18:
b8:98:1a:0b:53:95:bc:ea:80:72:62:e8:11:cc:12:
d1:74:42:d4:44:96:99:a2:42:4e:3f:b8:3f:23:4d:
06:35:9c:20:b0:b7:b5:fd:99:9a:0e:62:ed:39:60:
c9:f6:9a:8f:73:66:af:63:61:e7:37:bc:fc:ff:42:
79:4c:7a:e1:ec:85:0c:c1:d0:f2:5d:cb:65:ba:23:
fa:f8:f7:a5:f5:3a:59:f3:7f:39:96:99:dc:ec:ea:
1e:35:d4:62:ad:b8:1b:3b:ff:7f:88:13:0b:b5:73:
4c:4c:42:8e:37:51:98:5a:03:1c:3a:cb:6f:05:b6:
56:de:e4:ae:2e:1e:9c:4e:64:96:8c:2b:c7:58:34:
c7:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:18:EF:3B:8B:AB:C0:BF:C8:BE:59:2E:AA:7D:6A:34:33:50:70:35
X509v3 Authority Key Identifier:
keyid:99:FA:D2:52:7E:AF:A9:52:15:A8:FE:D6:7A:27:FA:D3:CF:B2:D3:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mfrSUn6vqVIVqP7Weif608-y038.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/456eac-65df-4dd1-bf9c-0103a899c2de/1/ahjvO4urwL_Ivlkuqn1qNDNQcDU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/456eac-65df-4dd1-bf9c-0103a899c2de/1/mfrSUn6vqVIVqP7Weif608-y038.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.184.76.0/24
Signature Algorithm: sha256WithRSAEncryption
81:b9:6a:0c:3f:37:5c:45:12:db:c8:75:c4:9a:ab:70:ff:75:
f6:e2:01:8d:47:c5:13:82:1c:14:fe:26:cb:a4:d8:2d:5c:29:
06:52:c3:5c:83:f0:b4:6d:8a:d6:2a:27:2e:29:4c:ed:e7:e6:
3c:87:59:f5:83:8c:a4:72:dd:19:b6:6a:70:10:07:1b:a8:10:
5e:99:b6:bb:d0:06:f0:11:0e:42:af:0a:ad:3a:72:68:4a:87:
e5:a8:7f:5d:32:0c:31:85:e7:2d:73:f1:7f:e2:56:48:47:9f:
d5:ea:d6:fa:e6:6c:4e:bf:6f:17:17:11:cb:22:4c:c9:90:92:
92:85:42:09:42:42:68:e9:68:ce:a0:5c:d0:74:eb:c0:01:e4:
9b:d6:c8:e8:55:3b:c8:7b:c0:5f:d0:5b:1c:6e:d8:e3:0a:5a:
0b:70:47:8b:c6:67:87:b8:fa:b4:da:97:cd:7a:56:2e:b4:52:
fc:c9:05:2b:da:bb:63:95:5f:d7:87:c4:65:28:4f:de:ed:5e:
bd:ed:43:87:21:13:d0:42:a4:8b:4a:e9:44:8c:41:b9:3a:76:
11:b3:6e:e8:fd:92:57:b2:38:77:48:03:81:75:a7:fe:ec:90:
fb:cf:f2:37:02:6f:a5:1b:c1:c3:32:fb:85:c8:c3:84:8e:c9:
d1:ae:8f:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:30 2024 by rpki-client on console-fra.rpki-client.org