Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/456eac-65df-4dd1-bf9c-0103a899c2de/1/iABepYJyVpzIsIxTnTQaOevzjeU.roa
File: iABepYJyVpzIsIxTnTQaOevzjeU.roa (raw, json)
Hash identifier: c7dYASv/IGh11GgoGgzMyPhJWTicrxcG+Mq/nEz9roM=
Subject key identifier: 88:00:5E:A5:82:72:56:9C:C8:B0:8C:53:9D:34:1A:39:EB:F3:8D:E5
Certificate issuer: /CN=99fad2527eafa95215a8fed67a27fad3cfb2d37f
Certificate serial: 01856D2F1DFE47AD36C7485C7831F82DC199
Authority key identifier: 99:FA:D2:52:7E:AF:A9:52:15:A8:FE:D6:7A:27:FA:D3:CF:B2:D3:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mfrSUn6vqVIVqP7Weif608-y038.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/456eac-65df-4dd1-bf9c-0103a899c2de/1/iABepYJyVpzIsIxTnTQaOevzjeU.roa
Signing time: Sun 01 Jan 2023 11:54:42 +0000
ROA not before: Sun 01 Jan 2023 11:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 195.184.76.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 Jun 2023 21:06:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:2f:1d:fe:47:ad:36:c7:48:5c:78:31:f8:2d:c1:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99fad2527eafa95215a8fed67a27fad3cfb2d37f
Validity
Not Before: Jan 1 11:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=88005ea58272569cc8b08c539d341a39ebf38de5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:69:6f:ff:e4:9e:36:89:1d:89:cb:e8:33:18:
a3:f7:21:45:b4:0f:4c:50:d3:14:77:34:26:f2:34:
30:78:81:50:c0:63:ce:93:86:ac:78:b4:75:0c:b6:
5b:ba:f8:ee:24:eb:2d:08:b4:c8:9e:1f:1a:39:03:
34:2f:96:68:83:a5:49:06:be:78:75:50:3b:72:73:
1b:36:87:09:4e:83:c8:46:e8:8f:d9:e5:29:22:0e:
16:a4:02:15:54:d1:a5:6f:2f:98:22:30:14:b1:68:
94:37:6e:16:7c:d0:9a:ef:c0:fb:f1:7c:46:31:e0:
0c:73:ce:0a:b9:d0:f2:42:6d:a8:04:73:f3:49:95:
ee:fd:5e:06:b5:0e:dd:f6:0d:0e:45:17:2d:8c:2e:
f7:da:db:c7:72:01:ba:bf:94:ba:84:de:76:76:e7:
7a:1e:00:0a:a5:4f:14:22:94:fd:e6:24:fd:4d:84:
c6:c7:d1:37:3f:3b:50:98:d3:90:c1:16:84:f0:c9:
ba:21:fb:dd:70:f1:a2:08:19:5c:ee:d5:fd:43:27:
bc:b3:2e:56:82:43:e1:07:91:dc:8f:b3:77:b2:f3:
6d:91:f5:aa:04:3b:35:ca:64:23:9d:3a:37:d3:b8:
84:c2:74:f4:66:a6:32:bf:af:14:0e:5a:59:28:76:
7c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:00:5E:A5:82:72:56:9C:C8:B0:8C:53:9D:34:1A:39:EB:F3:8D:E5
X509v3 Authority Key Identifier:
keyid:99:FA:D2:52:7E:AF:A9:52:15:A8:FE:D6:7A:27:FA:D3:CF:B2:D3:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mfrSUn6vqVIVqP7Weif608-y038.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/456eac-65df-4dd1-bf9c-0103a899c2de/1/iABepYJyVpzIsIxTnTQaOevzjeU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/456eac-65df-4dd1-bf9c-0103a899c2de/1/mfrSUn6vqVIVqP7Weif608-y038.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.184.76.0/24
Signature Algorithm: sha256WithRSAEncryption
46:d3:e9:3c:ff:cf:4a:b0:5c:36:c7:9e:11:b7:45:41:b9:93:
0f:bc:4c:81:f0:75:79:7a:5b:42:04:20:01:55:7b:4d:8f:f7:
8c:63:66:44:c2:c5:97:ce:75:bd:ee:d8:72:3f:c1:10:6f:9f:
76:50:d2:dd:37:6e:1d:7f:d0:4d:2b:1d:d9:31:d5:68:a7:00:
f7:a4:b3:c8:f1:e5:f3:26:9a:90:e0:cd:da:b0:c7:30:70:08:
6f:db:07:c0:f4:fa:65:f7:88:2f:b5:c2:fa:01:44:d0:75:7a:
42:54:49:c0:03:20:d0:6b:ce:13:16:e6:10:fe:ec:db:e5:01:
da:2c:e1:82:d8:53:c7:9e:f6:e2:f4:48:0d:46:8b:89:14:65:
c8:15:91:3a:f4:9f:56:9c:0d:18:c5:05:73:f8:fc:f5:a8:8c:
1f:05:33:23:4a:13:58:65:4c:01:0f:b6:d3:c7:50:9d:22:59:
b3:cc:0d:1f:58:71:ec:bd:ca:73:24:ea:fd:85:19:a6:63:25:
7c:cd:0b:48:cc:0d:05:f1:fd:74:0d:5f:5d:35:f1:0c:2e:b3:
7d:c7:a7:2c:af:0c:88:1b:6b:e6:6b:0a:25:65:b7:04:73:85:
bc:64:6b:c2:b4:47:04:34:2a:cb:b1:3e:38:f6:f4:f5:d5:21:
18:52:c1:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:30 2024 by rpki-client on console-fra.rpki-client.org