Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/b597c4-6a32-4008-b2ee-2da625eb7242/1/3KBz6UUQJP5yDymv1AsZ4rHSeJ4.roa
File: 3KBz6UUQJP5yDymv1AsZ4rHSeJ4.roa (raw, json)
Hash identifier: AsPsZgS6urat4CkUWqE6KuA58lnQVZ8eNle7f/CMo+4=
Subject key identifier: DC:A0:73:E9:45:10:24:FE:72:0F:29:AF:D4:0B:19:E2:B1:D2:78:9E
Certificate issuer: /CN=0024b1f1359110bff991e9ac6f51469fdcb487af
Certificate serial: 018C729CC69A30AB4734773B7AFC303A1176
Authority key identifier: 00:24:B1:F1:35:91:10:BF:F9:91:E9:AC:6F:51:46:9F:DC:B4:87:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ACSx8TWREL_5kemsb1FGn9y0h68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/b597c4-6a32-4008-b2ee-2da625eb7242/1/3KBz6UUQJP5yDymv1AsZ4rHSeJ4.roa
Signing time: Sat 16 Dec 2023 12:32:06 +0000
ROA not before: Sat 16 Dec 2023 12:32:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 215919
IP address blocks: 195.210.32.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:72:9c:c6:9a:30:ab:47:34:77:3b:7a:fc:30:3a:11:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0024b1f1359110bff991e9ac6f51469fdcb487af
Validity
Not Before: Dec 16 12:32:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dca073e9451024fe720f29afd40b19e2b1d2789e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:78:02:64:c7:2c:0f:43:32:4c:be:bc:ce:db:
85:28:51:a7:84:dd:db:96:e4:f2:77:f3:f2:7c:fb:
25:27:76:f5:e5:56:e0:3d:b4:39:84:c9:b2:b8:78:
56:86:ee:83:4e:36:04:0c:ee:9d:f7:f2:08:2e:4d:
a4:e8:21:89:e0:ab:b1:f8:6c:75:81:35:d1:bc:85:
91:64:6b:04:3b:a3:41:c0:c3:20:ae:a4:11:98:de:
78:7e:d8:2f:a7:fa:54:3b:df:da:95:7c:2f:8e:22:
ec:d6:ed:b8:c6:e7:67:49:11:c5:5a:7c:cf:64:fe:
89:f1:86:2c:5b:ea:44:2f:79:03:9c:bb:10:65:98:
59:fa:2d:dc:a6:10:34:8f:11:65:87:8c:ea:04:3a:
45:70:8f:2b:82:6b:1f:17:dd:63:62:db:8d:5e:5f:
9e:28:3b:af:28:48:1f:8b:c2:94:26:50:30:7b:c7:
5a:44:e7:08:99:25:a6:4d:2a:16:f6:d0:21:3c:3b:
6d:4a:84:99:21:96:62:06:7c:60:59:d2:78:98:d1:
4c:81:bd:c7:be:52:77:21:9f:d6:8f:9a:7b:cd:a9:
43:99:e5:55:a3:6c:18:90:2c:f0:b6:4c:41:1d:05:
1e:71:fa:e3:5b:c0:a9:78:e1:38:d8:ab:c4:c9:a1:
4b:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:A0:73:E9:45:10:24:FE:72:0F:29:AF:D4:0B:19:E2:B1:D2:78:9E
X509v3 Authority Key Identifier:
keyid:00:24:B1:F1:35:91:10:BF:F9:91:E9:AC:6F:51:46:9F:DC:B4:87:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ACSx8TWREL_5kemsb1FGn9y0h68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/b597c4-6a32-4008-b2ee-2da625eb7242/1/3KBz6UUQJP5yDymv1AsZ4rHSeJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/b597c4-6a32-4008-b2ee-2da625eb7242/1/ACSx8TWREL_5kemsb1FGn9y0h68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.210.32.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:1c:b1:8b:35:18:65:93:0f:0a:57:81:0e:fa:50:e7:63:8c:
e2:5f:15:f5:71:97:62:79:b7:92:ca:ed:d6:c8:29:40:bf:c8:
4b:6e:08:11:37:a6:c4:b3:d3:4b:8f:5b:4a:2b:bb:df:62:4a:
79:34:4f:05:0b:df:30:92:67:82:35:a0:6e:6e:14:1a:65:5d:
1d:d1:fd:5f:8e:f8:3d:37:c5:78:52:87:09:2c:bc:a4:95:86:
90:72:4d:90:40:d1:28:60:36:88:8e:04:46:52:bf:4a:b8:51:
37:69:00:81:1e:de:3e:6b:4b:23:d3:48:31:a7:6a:8a:3d:38:
d1:39:63:ec:e7:54:d8:c9:68:d2:c2:93:21:c4:fc:29:e9:d6:
7c:2d:f5:9a:e6:7b:83:47:eb:d2:ed:ee:1a:9c:b5:21:21:05:
20:4b:2a:d2:8e:d0:47:dd:39:0e:c9:c7:09:03:d7:c3:2a:8b:
d9:52:3a:9f:94:eb:40:b3:7b:f7:ee:9d:7c:70:da:cb:ca:c2:
20:0b:4b:17:9c:27:b2:ec:2f:fa:02:f8:b8:c4:8c:92:b5:1d:
35:34:74:9b:4b:b5:d6:70:88:40:78:72:ab:ce:48:a7:3e:3a:
66:14:52:57:37:d0:f9:24:83:e4:11:63:ad:c0:6d:b9:68:01:
ed:9a:00:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:34:26 2024 by rpki-client on console-ams.rpki-client.org