Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/706837-d55d-432d-b0a4-b0814007528f/1/768DAEZu0TtndQc5vNQk0eu85sI.roa
File: 768DAEZu0TtndQc5vNQk0eu85sI.roa (raw, json)
Hash identifier: NpSELH8v/MEGv+NMbfVwVVSOn1NbIGYFx0U9YVVLVBE=
Subject key identifier: EF:AF:03:00:46:6E:D1:3B:67:75:07:39:BC:D4:24:D1:EB:BC:E6:C2
Certificate issuer: /CN=3bbe44355e06faadbeb19455adc316d9b9f0f10e
Certificate serial: 01856D4A9BEFC78EA622048EAA685E8DA2AD
Authority key identifier: 3B:BE:44:35:5E:06:FA:AD:BE:B1:94:55:AD:C3:16:D9:B9:F0:F1:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O75ENV4G-q2-sZRVrcMW2bnw8Q4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/706837-d55d-432d-b0a4-b0814007528f/1/768DAEZu0TtndQc5vNQk0eu85sI.roa
Signing time: Sun 01 Jan 2023 12:24:44 +0000
ROA not before: Sun 01 Jan 2023 12:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28892
IP address blocks: 195.245.209.0/24 maxlen: 24
2001:67c:28b8::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:4a:9b:ef:c7:8e:a6:22:04:8e:aa:68:5e:8d:a2:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bbe44355e06faadbeb19455adc316d9b9f0f10e
Validity
Not Before: Jan 1 12:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=efaf0300466ed13b67750739bcd424d1ebbce6c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:bc:b6:12:48:2b:9b:48:1b:70:78:d0:e7:43:
ae:6b:41:7e:fb:46:d5:0a:bc:a1:95:ab:e1:63:01:
22:98:bb:49:90:89:46:9a:3b:40:d0:74:2b:2d:ce:
c5:6e:b2:83:d9:61:ce:f1:a1:db:eb:89:ed:1d:53:
ab:d3:c5:c1:0e:b9:d7:12:f6:ca:4d:29:f9:83:dc:
09:63:ff:2b:76:49:bc:8a:a5:f1:74:f4:f3:a3:44:
d5:61:b2:4a:b5:58:ad:0e:8d:83:ee:7a:ff:5f:2a:
b9:64:da:b1:24:9a:b1:82:79:51:dd:c3:35:18:fc:
43:c7:d9:b2:d2:33:b3:c8:fc:95:08:01:98:1a:d5:
6f:58:07:d0:ab:69:e3:c9:31:7a:98:b1:d7:24:e3:
12:48:d7:a3:de:39:73:ad:11:15:f6:f2:01:5a:88:
37:45:f4:57:1c:25:e0:3b:90:e6:2e:ed:fb:9d:a6:
25:db:ff:6c:e9:74:50:87:3b:d6:1a:6c:1b:e8:8d:
55:10:fb:45:97:e9:7b:e5:42:da:bc:1e:c8:d1:24:
5e:5e:a4:7f:a2:a4:c6:42:c5:22:11:df:65:5b:64:
4d:29:94:1c:37:32:61:00:53:ed:78:2f:9b:6f:c0:
f0:56:95:86:d9:3c:9f:ae:8c:fa:43:50:ce:bf:ba:
e2:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:AF:03:00:46:6E:D1:3B:67:75:07:39:BC:D4:24:D1:EB:BC:E6:C2
X509v3 Authority Key Identifier:
keyid:3B:BE:44:35:5E:06:FA:AD:BE:B1:94:55:AD:C3:16:D9:B9:F0:F1:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O75ENV4G-q2-sZRVrcMW2bnw8Q4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/706837-d55d-432d-b0a4-b0814007528f/1/768DAEZu0TtndQc5vNQk0eu85sI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/706837-d55d-432d-b0a4-b0814007528f/1/O75ENV4G-q2-sZRVrcMW2bnw8Q4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.245.209.0/24
IPv6:
2001:67c:28b8::/48
Signature Algorithm: sha256WithRSAEncryption
46:30:c8:3a:1e:5e:ab:9d:36:b7:b5:de:8a:bf:3e:42:8f:9f:
fb:4c:ea:39:df:22:6b:4e:d9:0d:5f:7c:a2:bb:c9:65:95:cb:
31:28:39:33:14:7f:d5:56:b8:dc:1e:50:e5:5b:5a:bc:6c:0b:
09:76:8e:4f:6b:82:49:9d:ff:dd:20:23:57:41:a7:be:b1:58:
c5:fb:09:e4:08:be:cd:f8:d2:d8:98:1f:ae:2e:fb:10:b9:86:
c4:bb:29:d3:7c:e1:fe:24:06:2d:04:76:91:17:39:6e:e1:1a:
0c:91:80:a2:a7:90:e9:14:ec:23:c8:3b:d3:a3:b3:01:6b:d5:
76:d6:90:83:4e:13:4f:29:8e:40:8a:74:2c:5c:1b:15:85:8c:
7c:c3:f6:1d:df:30:74:14:6b:b8:47:27:52:5f:0b:10:87:b8:
0f:2e:7f:93:3e:03:f6:61:07:d8:46:f9:d7:5f:b4:4f:e4:7a:
6f:7c:84:b6:9d:bb:07:fe:85:4e:1c:94:ca:d1:6f:20:c5:ea:
fb:b2:0e:48:89:2b:80:b4:9e:a1:53:c4:af:39:82:79:72:61:
a8:2e:91:af:18:e4:5a:80:39:a3:01:f3:09:7e:9b:34:52:cd:
b1:08:4e:09:c6:1b:92:ea:ec:04:8f:39:73:c7:28:63:40:5f:
36:07:fb:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:03 2024 by rpki-client on console-fra.rpki-client.org