Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/d6c86d-6c65-4a25-a8fa-38d4f3211896/1/DvF_1Fe1WHJzBu-Gb6EyhyX-AMo.roa
File: DvF_1Fe1WHJzBu-Gb6EyhyX-AMo.roa (raw, json)
Hash identifier: VjKdvGbuJCFyHZBSSoYX7cSQ2353CBwPpxTHedVFEvU=
Subject key identifier: 0E:F1:7F:D4:57:B5:58:72:73:06:EF:86:6F:A1:32:87:25:FE:00:CA
Certificate issuer: /CN=1a4f8001c30cac546e3f92103b4b12732dfcbf52
Certificate serial: 01857227EBB892A51825C72642597910E404
Authority key identifier: 1A:4F:80:01:C3:0C:AC:54:6E:3F:92:10:3B:4B:12:73:2D:FC:BF:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gk-AAcMMrFRuP5IQO0sScy38v1I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/d6c86d-6c65-4a25-a8fa-38d4f3211896/1/DvF_1Fe1WHJzBu-Gb6EyhyX-AMo.roa
Signing time: Mon 02 Jan 2023 11:04:56 +0000
ROA not before: Mon 02 Jan 2023 11:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48737
IP address blocks: 195.49.238.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:27:eb:b8:92:a5:18:25:c7:26:42:59:79:10:e4:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a4f8001c30cac546e3f92103b4b12732dfcbf52
Validity
Not Before: Jan 2 11:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ef17fd457b558727306ef866fa1328725fe00ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b7:6e:c3:73:c7:b7:d6:c3:75:73:c4:f4:f8:
33:69:6d:71:81:c6:eb:7e:60:2b:de:e4:01:22:ae:
60:c7:9c:ee:fd:b9:6b:38:65:28:14:cd:fe:45:9d:
3c:0d:62:20:e3:a2:d2:aa:6f:bc:37:db:5e:81:35:
fc:20:79:ed:7c:e2:e8:ce:a8:29:2f:e1:af:09:00:
c6:11:03:ce:cd:62:a8:76:bf:d7:e7:95:5a:a3:c0:
a6:a2:13:cf:0a:bd:38:a0:2d:4a:5e:d7:d3:f6:37:
0b:08:aa:5f:13:38:fa:51:cd:3b:85:8b:81:36:c7:
29:5d:30:41:8b:43:c0:18:25:37:10:2e:d1:56:b5:
6c:ea:aa:e4:54:99:70:21:97:1d:d5:53:a9:64:d7:
a1:54:b7:45:25:80:b4:58:a1:1d:c7:28:6a:1e:b9:
3e:51:60:2e:5a:04:62:c8:8e:01:af:71:9b:70:88:
4f:5f:47:ed:5e:2b:e4:37:dd:db:36:c2:b0:1b:31:
cd:42:00:84:7f:89:f7:86:a0:34:2c:41:25:0b:9c:
2c:51:e3:93:c5:0d:0d:17:81:83:d9:9f:63:57:98:
1b:df:91:f9:03:ca:d2:37:9e:00:29:e8:41:65:cd:
88:98:19:9b:4e:3d:5d:4c:10:9d:f5:bb:fa:b7:38:
79:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:F1:7F:D4:57:B5:58:72:73:06:EF:86:6F:A1:32:87:25:FE:00:CA
X509v3 Authority Key Identifier:
keyid:1A:4F:80:01:C3:0C:AC:54:6E:3F:92:10:3B:4B:12:73:2D:FC:BF:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gk-AAcMMrFRuP5IQO0sScy38v1I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d6c86d-6c65-4a25-a8fa-38d4f3211896/1/DvF_1Fe1WHJzBu-Gb6EyhyX-AMo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d6c86d-6c65-4a25-a8fa-38d4f3211896/1/Gk-AAcMMrFRuP5IQO0sScy38v1I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.49.238.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:6d:7f:2b:ab:ed:7c:b3:d5:46:b3:94:a5:29:19:09:e5:4c:
4c:5d:90:08:53:d4:79:b7:8d:a3:dd:9a:9c:23:3a:32:28:f5:
1b:1f:d1:f5:1c:12:01:7c:47:89:c8:da:5a:d5:24:cb:4e:44:
58:21:80:4e:b4:b0:f2:0d:42:33:a6:62:ff:c2:eb:39:83:0c:
b0:4a:27:56:6b:64:28:94:d8:5c:37:f5:8a:2b:2a:88:18:0d:
a2:65:d7:03:ea:4b:07:d2:89:17:b0:c9:09:cf:60:93:45:e6:
2a:c2:96:33:53:c9:d6:68:0c:91:f5:ab:87:f1:22:80:1e:2e:
e1:a2:d8:6a:3a:20:29:7c:79:64:31:40:4c:b3:ce:55:48:e2:
ec:f3:66:b5:03:96:a9:0c:ea:20:60:7d:05:0c:3a:62:0a:2c:
47:12:a5:0f:63:e8:ef:28:5a:ac:90:ce:7e:ac:61:56:b8:4b:
35:45:64:4d:97:02:06:9b:d4:de:97:3d:d4:b9:ab:ba:67:d8:
9b:3e:6f:1f:67:db:4a:3d:3f:94:e6:c5:90:5a:01:61:ba:85:
47:b5:93:71:d2:cb:a5:11:b3:4b:12:c8:63:74:10:b7:d1:9f:
89:ab:d7:72:df:69:23:30:2a:0e:4e:2b:25:cd:17:79:0d:aa:
29:06:b7:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:40:19 2024 by rpki-client on console-ams.rpki-client.org