Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/900f41-a2df-4d33-a96d-20f2dcfc853f/1/rW1zC2jKtxhSq4Nctllz5wqzNIk.roa
File: rW1zC2jKtxhSq4Nctllz5wqzNIk.roa (raw, json)
Hash identifier: H/vVf8S9NcvsP5s2q0yP4wZykRc53rWNAcgoSyzLpBQ=
Subject key identifier: AD:6D:73:0B:68:CA:B7:18:52:AB:83:5C:B6:59:73:E7:0A:B3:34:89
Certificate issuer: /CN=e40fe224116a9f19d33727fdeb7acf82341ba603
Certificate serial: 0185714C1FDF36EC5C0FA1336818C9727C9B
Authority key identifier: E4:0F:E2:24:11:6A:9F:19:D3:37:27:FD:EB:7A:CF:82:34:1B:A6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5A_iJBFqnxnTNyf963rPgjQbpgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/900f41-a2df-4d33-a96d-20f2dcfc853f/1/rW1zC2jKtxhSq4Nctllz5wqzNIk.roa
Signing time: Mon 02 Jan 2023 07:04:52 +0000
ROA not before: Mon 02 Jan 2023 07:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206764
IP address blocks: 195.85.213.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:4c:1f:df:36:ec:5c:0f:a1:33:68:18:c9:72:7c:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e40fe224116a9f19d33727fdeb7acf82341ba603
Validity
Not Before: Jan 2 07:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ad6d730b68cab71852ab835cb65973e70ab33489
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:0c:8a:3f:1a:2d:67:84:9b:00:aa:e3:9c:14:
cc:cb:b2:db:87:c5:09:27:1b:0f:2a:13:e4:8d:ba:
c6:86:64:a6:1d:fb:41:c7:84:6b:6c:a0:98:d9:01:
77:08:5d:39:71:c7:35:89:82:e0:5b:cd:68:50:49:
a7:72:6e:c8:65:41:0b:bf:3e:05:a2:e0:e6:af:36:
62:b1:c7:22:da:8f:21:71:e8:99:03:00:3e:21:4a:
6e:b8:2a:51:72:b0:99:a3:92:67:61:e1:53:11:30:
bb:84:d6:c1:84:18:c6:25:31:63:1b:83:30:b3:bc:
b3:43:b1:7d:88:64:92:0c:89:d2:cb:6b:df:95:19:
23:fd:17:bb:2e:23:9b:a4:70:16:da:04:58:04:22:
4d:3a:5f:8a:56:83:0b:09:d4:46:34:90:c0:16:82:
1a:f4:e5:59:32:a7:f0:f8:c4:a0:36:81:7e:88:80:
94:53:5a:b8:9a:d5:29:05:be:46:b3:23:d5:7a:a4:
6a:9c:91:33:bb:44:18:a2:80:d6:ae:9a:bc:88:76:
3f:f1:af:57:44:5d:2d:45:b7:79:40:c2:57:69:95:
32:1a:cc:c9:1d:b4:ac:17:db:68:eb:60:79:d6:66:
88:d2:49:94:17:89:c6:b9:03:e5:81:1d:2a:a3:86:
6d:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:6D:73:0B:68:CA:B7:18:52:AB:83:5C:B6:59:73:E7:0A:B3:34:89
X509v3 Authority Key Identifier:
keyid:E4:0F:E2:24:11:6A:9F:19:D3:37:27:FD:EB:7A:CF:82:34:1B:A6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5A_iJBFqnxnTNyf963rPgjQbpgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/900f41-a2df-4d33-a96d-20f2dcfc853f/1/rW1zC2jKtxhSq4Nctllz5wqzNIk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/900f41-a2df-4d33-a96d-20f2dcfc853f/1/5A_iJBFqnxnTNyf963rPgjQbpgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.85.213.0/24
Signature Algorithm: sha256WithRSAEncryption
56:fb:13:eb:7f:1d:f4:41:37:de:2d:0b:83:f1:a1:80:87:af:
8f:ce:1c:29:24:18:a9:4f:0c:ea:14:95:97:f3:4d:82:7d:55:
a4:eb:38:15:c6:c5:bc:f9:c4:2b:2e:07:bc:6f:42:61:29:99:
46:e2:4d:05:3c:ee:1d:2d:01:3e:c9:d1:54:c7:e1:56:8e:26:
1b:4a:e1:e8:dd:da:01:98:e7:9c:42:c0:2d:3f:08:8f:c5:c1:
57:c7:95:49:ea:14:48:f8:87:fa:0f:91:18:2d:97:c2:f5:95:
db:8b:53:fe:13:fd:c9:eb:16:ad:87:48:35:ec:47:77:39:ad:
99:73:dd:1a:e3:e5:1d:e3:58:7d:6b:ae:77:73:0a:e8:31:e3:
01:fb:18:d8:a6:0d:fc:50:cd:35:3a:06:43:13:2c:a3:08:99:
21:8a:d5:40:0c:a4:3f:20:92:9a:6b:26:38:db:dd:f7:3f:c1:
93:31:43:f2:84:6f:ba:74:78:e1:8b:0c:a7:69:90:28:a2:22:
c2:bb:48:e9:ba:06:08:78:23:cc:06:3a:8f:97:39:af:89:de:
04:1a:0f:36:08:1d:c2:36:51:4e:d0:63:34:2f:25:e6:5a:27:
4c:3b:c9:9c:ce:60:0d:8d:fc:cf:83:ed:f2:5a:c0:6e:b1:f1:
bd:23:06:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:42 2024 by rpki-client on console-fra.rpki-client.org