Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/kjE_3-vZa2yKQAXkibaxs-hIqQs.roa
File: kjE_3-vZa2yKQAXkibaxs-hIqQs.roa (raw, json)
Hash identifier: ffFJd5B8s6y+yaD6XdoWfQETV0tqNfQw18zBTpB6I90=
Subject key identifier: 92:31:3F:DF:EB:D9:6B:6C:8A:40:05:E4:89:B6:B1:B3:E8:48:A9:0B
Certificate issuer: /CN=e909ee3d618974da0cbd805a2da80410a4989881
Certificate serial: 01856B8118FB92CA087EB3C0B6696CBC1181
Authority key identifier: E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/kjE_3-vZa2yKQAXkibaxs-hIqQs.roa
Signing time: Sun 01 Jan 2023 04:05:00 +0000
ROA not before: Sun 01 Jan 2023 04:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197737
IP address blocks: 195.128.147.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 04 Jul 2023 14:41:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:81:18:fb:92:ca:08:7e:b3:c0:b6:69:6c:bc:11:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e909ee3d618974da0cbd805a2da80410a4989881
Validity
Not Before: Jan 1 04:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=92313fdfebd96b6c8a4005e489b6b1b3e848a90b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:3b:c0:c0:b5:fa:53:9e:08:e5:2f:01:e9:de:
c3:42:2c:4d:08:1a:21:2c:48:91:59:49:fa:f5:42:
ca:f7:5e:29:05:7e:45:55:1c:b9:d4:62:68:d1:75:
86:32:f7:37:4e:84:2f:26:ec:bd:3c:a7:d3:1c:5e:
ba:fc:e8:8f:3e:bf:22:be:db:11:c3:33:03:6c:a9:
f2:9e:c5:68:95:b7:b7:9a:f7:7b:2d:e0:fe:c8:83:
40:b5:62:fb:18:73:43:db:e9:ec:3a:d8:9a:03:39:
92:57:4b:5c:0a:d2:e8:28:1e:be:06:05:c0:ef:09:
c6:c6:39:2b:33:9e:6b:df:87:fd:ed:c4:32:d8:a5:
70:73:9f:83:e7:6b:c5:aa:1a:30:b2:fd:f4:ee:7f:
b8:91:db:42:53:17:0b:63:f4:da:6a:b3:29:ec:11:
ca:06:c4:ef:7d:b7:c7:9a:28:6a:18:b9:dd:b8:45:
19:9c:11:9f:ee:2d:fc:89:fd:18:75:31:6e:ec:88:
8b:63:c5:1c:0f:fd:a2:7b:35:ce:d6:df:14:a1:9a:
93:1d:f3:2c:c0:30:02:71:0c:0a:45:b6:d7:3d:c8:
28:88:c2:e1:bd:29:bf:ae:01:bc:0c:2c:84:c4:54:
c7:08:e7:bf:dd:a0:1a:2b:2a:2d:97:87:27:24:c4:
a6:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:31:3F:DF:EB:D9:6B:6C:8A:40:05:E4:89:B6:B1:B3:E8:48:A9:0B
X509v3 Authority Key Identifier:
keyid:E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/kjE_3-vZa2yKQAXkibaxs-hIqQs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/6QnuPWGJdNoMvYBaLagEEKSYmIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.128.147.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:de:b0:02:91:fc:e2:c3:15:05:fb:90:9f:b3:fd:19:ec:56:
81:1c:40:4f:ed:6c:30:da:ce:0f:0d:69:27:1a:b6:89:35:47:
91:b6:56:19:4e:c3:ef:74:dc:d6:1d:0f:52:1f:a5:1c:d6:67:
c4:0d:17:cc:1f:b0:96:58:61:96:8e:06:1b:68:8e:12:95:47:
d5:dc:36:19:b0:ac:26:08:a0:02:81:10:99:31:50:cd:f0:71:
a8:d3:c0:69:78:99:44:d8:de:62:3d:7e:7e:59:bd:02:b3:cb:
6d:28:0f:17:ca:9a:2c:34:2e:aa:b9:f2:d8:c2:79:54:86:51:
6e:2c:1f:7c:70:0c:e9:42:58:2c:c8:f9:55:59:f1:8c:4c:44:
27:fc:26:a4:be:04:9d:b2:99:27:7e:d4:8b:a8:6f:6f:c5:10:
99:d1:08:35:0a:e1:6f:45:18:47:6b:f8:81:0d:21:90:44:cc:
18:29:86:3d:94:57:8d:ae:1f:27:fe:42:c9:2e:2a:31:e4:03:
55:5f:88:01:4f:3c:e0:f2:91:3a:01:c9:66:47:a6:0e:e7:04:
06:6f:16:a0:8e:03:8e:4b:ca:13:4d:4d:8f:73:24:61:16:05:
fa:ed:f6:7d:3e:55:c1:38:7c:ca:55:34:87:0c:da:09:db:7a:
01:32:ce:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:44 2024 by rpki-client on console-fra.rpki-client.org