Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/9668b5-5e92-4c18-9bb9-4351bbf74c0c/1/wXLnmCJiP8G0M30vBc0tyMLO3oI.roa
File: wXLnmCJiP8G0M30vBc0tyMLO3oI.roa (raw, json)
Hash identifier: 9EQVYmrEcVDB5NgTipmKSvFIYueohhVbXn2y1ZrDd4I=
Subject key identifier: C1:72:E7:98:22:62:3F:C1:B4:33:7D:2F:05:CD:2D:C8:C2:CE:DE:82
Certificate issuer: /CN=4f2d30b015ec4ef1b0d3c64347c8d1b598293f81
Certificate serial: 018C6DE8DB2139E44026FA8C6F5DA190AC46
Authority key identifier: 4F:2D:30:B0:15:EC:4E:F1:B0:D3:C6:43:47:C8:D1:B5:98:29:3F:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ty0wsBXsTvGw08ZDR8jRtZgpP4E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/9668b5-5e92-4c18-9bb9-4351bbf74c0c/1/wXLnmCJiP8G0M30vBc0tyMLO3oI.roa
Signing time: Fri 15 Dec 2023 14:37:06 +0000
ROA not before: Fri 15 Dec 2023 14:37:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199417
IP address blocks: 195.10.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:6d:e8:db:21:39:e4:40:26:fa:8c:6f:5d:a1:90:ac:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f2d30b015ec4ef1b0d3c64347c8d1b598293f81
Validity
Not Before: Dec 15 14:37:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c172e79822623fc1b4337d2f05cd2dc8c2cede82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:7d:4b:0a:b9:dc:3d:e6:6b:b0:ba:6a:f1:a5:
16:86:71:00:fd:24:95:2d:23:34:2d:30:e3:0b:2b:
df:b5:78:97:08:9c:e9:63:53:8a:37:9a:0f:ca:eb:
54:34:d6:3f:54:4c:70:ce:06:35:39:e3:e9:e1:f6:
b5:7a:65:84:bf:d2:05:d7:e0:f4:10:d6:98:89:66:
a5:22:e8:27:c1:6d:eb:0d:93:f6:49:8d:d0:9e:30:
41:4a:ab:1d:26:88:04:88:cb:e8:93:0c:2a:a5:d9:
e3:ec:69:56:64:b9:cf:54:d7:7c:13:3a:4a:a4:e4:
ca:f4:19:50:75:82:57:ca:55:88:c3:10:37:c0:eb:
9a:5a:53:4a:49:54:23:1f:e5:ef:83:7e:94:22:04:
a5:f9:ba:7e:d2:ac:b0:69:55:69:e0:40:49:48:bb:
95:c6:b3:bf:91:53:ff:b8:32:38:49:f3:09:ed:5b:
02:10:1f:4c:24:18:f5:f2:e4:07:bb:6b:e7:b4:e6:
f1:cd:b5:a6:37:36:2e:3f:6c:a3:62:73:42:d7:31:
6f:8a:1a:ce:1d:da:bf:ca:61:64:98:62:10:30:07:
4c:d0:ab:3d:4b:00:e7:5f:18:2d:20:b6:09:24:84:
2f:34:2b:13:15:a6:a5:49:70:0f:21:d8:4e:38:18:
a8:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:72:E7:98:22:62:3F:C1:B4:33:7D:2F:05:CD:2D:C8:C2:CE:DE:82
X509v3 Authority Key Identifier:
keyid:4F:2D:30:B0:15:EC:4E:F1:B0:D3:C6:43:47:C8:D1:B5:98:29:3F:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ty0wsBXsTvGw08ZDR8jRtZgpP4E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/9668b5-5e92-4c18-9bb9-4351bbf74c0c/1/wXLnmCJiP8G0M30vBc0tyMLO3oI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/9668b5-5e92-4c18-9bb9-4351bbf74c0c/1/Ty0wsBXsTvGw08ZDR8jRtZgpP4E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.10.205.0/24
Signature Algorithm: sha256WithRSAEncryption
98:fd:9b:58:b1:d5:d1:67:b1:a7:b5:6a:38:5d:4c:27:76:70:
0c:7c:de:b0:7a:cd:c8:f0:50:fb:ff:23:61:a9:2e:83:5a:39:
af:00:1e:51:60:d6:6c:57:6b:08:df:f5:bc:af:34:af:6a:8b:
e5:37:d7:e2:fe:e4:c8:bc:c7:56:af:df:a2:c4:46:ff:13:34:
a0:ed:e7:68:c4:78:5b:8a:a3:48:6b:71:0b:33:e2:b9:e3:a2:
e1:ee:c4:cb:f5:b0:13:73:7e:13:35:63:09:35:f0:bc:08:d0:
00:0a:99:f4:6b:b2:13:d7:17:9e:dc:c5:99:f2:82:80:bf:54:
53:71:98:d9:20:00:bc:ba:eb:43:3c:e9:cf:c5:c0:40:5a:56:
c3:9f:fb:10:28:b1:3e:f9:22:2a:a0:7e:7f:ac:16:ae:80:43:
e7:c4:22:bb:40:0d:d1:9c:d3:f2:51:b1:8f:1f:c3:fe:eb:5b:
52:91:32:ec:64:ab:90:9f:31:25:e6:71:4f:3f:54:23:49:03:
5b:2c:8f:fb:09:4b:0a:bd:f5:9e:9a:26:25:48:06:e7:0f:79:
e8:83:37:27:43:80:a3:2c:59:f5:45:d4:b9:fe:93:bd:65:0a:
0e:6a:30:26:f8:52:19:2e:a5:06:18:05:be:3b:40:88:8b:39:
f7:2c:ea:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:29 2024 by rpki-client on console-ams.rpki-client.org