Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/4f0ec5-54d2-40fb-9498-742f8691beaa/1/KV2qjAvbVJ0EhUdgL9ohFyBsLqI.roa
File: KV2qjAvbVJ0EhUdgL9ohFyBsLqI.roa (raw, json)
Hash identifier: BDSPfCx0XjH6kUNgBLYTRTJjyRrikOO4ugNfPkUMreI=
Subject key identifier: 29:5D:AA:8C:0B:DB:54:9D:04:85:47:60:2F:DA:21:17:20:6C:2E:A2
Certificate issuer: /CN=608011ea51a9fbcf8bae0df1ed499a3407d63053
Certificate serial: 01856D41A9B0B9200E33436632AE71357642
Authority key identifier: 60:80:11:EA:51:A9:FB:CF:8B:AE:0D:F1:ED:49:9A:34:07:D6:30:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YIAR6lGp-8-Lrg3x7UmaNAfWMFM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/4f0ec5-54d2-40fb-9498-742f8691beaa/1/KV2qjAvbVJ0EhUdgL9ohFyBsLqI.roa
Signing time: Sun 01 Jan 2023 12:14:57 +0000
ROA not before: Sun 01 Jan 2023 12:14:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1764
IP address blocks: 195.242.184.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:41:a9:b0:b9:20:0e:33:43:66:32:ae:71:35:76:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=608011ea51a9fbcf8bae0df1ed499a3407d63053
Validity
Not Before: Jan 1 12:14:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=295daa8c0bdb549d048547602fda2117206c2ea2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:5d:71:d2:30:3a:e9:e8:7f:1c:2e:a0:d4:ef:
0e:1a:d9:b1:c4:3c:5d:32:5e:30:52:81:86:68:e8:
e5:ff:69:ee:1d:7e:d4:e0:2d:cf:9f:05:ce:f2:cb:
02:ed:92:5f:27:7b:7e:7e:3c:10:93:8d:34:be:b2:
76:df:1c:bf:62:20:9f:70:fb:a2:96:4c:ca:b9:e9:
d6:f2:05:50:77:fb:b6:0a:0f:29:75:fb:7b:7b:ce:
01:3e:0c:36:ea:80:0e:de:cb:3c:d2:bc:d7:76:7f:
81:2b:3b:ce:64:54:3d:b1:27:f5:82:d3:4f:3c:6e:
83:84:8a:21:1c:32:0c:4e:c5:aa:2c:7b:b2:9d:c8:
22:b2:1c:7d:33:81:24:46:6e:00:c9:71:6b:6e:2d:
f2:1d:7d:0b:b8:66:1c:f9:2b:c7:1c:eb:1f:fa:35:
5e:db:a0:a8:c0:e8:16:d8:8d:5a:7b:b5:13:b4:96:
65:00:5c:75:c7:55:15:5d:72:3e:a3:d5:27:db:25:
62:a2:ed:81:25:8d:39:b8:ee:c9:47:35:35:c4:ec:
6b:e5:df:f0:75:1c:37:99:ba:e2:f6:b0:49:f2:a7:
98:42:b6:ed:37:6f:d7:50:13:9f:2c:b5:3c:3d:18:
cd:c7:b4:c0:1f:1b:0b:5c:5a:c9:94:61:a1:1c:23:
53:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:5D:AA:8C:0B:DB:54:9D:04:85:47:60:2F:DA:21:17:20:6C:2E:A2
X509v3 Authority Key Identifier:
keyid:60:80:11:EA:51:A9:FB:CF:8B:AE:0D:F1:ED:49:9A:34:07:D6:30:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YIAR6lGp-8-Lrg3x7UmaNAfWMFM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/4f0ec5-54d2-40fb-9498-742f8691beaa/1/KV2qjAvbVJ0EhUdgL9ohFyBsLqI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/4f0ec5-54d2-40fb-9498-742f8691beaa/1/YIAR6lGp-8-Lrg3x7UmaNAfWMFM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.242.184.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:b8:43:de:23:62:e8:72:85:bd:74:52:2c:b1:c1:d0:b2:57:
4f:db:6a:d5:7e:13:c1:1c:59:6c:de:79:ca:b0:c2:a0:b6:9b:
67:5e:a7:ac:62:4b:2e:97:39:b2:e6:3b:2e:db:4a:e9:b0:2c:
6f:8f:03:f1:f4:c9:21:0d:7c:0e:6f:d3:ac:70:bc:dd:59:d1:
df:2c:29:28:5b:9f:b2:22:a9:2c:d2:1e:ed:2e:c8:9c:a0:fc:
37:38:c5:92:60:8b:39:01:45:c8:f1:a0:d1:43:13:80:fb:65:
b1:59:d0:d2:df:a0:ff:0f:98:05:63:7f:ec:61:66:f6:63:24:
62:30:8c:c5:a4:e0:1b:22:4e:40:be:f8:02:e4:c6:cb:38:21:
40:c2:8f:bb:8f:1b:b6:59:8d:33:bb:b5:f7:0a:c0:e6:ba:c8:
26:21:f6:88:4a:28:de:87:02:6e:b8:d5:03:a7:1a:c9:69:2c:
eb:9b:6d:b7:e7:f3:44:46:ea:a2:9c:e0:6e:cb:58:2c:0b:3f:
40:3d:2a:5f:3c:ee:47:a2:b9:aa:ed:8b:04:95:e0:ac:ef:f8:
81:35:79:16:06:04:e2:d6:ec:21:99:a2:2d:c3:79:fd:7c:b8:
04:63:16:69:f7:b4:a5:4a:82:42:b9:ae:94:08:f2:ad:c6:b1:
28:4d:7e:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:41 2024 by rpki-client on console-ams.rpki-client.org