Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/99TiaIdbJLoxH042nVtL4Iqp-ZE.roa
File: 99TiaIdbJLoxH042nVtL4Iqp-ZE.roa (raw, json)
Hash identifier: 16O3ExZg3W9y2Rt2LXFKwqNxqriTcyA+72uSMv1ZEvU=
Subject key identifier: F7:D4:E2:68:87:5B:24:BA:31:1F:4E:36:9D:5B:4B:E0:8A:A9:F9:91
Certificate issuer: /CN=0969a2a39635b797476f1f1633ae8f27bf33b533
Certificate serial: 018A2A77E90ABF0AF3CC11ED8755170142BE
Authority key identifier: 09:69:A2:A3:96:35:B7:97:47:6F:1F:16:33:AE:8F:27:BF:33:B5:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWmio5Y1t5dHbx8WM66PJ78ztTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/99TiaIdbJLoxH042nVtL4Iqp-ZE.roa
Signing time: Fri 25 Aug 2023 02:13:36 +0000
ROA not before: Fri 25 Aug 2023 02:13:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211557
IP address blocks: 195.85.201.0/24 maxlen: 24
195.85.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:2a:77:e9:0a:bf:0a:f3:cc:11:ed:87:55:17:01:42:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0969a2a39635b797476f1f1633ae8f27bf33b533
Validity
Not Before: Aug 25 02:13:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f7d4e268875b24ba311f4e369d5b4be08aa9f991
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:78:e5:7e:bb:2a:12:a8:2d:6e:ed:d5:ca:14:
c7:dc:64:8b:e6:03:88:35:6d:bb:cf:15:d6:0b:5d:
6f:54:d1:59:87:55:1f:8d:03:f3:3f:d4:b5:f0:42:
64:a3:0b:4b:26:5e:10:55:99:5a:a7:4e:73:cf:9d:
ca:86:5f:8f:9f:d3:4f:58:32:6f:29:58:68:55:28:
97:9d:08:98:9d:24:d1:4b:e1:eb:ac:a4:7f:50:f9:
3c:5c:b4:ca:49:2c:ec:aa:a9:55:cc:33:16:1c:8c:
15:76:e9:f0:2a:d8:86:bf:26:e0:e1:b3:7a:93:1c:
69:7a:c6:65:79:73:3c:3a:6c:71:13:c7:62:d9:6a:
97:7c:63:30:68:f8:dd:57:87:ec:42:bb:76:c5:0a:
4d:d8:12:04:8f:20:42:54:53:34:a8:63:45:7b:2d:
4c:df:83:81:28:9e:6f:9d:af:9a:3e:b5:ba:b9:e2:
e7:fb:74:d2:5c:8d:07:32:bc:a8:26:90:79:a1:a7:
ad:c0:3f:7a:ea:0f:09:d7:02:81:01:45:60:fa:7e:
17:c5:ce:9d:48:47:f7:d7:8b:3e:a3:ec:ce:11:e2:
04:a2:18:03:30:99:e2:c4:bd:09:5b:e2:d0:a6:96:
5d:12:62:70:ab:1a:c8:e6:53:cc:75:a4:a5:ff:b2:
d2:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:D4:E2:68:87:5B:24:BA:31:1F:4E:36:9D:5B:4B:E0:8A:A9:F9:91
X509v3 Authority Key Identifier:
keyid:09:69:A2:A3:96:35:B7:97:47:6F:1F:16:33:AE:8F:27:BF:33:B5:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWmio5Y1t5dHbx8WM66PJ78ztTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/99TiaIdbJLoxH042nVtL4Iqp-ZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.85.201.0/24
195.85.205.0/24
Signature Algorithm: sha256WithRSAEncryption
67:b9:46:ff:c3:56:8a:f7:38:84:28:d5:50:81:b0:0c:30:b7:
77:e6:99:da:24:35:48:3c:47:6f:32:a4:bd:06:94:f9:f8:64:
b2:b2:be:7b:7c:8f:43:f5:4d:0f:db:70:d4:fc:9b:86:c6:20:
f6:a5:cb:4c:26:a1:cc:89:c7:fd:2d:53:3c:31:44:bd:fd:ca:
09:4f:51:0e:c0:86:07:01:e5:5d:f1:a8:b3:6b:d7:52:fe:9c:
25:29:51:ec:8c:4e:65:4a:e7:7a:c7:08:0a:62:a3:54:30:db:
37:86:51:34:6a:4c:ed:21:9c:a6:a1:79:ad:32:78:46:05:3b:
1d:3c:24:88:47:85:8e:33:f1:96:cd:6d:54:71:37:c6:86:97:
16:63:16:38:30:1f:33:2e:62:5b:b7:e9:75:2b:a3:49:19:0e:
02:7e:f5:d2:f2:66:09:60:5e:01:ca:2a:0b:62:9b:cf:91:08:
b7:31:45:d1:1d:3f:d7:eb:6e:a4:88:8e:34:04:a3:5a:27:c6:
2d:14:a6:1d:71:85:b9:ae:c6:ca:d7:89:68:ac:a0:4c:90:d9:
3d:45:83:01:10:5f:0e:e6:51:a1:b5:20:32:8e:55:40:58:3f:
a1:0d:74:c6:30:23:d4:04:57:03:03:4c:2d:d0:18:df:2b:8b:
a6:6d:b4:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:42 2024 by rpki-client on console-ams.rpki-client.org