Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/93804e-b1f2-4034-9b26-3cef8a8d6ea1/1/9IR6dAYhFcFEKRmF2oALSyr7z-M.roa
File: 9IR6dAYhFcFEKRmF2oALSyr7z-M.roa (raw, json)
Hash identifier: Ov/M2yCjnqAf1uEtC/AWHdxctjcFeZU7sDF5JNOPnrI=
Subject key identifier: F4:84:7A:74:06:21:15:C1:44:29:19:85:DA:80:0B:4B:2A:FB:CF:E3
Certificate issuer: /CN=af2acebc761caf37656dbd7153c00499fb737777
Certificate serial: 018C11D32DFD8407020B0E61014C485BBFEF
Authority key identifier: AF:2A:CE:BC:76:1C:AF:37:65:6D:BD:71:53:C0:04:99:FB:73:77:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryrOvHYcrzdlbb1xU8AEmftzd3c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/93804e-b1f2-4034-9b26-3cef8a8d6ea1/1/9IR6dAYhFcFEKRmF2oALSyr7z-M.roa
Signing time: Mon 27 Nov 2023 17:28:21 +0000
ROA not before: Mon 27 Nov 2023 17:28:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60631
IP address blocks: 195.177.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:11:d3:2d:fd:84:07:02:0b:0e:61:01:4c:48:5b:bf:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2acebc761caf37656dbd7153c00499fb737777
Validity
Not Before: Nov 27 17:28:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f4847a74062115c144291985da800b4b2afbcfe3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:27:19:20:fc:e3:00:2c:a2:f3:41:d3:ce:02:
87:c8:7f:c4:5d:a9:91:ad:af:70:28:74:56:90:f4:
42:68:a6:24:36:a9:21:bf:79:5c:31:36:0b:e2:d4:
71:8c:4a:3b:ec:ce:9d:21:90:ff:52:19:eb:f3:86:
c1:c2:08:54:46:f7:18:22:90:9f:ac:05:29:48:ce:
77:dc:95:ca:bc:a0:56:90:0f:6f:5e:5c:d6:8e:60:
28:29:d5:ee:7a:ad:ff:1e:ef:77:9e:75:eb:9f:10:
88:fe:54:1c:b3:47:54:07:34:9c:bf:0e:5c:16:c5:
9f:05:61:62:e5:8e:c3:fe:ad:34:fa:1b:61:04:51:
b7:0c:e4:55:8b:4e:6f:af:d8:b8:b4:5f:a3:77:ae:
15:0f:60:16:4e:7f:60:53:b4:df:28:82:4d:7f:f4:
97:d4:37:e8:5c:c1:47:31:7d:71:8f:60:0e:3b:9a:
fd:34:06:0a:63:be:74:ab:1d:b9:26:87:3a:ee:35:
41:ae:1d:69:7f:8e:18:3b:48:a5:54:db:e3:10:83:
47:6f:6f:b2:fa:5e:87:61:d7:ea:84:cd:f3:4b:25:
7e:12:7e:6c:9e:c2:b0:27:45:e7:47:2e:db:b4:95:
79:47:6e:42:6c:d2:7b:81:13:c8:66:dd:48:22:de:
28:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:84:7A:74:06:21:15:C1:44:29:19:85:DA:80:0B:4B:2A:FB:CF:E3
X509v3 Authority Key Identifier:
keyid:AF:2A:CE:BC:76:1C:AF:37:65:6D:BD:71:53:C0:04:99:FB:73:77:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryrOvHYcrzdlbb1xU8AEmftzd3c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/93804e-b1f2-4034-9b26-3cef8a8d6ea1/1/9IR6dAYhFcFEKRmF2oALSyr7z-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/93804e-b1f2-4034-9b26-3cef8a8d6ea1/1/ryrOvHYcrzdlbb1xU8AEmftzd3c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.177.255.0/24
Signature Algorithm: sha256WithRSAEncryption
12:e5:bc:1b:b3:c4:76:46:57:da:31:df:fa:4a:a3:66:8a:9d:
51:3d:cc:90:13:fc:b3:f0:50:20:d0:2d:aa:0a:b4:3b:68:82:
0c:51:39:65:02:0f:f9:3c:77:b7:81:c4:c9:9b:fa:d0:dc:0c:
84:6b:ec:e8:de:2c:a0:fa:38:c5:6e:0d:f0:f8:37:84:08:64:
f6:fb:61:89:a9:eb:0d:fe:9b:58:dd:6f:68:bd:61:d1:a2:b0:
e5:9a:dd:dc:10:28:7b:a8:2b:29:c2:34:7f:d0:0e:16:bf:fb:
53:9c:4c:24:40:a6:5d:a3:9c:94:ef:94:c7:2d:f4:b6:75:e5:
31:f2:8e:58:e3:94:0b:af:11:6a:6a:30:5d:f4:f2:5a:54:64:
68:43:26:21:04:42:7d:be:ed:88:19:fc:3a:4b:be:3b:d5:ed:
b3:37:20:c4:a8:1b:9a:48:4f:9c:0b:cb:b8:da:67:44:41:47:
09:d5:6e:00:83:e8:ff:81:4e:5d:02:75:2b:19:99:9d:b3:8c:
d6:d1:28:d0:68:71:56:d8:e7:d1:a8:73:2f:b3:c6:03:67:bf:
7e:2a:ed:21:68:e6:be:4a:59:34:0a:fa:71:e8:9b:e8:d4:b3:
93:69:2e:21:dc:6f:58:0e:59:92:b2:b7:ff:22:5d:13:73:ed:
37:9a:2e:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:19 2024 by rpki-client on console-fra.rpki-client.org