Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/yYx5CI8aEhUYF-c8MGWG9etZqKc.roa
File: yYx5CI8aEhUYF-c8MGWG9etZqKc.roa (raw, json)
Hash identifier: cV65u/05Gf8pcZse9KhLiYTci7W5jchUBBvF+J523oY=
Subject key identifier: C9:8C:79:08:8F:1A:12:15:18:17:E7:3C:30:65:86:F5:EB:59:A8:A7
Certificate issuer: /CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Certificate serial: 0191952AE83E43277358C5791AE087D380C8
Authority key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/yYx5CI8aEhUYF-c8MGWG9etZqKc.roa
Signing time: Tue 27 Aug 2024 18:48:22 +0000
ROA not before: Tue 27 Aug 2024 18:48:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206271
IP address blocks: 195.93.226.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Sep 2024 19:40:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:95:2a:e8:3e:43:27:73:58:c5:79:1a:e0:87:d3:80:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Validity
Not Before: Aug 27 18:48:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c98c79088f1a12151817e73c306586f5eb59a8a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:71:38:bf:58:6f:2d:58:42:b9:0d:0c:46:80:
59:6b:d2:36:8f:b6:68:1b:a9:99:27:e0:b9:ad:42:
0b:72:5b:fd:4c:ec:71:fc:14:92:86:72:79:1b:03:
18:24:70:7d:83:2f:e2:9b:a8:8c:00:df:14:45:89:
bc:87:ee:27:6b:fd:20:af:18:4d:96:f3:e3:fe:6e:
57:af:2c:a4:e8:b3:c7:0b:eb:e0:6f:b9:18:fc:bc:
63:41:c0:92:11:da:7f:e1:97:9c:0a:83:9c:aa:67:
6b:a3:71:89:c9:25:a2:88:92:f6:34:05:47:95:70:
46:2a:a4:ad:be:51:52:2d:3f:23:1c:a5:65:d4:5f:
68:12:34:5a:57:48:aa:a3:bb:0e:aa:97:f8:cb:5d:
c1:b1:50:fc:a3:ba:eb:15:75:3a:f3:d2:86:1c:d2:
64:ee:7d:32:3c:1d:2d:e1:ee:51:fe:6b:5e:ca:30:
48:16:5f:73:e9:8a:61:7c:ff:00:b3:61:97:67:88:
25:fe:7d:b8:4c:2f:8c:2f:51:f3:cd:96:48:26:23:
0e:43:3a:a4:9b:2c:f5:8f:ca:3c:5a:f1:bf:f1:84:
a0:cf:c8:d9:9f:d9:b0:14:2a:65:68:a3:4c:fc:dd:
3d:b1:6d:ac:97:97:11:c6:5b:45:68:3c:84:c8:d9:
f8:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:8C:79:08:8F:1A:12:15:18:17:E7:3C:30:65:86:F5:EB:59:A8:A7
X509v3 Authority Key Identifier:
keyid:1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/yYx5CI8aEhUYF-c8MGWG9etZqKc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.93.226.0/24
Signature Algorithm: sha256WithRSAEncryption
58:50:bf:3e:7f:0d:7a:dd:5c:cc:cc:a4:3d:2f:a1:4d:21:43:
10:2b:25:71:ea:97:a5:40:87:39:9f:bf:14:87:60:6f:13:d3:
29:4d:d9:54:1e:f8:87:c9:eb:fc:c8:e0:7a:c4:0d:3d:c9:9a:
6f:34:73:83:8c:7d:72:bd:a3:91:9e:8c:9f:35:37:b2:2f:72:
68:41:50:ae:8b:bf:cb:74:e5:4e:6e:00:9d:58:fa:13:5c:c4:
51:00:25:99:13:b7:df:fb:97:31:24:73:96:5b:f7:de:ae:29:
ca:b5:9c:b7:49:1b:83:32:d2:1b:fa:ed:e6:df:7a:d9:f5:a1:
57:aa:88:aa:40:f1:cc:f0:60:71:4b:53:c8:10:2f:97:96:96:
31:69:6d:46:40:06:78:7c:d7:9e:1a:b6:b0:5c:3a:a8:16:28:
39:5b:e9:af:a2:90:33:28:d1:80:4b:e6:6a:ea:45:3d:66:a4:
91:c8:ec:61:68:99:88:9c:08:8b:b0:7e:5d:95:62:45:5f:23:
b3:96:78:ac:a4:92:b3:a7:6d:c1:4a:35:85:ff:ca:2f:40:cb:
3a:49:4f:1b:99:6e:a5:94:1e:99:68:20:09:49:dd:ae:07:b7:
7f:e3:0c:ee:f3:6a:09:63:aa:e0:dc:13:a3:f0:71:cd:f1:23:
74:24:f0:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 2 22:20:33 2024 by rpki-client on console-ams.rpki-client.org