Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/f9b3ca-04a0-4233-aed1-c6f9d0a8f36e/1/Mj4zggqwFcmXr7ISGLZtpttO20w.roa
File: Mj4zggqwFcmXr7ISGLZtpttO20w.roa (raw, json)
Hash identifier: s+Chvu7mK0IpTjQbMV5TCVlBOFfra9MRs54Br8Npu+k=
Subject key identifier: 32:3E:33:82:0A:B0:15:C9:97:AF:B2:12:18:B6:6D:A6:DB:4E:DB:4C
Certificate issuer: /CN=aee8d6f56c5fbc904c9b913609013e5964865257
Certificate serial: 0191D7BDD8E26BF23F28F9599F7DDDCD0A37
Authority key identifier: AE:E8:D6:F5:6C:5F:BC:90:4C:9B:91:36:09:01:3E:59:64:86:52:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rujW9WxfvJBMm5E2CQE-WWSGUlc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/f9b3ca-04a0-4233-aed1-c6f9d0a8f36e/1/Mj4zggqwFcmXr7ISGLZtpttO20w.roa
Signing time: Mon 09 Sep 2024 17:03:48 +0000
ROA not before: Mon 09 Sep 2024 17:03:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57604
IP address blocks: 195.20.19.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Sep 2024 14:35:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:d7:bd:d8:e2:6b:f2:3f:28:f9:59:9f:7d:dd:cd:0a:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aee8d6f56c5fbc904c9b913609013e5964865257
Validity
Not Before: Sep 9 17:03:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=323e33820ab015c997afb21218b66da6db4edb4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:47:b8:b1:64:53:36:dd:49:02:9f:65:9d:64:
70:3d:8d:a5:60:63:aa:8a:28:7b:ff:d7:87:1e:ea:
21:29:be:3c:fc:19:09:67:3f:f8:57:ab:b4:3d:bf:
75:2a:be:d1:69:ac:c6:38:38:5d:84:3b:52:53:e2:
0e:20:2d:7a:4d:c1:c2:e3:a2:46:7a:e7:86:75:f3:
2e:1d:fa:3b:c5:8c:cf:b8:5a:0e:3d:2e:cf:13:3c:
0e:e7:a0:4e:50:b4:40:d8:2c:62:94:9b:33:2a:43:
f7:69:a4:2b:d2:3c:96:b3:92:c3:b0:fe:e9:15:94:
0a:bb:f4:8b:87:ab:87:66:10:6e:54:45:64:b8:d2:
bc:85:75:ab:4b:90:f6:bf:2f:0a:63:22:a4:f0:7e:
a1:02:88:c2:76:de:97:15:99:e2:a2:69:31:da:92:
2f:60:af:1a:81:5a:34:1e:64:f6:41:f6:c3:31:01:
7a:43:b8:8e:e5:cb:99:d7:47:22:03:b7:30:c0:28:
90:a7:c1:9a:c9:3f:18:96:e6:97:99:c0:e5:c2:92:
ee:34:48:72:66:30:18:9f:f3:5d:48:6f:86:c3:9d:
1e:a3:aa:8e:75:df:f0:b4:62:f9:dd:b8:5d:b8:e4:
06:7d:ba:37:95:32:bf:50:42:4c:b8:ad:1a:0a:6f:
49:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:3E:33:82:0A:B0:15:C9:97:AF:B2:12:18:B6:6D:A6:DB:4E:DB:4C
X509v3 Authority Key Identifier:
keyid:AE:E8:D6:F5:6C:5F:BC:90:4C:9B:91:36:09:01:3E:59:64:86:52:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rujW9WxfvJBMm5E2CQE-WWSGUlc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f9b3ca-04a0-4233-aed1-c6f9d0a8f36e/1/Mj4zggqwFcmXr7ISGLZtpttO20w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f9b3ca-04a0-4233-aed1-c6f9d0a8f36e/1/rujW9WxfvJBMm5E2CQE-WWSGUlc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.20.19.0/24
Signature Algorithm: sha256WithRSAEncryption
40:c4:2a:13:f4:dd:4b:57:27:e6:44:be:21:d0:ad:8e:dd:78:
a2:a1:7a:94:ab:c2:f4:14:58:3f:85:1d:08:3e:b8:c1:29:c5:
77:df:74:86:30:13:ae:e6:70:fd:7d:49:13:40:ab:8f:71:fa:
e5:d7:9d:be:72:fc:d7:fc:88:f0:53:fb:cb:d2:01:b9:00:1a:
f1:11:7d:2e:8d:cf:da:67:d9:55:22:2a:01:8a:b7:33:fe:0e:
76:fb:5c:4d:ee:cf:ad:c1:01:09:51:03:3c:f5:51:92:4b:98:
a1:b8:04:73:ec:cb:fa:bc:50:e4:51:82:2e:57:09:35:01:9b:
ab:5a:1a:08:e7:4f:5f:f3:a8:75:56:18:c9:ea:3f:6d:91:5b:
b5:8f:6b:23:96:4e:d5:16:dc:a7:0f:f2:08:a9:29:db:24:aa:
c6:ca:62:8e:d0:f3:b9:7b:04:91:d6:2c:06:db:25:b6:58:a7:
bb:37:d9:50:d2:3b:b5:42:66:2f:f1:57:a2:5c:a0:9f:ef:16:
0d:c7:54:a2:6a:a3:2a:e8:64:08:c1:23:69:4e:c6:cc:d6:30:
34:c6:c2:7d:e2:bc:3c:7d:d8:56:fb:51:e2:ae:94:4a:c9:b5:
c9:5e:e2:22:c9:1e:4c:d4:1d:fd:a2:d9:f4:d8:a2:72:f1:6d:
e4:0f:4d:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 11 18:35:55 2024 by rpki-client on console-ams.rpki-client.org