Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/pdJO2IjI2-srVhYQBMUy8u2nxTA.roa
File: pdJO2IjI2-srVhYQBMUy8u2nxTA.roa (raw, json)
Hash identifier: Li0aR1ozvkyQ8Mhn82vI+66OEZRC4TqCVdCEn9VarhI=
Subject key identifier: A5:D2:4E:D8:88:C8:DB:EB:2B:56:16:10:04:C5:32:F2:ED:A7:C5:30
Certificate issuer: /CN=4dd1b2587490ad061cb207176bdeec81a531588c
Certificate serial: 01856E0B1665C3F4AD180965B9253A0053B2
Authority key identifier: 4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/pdJO2IjI2-srVhYQBMUy8u2nxTA.roa
Signing time: Sun 01 Jan 2023 15:54:58 +0000
ROA not before: Sun 01 Jan 2023 15:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43123
IP address blocks: 195.219.39.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:0b:16:65:c3:f4:ad:18:09:65:b9:25:3a:00:53:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd1b2587490ad061cb207176bdeec81a531588c
Validity
Not Before: Jan 1 15:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a5d24ed888c8dbeb2b56161004c532f2eda7c530
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:84:f7:26:d2:cf:f4:d5:1e:5a:46:76:91:00:
a4:ad:f1:dc:2b:ce:1f:fa:8b:fc:b8:c8:24:7b:61:
9e:dc:14:52:11:dc:75:7f:6e:06:dd:32:76:cb:14:
a8:8c:95:fa:60:22:09:a1:80:7f:7b:f7:be:50:46:
ea:6a:31:82:73:b3:0a:49:75:4e:15:56:32:da:f1:
6e:94:dc:b8:bd:33:fd:13:57:05:ad:a9:28:ad:79:
4e:d9:86:5d:4a:12:1f:57:29:45:93:98:31:60:e4:
af:7f:16:67:b1:3b:9c:b2:56:7b:6f:8e:77:15:39:
ab:21:59:4a:40:a3:57:c1:9d:ea:c1:18:b8:28:dc:
6d:ff:3d:e1:2a:b9:58:d0:f1:05:24:b0:ea:76:a3:
a8:69:db:0d:c0:a1:2d:14:25:04:ba:a9:4a:72:6b:
a7:58:e1:a1:15:cb:cb:f7:18:5c:0b:6d:04:8a:13:
06:43:5c:63:db:a6:8e:44:c5:3d:50:1c:e0:95:3a:
2e:66:e7:50:99:39:83:55:4e:01:83:68:1f:b1:4c:
11:43:c1:6c:f3:d4:2d:62:db:f6:71:95:df:53:f4:
e2:a2:1f:ed:ee:f0:b0:d7:b1:a2:26:15:f8:3f:8c:
28:77:a7:72:31:1f:1d:62:1e:22:a7:b7:88:16:72:
02:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:D2:4E:D8:88:C8:DB:EB:2B:56:16:10:04:C5:32:F2:ED:A7:C5:30
X509v3 Authority Key Identifier:
keyid:4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/pdJO2IjI2-srVhYQBMUy8u2nxTA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/TdGyWHSQrQYcsgcXa97sgaUxWIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.219.39.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:ec:9b:f9:9f:6d:0d:33:59:1e:4e:fd:7d:a8:3a:0b:22:75:
4f:fb:61:4f:6c:c3:68:23:6d:96:ac:7f:07:4e:a6:1d:ee:1c:
1a:1d:3e:56:22:7d:6a:1e:aa:81:e8:ca:ab:11:a2:95:0a:ee:
a0:a0:2b:74:2b:70:b4:ce:09:3e:cf:17:34:56:24:e9:1f:b5:
be:22:b2:ff:01:41:38:5a:50:74:1d:d2:c2:b5:9e:e3:14:06:
48:51:5a:e2:13:13:c8:74:df:bc:e0:ea:89:33:ea:1e:c0:c0:
9d:71:61:7b:99:e8:c6:54:5a:aa:b6:43:47:33:cd:d1:16:4a:
7e:a8:74:7a:a7:00:1b:d0:9d:33:97:aa:a8:76:e1:81:be:d5:
6d:08:99:c6:ba:c2:98:b9:d1:66:33:98:06:cc:25:69:4b:04:
5d:84:e0:6a:03:1b:8c:b6:01:39:9a:56:7f:a5:46:bc:c3:46:
01:0a:88:2b:62:37:3c:6d:74:c1:1a:b9:a1:03:16:08:0b:2c:
b6:32:ca:df:88:ea:c2:97:d4:f9:e0:85:0d:53:a5:96:93:91:
51:a3:0f:d9:e0:04:77:f4:cf:a1:7c:43:b3:78:a2:d2:4f:42:
d8:75:e4:fd:0f:6e:c8:98:fe:24:cd:31:6f:50:a6:bd:2f:0a:
5e:17:7f:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:30 2024 by rpki-client on console-fra.rpki-client.org