Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/fP4ttl8uVBs5DARPgIkftprJpL4.roa
File: fP4ttl8uVBs5DARPgIkftprJpL4.roa (raw, json)
Hash identifier: +4RA9uJPS9bcuTv9XiJIBOXMeJAI4VehP1aJUI0j1Xc=
Subject key identifier: 7C:FE:2D:B6:5F:2E:54:1B:39:0C:04:4F:80:89:1F:B6:9A:C9:A4:BE
Certificate issuer: /CN=5c4c28a75ac96951dc38400a80f9ef3aaaf2aacb
Certificate serial: 01856C41232F22E260129080434FE637B2F7
Authority key identifier: 5C:4C:28:A7:5A:C9:69:51:DC:38:40:0A:80:F9:EF:3A:AA:F2:AA:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/fP4ttl8uVBs5DARPgIkftprJpL4.roa
Signing time: Sun 01 Jan 2023 07:34:46 +0000
ROA not before: Sun 01 Jan 2023 07:34:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15576
IP address blocks: 195.248.92.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:23:2f:22:e2:60:12:90:80:43:4f:e6:37:b2:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c4c28a75ac96951dc38400a80f9ef3aaaf2aacb
Validity
Not Before: Jan 1 07:34:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7cfe2db65f2e541b390c044f80891fb69ac9a4be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5c:65:01:f3:65:d2:ad:a4:db:90:58:a8:f9:
db:ac:65:90:16:8a:4c:65:a1:32:3b:ec:b0:95:9b:
ae:97:f1:e0:d3:cd:c8:d6:d6:75:c1:6e:c6:d7:bf:
d1:c7:7a:f5:bb:32:a1:de:3d:6b:94:34:38:00:f6:
3e:94:bb:6b:53:97:06:6c:99:b1:55:2f:3c:53:d3:
f2:39:cf:df:be:63:8c:f8:a2:6f:49:3a:34:0c:39:
6a:d6:c8:0f:0c:61:ff:6c:31:8e:67:5e:b4:33:78:
b1:a4:8b:77:c1:80:f8:b0:9d:e5:96:99:17:4a:ea:
7b:54:30:e8:0e:0b:f9:95:31:48:78:05:cc:32:34:
d0:8d:be:e5:ca:85:e6:6a:37:22:e0:9f:46:66:3f:
bb:d2:f3:50:68:96:d6:da:0a:d8:09:e2:ea:3a:f0:
f2:77:ce:6f:f5:db:07:ce:01:b0:b4:76:aa:10:c7:
cd:53:40:5d:91:d6:2f:cd:45:2a:3a:90:97:d7:01:
05:7b:ad:fa:f8:32:73:17:40:8a:47:4f:b3:0d:16:
e6:17:4e:7c:07:6d:85:13:c2:12:bb:9a:8c:4c:4e:
82:3a:f6:c6:bf:5d:cd:24:9e:bf:ef:19:8e:a3:eb:
d2:1c:bb:03:d4:f9:d5:60:b9:79:24:88:2a:a2:b5:
8b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:FE:2D:B6:5F:2E:54:1B:39:0C:04:4F:80:89:1F:B6:9A:C9:A4:BE
X509v3 Authority Key Identifier:
keyid:5C:4C:28:A7:5A:C9:69:51:DC:38:40:0A:80:F9:EF:3A:AA:F2:AA:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/fP4ttl8uVBs5DARPgIkftprJpL4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.248.92.0/24
Signature Algorithm: sha256WithRSAEncryption
01:ed:bf:89:e7:e2:d7:b7:6f:29:54:68:d9:80:1d:1a:cd:48:
6e:f7:fc:2a:17:5e:b8:9b:48:6c:26:7f:04:5d:e9:16:16:e9:
70:51:7d:82:97:ff:51:81:d0:16:42:2c:40:11:12:c0:a6:6f:
7b:31:6d:e8:c0:f8:bb:86:8a:89:9e:e1:b1:65:2c:71:c5:6c:
27:b3:32:98:c8:ed:11:77:b9:8f:6a:48:05:b4:57:b8:9e:74:
a5:e8:d9:2c:a5:b4:71:ff:4a:6d:1e:83:49:75:af:b8:c3:34:
69:fc:79:61:3e:00:07:7c:ce:00:45:3e:39:7e:15:78:f0:21:
24:90:21:b2:e5:e2:8c:70:09:2c:08:cc:e0:60:b8:e8:2e:40:
cc:94:4e:49:92:af:a1:37:a3:0d:82:69:ee:e4:41:8e:7c:d0:
11:54:2c:2d:66:03:9e:7e:10:96:f4:d2:50:b7:bb:89:ad:e0:
bc:c8:b1:58:63:cc:a1:09:29:37:d3:90:29:e2:82:14:37:65:
f8:b5:4f:2d:46:79:bb:92:ec:8a:0a:bf:50:98:44:78:a3:54:
df:3a:2d:1c:17:96:05:e3:76:82:fd:d6:34:dc:6e:26:e2:d0:
bd:7e:b5:d2:77:63:71:34:6c:b6:21:da:ce:dc:d0:d6:9c:d2:
1f:e9:b4:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:19 2024 by rpki-client on console-ams.rpki-client.org