Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/jMCQvPQcpphYI_sRyfnivI1Ke6g.roa
File: jMCQvPQcpphYI_sRyfnivI1Ke6g.roa (raw, json)
Hash identifier: U9z1TiYc6e+Pl3KG+r7Tu0NXJ4Zb3EnMWPoCfHyin00=
Subject key identifier: 8C:C0:90:BC:F4:1C:A6:98:58:23:FB:11:C9:F9:E2:BC:8D:4A:7B:A8
Certificate issuer: /CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e
Certificate serial: 01857139B2051DF02227D745A47A5DCF8E68
Authority key identifier: 2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/jMCQvPQcpphYI_sRyfnivI1Ke6g.roa
Signing time: Mon 02 Jan 2023 06:44:44 +0000
ROA not before: Mon 02 Jan 2023 06:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210073
IP address blocks: 195.7.14.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:b2:05:1d:f0:22:27:d7:45:a4:7a:5d:cf:8e:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e
Validity
Not Before: Jan 2 06:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8cc090bcf41ca6985823fb11c9f9e2bc8d4a7ba8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:18:d1:f3:60:0d:f0:cc:ac:6c:87:f0:0e:14:
05:3b:b4:6a:d1:f3:b6:81:9d:b3:9d:20:e4:fd:ed:
fa:ed:0e:19:86:47:2e:b5:ec:7f:08:2a:69:b7:da:
19:bf:dd:dd:9d:56:5e:0d:c9:a3:e2:e0:ac:f3:28:
99:7a:60:fc:00:ae:db:65:f8:1b:c5:0f:b6:ee:26:
76:1a:81:6c:d4:ae:97:81:89:36:98:be:20:a6:6e:
75:9e:30:da:b2:b6:ba:b7:72:7c:e5:15:b5:da:1a:
90:48:b5:e7:9e:a1:ca:a3:53:63:0f:c8:07:55:a6:
22:cf:04:a9:04:0e:72:58:14:52:1d:08:b3:c5:e4:
b2:db:7a:cf:b6:83:c6:43:b2:f7:c0:75:7a:8e:16:
37:19:4b:82:93:df:12:f2:27:a9:4d:c5:a3:31:8c:
b0:8d:e1:e1:db:08:43:04:90:d0:ef:f3:d0:a8:c4:
3e:d3:3f:70:ad:76:10:2e:7d:72:88:9d:96:5d:74:
fe:a2:44:b9:8e:21:e6:7e:e2:29:5f:2d:97:23:77:
45:14:4d:bc:32:1a:2d:fa:a0:e3:f0:eb:ed:84:ff:
06:77:9b:e4:7e:51:0b:0f:1f:5e:e6:80:6f:81:cb:
59:74:d1:a5:34:4a:d6:ca:4b:51:be:00:33:f1:62:
57:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:C0:90:BC:F4:1C:A6:98:58:23:FB:11:C9:F9:E2:BC:8D:4A:7B:A8
X509v3 Authority Key Identifier:
keyid:2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/jMCQvPQcpphYI_sRyfnivI1Ke6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.7.14.0/24
Signature Algorithm: sha256WithRSAEncryption
08:58:c5:06:47:55:ed:f8:57:c7:d3:5d:8a:76:5b:cb:46:dd:
d0:8d:66:38:95:48:0e:3c:15:4e:a1:61:5b:4d:3b:c1:c7:d3:
67:d0:33:dd:f0:ee:67:32:b7:33:65:8f:bf:01:83:e1:41:dc:
bd:cf:9c:a5:d1:b8:e3:ba:39:be:c8:8a:82:5b:9d:1d:87:68:
06:a6:96:a7:3a:c6:00:4c:cd:1f:7d:49:4c:87:15:3b:d4:25:
2d:11:46:ea:52:fe:3a:55:cb:68:0d:3a:b7:36:1a:1f:4e:a3:
dc:0b:e9:bf:eb:cf:a4:53:4c:b7:1d:61:df:30:38:da:cc:c3:
2c:d5:f4:07:88:13:c6:dc:da:8a:4f:d1:99:19:7e:a5:9e:7d:
d3:38:b0:fa:89:9c:7c:f1:b2:2d:c8:df:68:e0:10:aa:d4:de:
d0:3e:7d:6e:e2:45:e3:9e:97:85:3a:a7:9f:e7:73:34:4c:9b:
e4:9c:26:ac:c3:3c:b7:e8:96:04:0e:55:6a:bd:3a:ca:af:ea:
35:23:09:77:2d:4f:a4:b1:4b:ad:36:dd:b0:1d:21:ff:54:b0:
31:54:5f:c4:69:66:31:45:c3:31:d2:49:16:0b:0b:30:ef:28:
c3:66:41:70:7a:4b:13:24:45:76:51:6c:79:bc:e6:91:05:11:
32:53:9a:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 08:59:46 2024 by rpki-client on console-ams.rpki-client.org