Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/QmNTOTLj0Q1W0hPVlDsQ8gETBHk.roa
File: QmNTOTLj0Q1W0hPVlDsQ8gETBHk.roa (raw, json)
Hash identifier: vyb+docTKMkbZg8r7UAX6a3Np37bwcc4XatiQBhgGwI=
Subject key identifier: 42:63:53:39:32:E3:D1:0D:56:D2:13:D5:94:3B:10:F2:01:13:04:79
Certificate issuer: /CN=feb84d9f8f9e33156589a5ebf722203a899e0a51
Certificate serial: 018CB633354AF9CC804269E5404B9DD1E823
Authority key identifier: FE:B8:4D:9F:8F:9E:33:15:65:89:A5:EB:F7:22:20:3A:89:9E:0A:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_rhNn4-eMxVliaXr9yIgOomeClE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/QmNTOTLj0Q1W0hPVlDsQ8gETBHk.roa
Signing time: Fri 29 Dec 2023 15:30:58 +0000
ROA not before: Fri 29 Dec 2023 15:30:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 195.210.112.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b6:33:35:4a:f9:cc:80:42:69:e5:40:4b:9d:d1:e8:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=feb84d9f8f9e33156589a5ebf722203a899e0a51
Validity
Not Before: Dec 29 15:30:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4263533932e3d10d56d213d5943b10f201130479
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:06:22:26:96:4f:13:6e:83:cf:bc:ce:67:cf:
0b:02:13:e8:69:31:e5:01:d9:97:ef:58:04:94:e7:
4b:1f:98:bc:76:31:ee:e7:8b:04:d8:57:a1:74:10:
ca:22:89:94:e7:04:2c:33:8d:cd:45:e1:d8:17:72:
cd:e8:51:63:f8:2e:af:ba:c5:85:2f:e4:d6:2e:d3:
18:19:88:f2:e2:65:5e:2a:d4:6f:0a:a5:e1:48:7b:
17:08:20:f9:49:ab:d1:fe:34:86:c6:55:f7:17:26:
58:e6:5d:49:10:ea:a0:2c:37:48:f2:1f:0b:90:55:
d2:6e:79:0d:cc:71:40:90:cf:e4:1f:0a:bd:25:62:
b9:66:39:ee:52:3b:c6:d5:9b:ea:1d:0b:33:bb:3e:
e5:44:5b:6c:aa:1c:c5:ac:e0:e3:4a:50:fb:d8:ba:
ae:90:ff:aa:ec:fb:9f:c1:e4:9c:20:2c:46:37:19:
ba:5d:75:bb:c6:d0:0f:7b:0c:c5:fe:45:85:86:d2:
72:14:54:2f:08:b4:7b:a4:b2:7d:31:85:0b:77:03:
cc:71:db:7f:6d:41:87:55:af:d1:bb:54:73:ae:bd:
d9:df:42:5d:9f:8b:27:30:fd:96:31:fc:71:2d:87:
b4:5a:2c:79:28:8e:58:0e:e3:56:35:81:f6:af:f4:
5a:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:63:53:39:32:E3:D1:0D:56:D2:13:D5:94:3B:10:F2:01:13:04:79
X509v3 Authority Key Identifier:
keyid:FE:B8:4D:9F:8F:9E:33:15:65:89:A5:EB:F7:22:20:3A:89:9E:0A:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_rhNn4-eMxVliaXr9yIgOomeClE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/QmNTOTLj0Q1W0hPVlDsQ8gETBHk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/_rhNn4-eMxVliaXr9yIgOomeClE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.210.112.0/22
Signature Algorithm: sha256WithRSAEncryption
dc:2e:e3:81:4d:ee:16:6d:65:d2:3c:ed:88:70:14:b4:4c:35:
bf:3e:17:bc:36:bb:8a:a9:e0:a1:82:ec:49:71:90:ad:07:f9:
e7:3b:bf:a7:51:fa:7b:45:e7:91:cb:a3:11:e5:03:3a:18:19:
34:9a:10:e6:e0:e2:49:ef:43:ba:c6:b1:26:21:34:db:2b:85:
f1:d7:7d:e4:10:a7:7e:ef:38:e3:57:29:2e:21:1c:92:d5:80:
ff:ac:fa:30:12:32:fa:19:6b:11:00:80:fa:1d:29:89:2c:8d:
d6:19:dd:b7:ce:be:53:bd:aa:8a:3d:65:cd:1c:3d:3a:f7:1b:
8c:bf:40:6c:e3:e1:56:e0:6d:73:94:bd:dc:ee:52:1c:8b:17:
99:c7:f5:7c:d9:5a:0a:51:79:36:50:85:51:ba:ae:ac:99:f8:
ba:60:e1:8d:33:89:78:31:76:7f:f0:d2:19:d8:4d:6a:09:df:
bb:93:ee:35:eb:8d:9c:90:4a:0b:93:b1:74:c3:52:ef:80:ff:
04:f3:11:60:e5:5d:a8:fb:54:b6:64:6e:ae:10:78:f2:7d:94:
fa:d8:96:ee:7b:e0:96:b5:ed:67:79:d5:42:47:b9:60:74:85:
f1:12:85:1c:c9:77:96:7b:b7:6e:7d:05:04:b3:44:d0:16:6c:
ca:17:de:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:49 2024 by rpki-client on console-fra.rpki-client.org