Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/dAhzQlbfOq4vr6Av7PQBCH12Efo.roa
File: dAhzQlbfOq4vr6Av7PQBCH12Efo.roa (raw, json)
Hash identifier: Bh3HPtq/9cdvp5ikd7h7wmfeGZTxNq8m9obZN4KgpUo=
Subject key identifier: 74:08:73:42:56:DF:3A:AE:2F:AF:A0:2F:EC:F4:01:08:7D:76:11:FA
Certificate issuer: /CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Certificate serial: 0185719E79A78F4949C091A3E98B32ABEF19
Authority key identifier: BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/dAhzQlbfOq4vr6Av7PQBCH12Efo.roa
Signing time: Mon 02 Jan 2023 08:34:49 +0000
ROA not before: Mon 02 Jan 2023 08:34:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197889
IP address blocks: 195.184.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:79:a7:8f:49:49:c0:91:a3:e9:8b:32:ab:ef:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Validity
Not Before: Jan 2 08:34:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7408734256df3aae2fafa02fecf401087d7611fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:a9:4d:89:2f:d9:43:88:b8:fc:79:40:bb:d6:
eb:71:b2:70:d3:19:ec:1e:54:83:75:90:a3:08:ec:
70:f2:2d:10:c7:99:8e:a1:92:7f:73:14:2d:e9:86:
bb:c2:48:48:5e:d5:2e:6a:38:90:5d:94:97:1f:f6:
48:5c:12:4d:00:0e:30:b5:5c:a0:7f:ae:be:d3:94:
b0:26:a9:87:1e:f1:9e:06:82:35:cb:f8:e4:a9:7a:
7b:c1:23:72:8d:32:f0:bb:e2:7e:d3:91:27:24:a2:
5f:a0:dd:d7:bc:cf:4b:de:bc:3e:bb:70:15:5d:1c:
f4:aa:04:86:b9:18:68:d5:64:72:5a:e4:f3:a5:69:
95:ea:b3:f4:24:70:be:5f:84:90:46:f9:2b:d8:af:
d4:9e:8c:93:af:bc:7a:53:b6:26:60:e0:68:7a:e0:
58:55:27:46:49:2c:91:54:85:e5:2d:af:9a:92:d8:
42:cb:fb:03:59:b5:7f:d0:4a:11:76:ee:1e:f1:99:
03:86:a7:2a:c4:b5:f5:86:34:93:6a:79:5c:19:dc:
92:d6:c3:8a:0f:c1:25:47:26:65:4f:d4:78:6b:6d:
20:bf:a5:cc:9f:7e:90:c6:9f:2d:fc:d8:1f:56:85:
3b:e7:c4:fb:bf:49:6d:16:e7:33:42:60:d0:23:0d:
63:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:08:73:42:56:DF:3A:AE:2F:AF:A0:2F:EC:F4:01:08:7D:76:11:FA
X509v3 Authority Key Identifier:
keyid:BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/dAhzQlbfOq4vr6Av7PQBCH12Efo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.184.4.0/24
Signature Algorithm: sha256WithRSAEncryption
73:5e:2c:58:58:97:a3:91:80:97:41:73:3a:6e:13:5f:8c:2c:
ff:6a:b7:57:c6:a3:dc:c2:ea:9b:8b:18:cf:d6:91:cb:3f:e7:
24:47:25:06:f5:85:1d:69:78:89:50:87:8e:e9:c9:f7:34:3e:
c8:e7:20:64:f7:5c:ad:e9:6d:9b:9a:a4:8c:74:60:de:b6:be:
d1:80:fe:e2:69:5d:0d:fe:89:8b:35:66:81:55:61:75:e1:c5:
83:25:d5:64:36:ef:f2:2a:66:5e:fa:0a:e0:d5:fd:8c:45:a6:
3b:87:18:1e:80:86:fc:c9:d9:80:02:e2:f1:3b:e7:ee:f6:06:
87:87:6c:75:4b:7b:b4:bd:9f:c8:3b:4b:0d:26:30:9b:c1:15:
ed:a8:da:cd:10:6e:00:a6:22:a4:a1:39:ae:bc:1a:8a:11:6f:
fa:1b:89:41:18:cd:f1:6c:43:36:e3:7b:50:8c:86:8b:82:9c:
b5:f4:f5:eb:0d:7d:0d:e1:2d:ca:85:7b:f4:e9:1d:9e:80:d4:
90:9a:cf:79:a3:62:ce:40:bb:f5:9d:71:85:93:b4:ba:92:ac:
9f:70:30:8b:e4:08:4e:a5:2d:3d:53:47:96:90:a0:e6:1c:2a:
1c:0a:85:51:ee:13:9a:f6:9d:1c:5c:ab:05:da:bc:b3:49:f5:
f8:87:98:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:02 2024 by rpki-client on console-fra.rpki-client.org