Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/40a1e5-7d2a-48d6-a50e-f96fb4ea7e70/1/kBN0JMAvE8btOt0s86kOlXU3Omw.roa
File: kBN0JMAvE8btOt0s86kOlXU3Omw.roa (raw, json)
Hash identifier: pJzb+/tBNecH5Yw54hoL7xS/0Sp0xXbNYXXVhpyakKM=
Subject key identifier: 90:13:74:24:C0:2F:13:C6:ED:3A:DD:2C:F3:A9:0E:95:75:37:3A:6C
Certificate issuer: /CN=2c75f35d256cc4a5b88319bb7e4bbba329e49341
Certificate serial: 01856E38B44DBE178FF6AED99B9D71B2C994
Authority key identifier: 2C:75:F3:5D:25:6C:C4:A5:B8:83:19:BB:7E:4B:BB:A3:29:E4:93:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LHXzXSVsxKW4gxm7fku7oynkk0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/40a1e5-7d2a-48d6-a50e-f96fb4ea7e70/1/kBN0JMAvE8btOt0s86kOlXU3Omw.roa
Signing time: Sun 01 Jan 2023 16:44:47 +0000
ROA not before: Sun 01 Jan 2023 16:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197808
IP address blocks: 195.22.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:38:b4:4d:be:17:8f:f6:ae:d9:9b:9d:71:b2:c9:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c75f35d256cc4a5b88319bb7e4bbba329e49341
Validity
Not Before: Jan 1 16:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=90137424c02f13c6ed3add2cf3a90e9575373a6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:4e:46:4b:32:a9:b4:43:1f:eb:b6:73:c3:86:
e2:e3:96:56:bf:d9:1f:cb:01:4c:7f:9f:0b:12:1f:
c8:b7:98:f8:c1:3b:40:fb:be:ba:d1:b0:a2:2a:1d:
e4:f2:02:69:60:2e:73:4c:f8:bb:d9:08:06:c6:01:
9a:bc:9a:2e:d2:36:96:58:4b:a0:35:7d:7b:da:a2:
3e:4e:d3:ef:64:76:a4:72:aa:49:59:37:54:8e:56:
19:91:ce:bd:12:0b:66:31:ce:b1:09:8b:a1:df:98:
8c:6d:90:57:d5:4b:f1:58:be:c7:7a:fc:bf:cb:48:
48:68:67:9c:76:aa:e3:a0:d3:de:b4:8a:7a:c5:07:
3c:23:38:17:54:e4:b9:a6:22:03:30:2d:1c:00:6e:
6f:53:a3:af:9c:ab:01:54:a7:ef:8d:2d:46:78:39:
b2:6d:b6:fd:65:9e:06:2e:22:6d:d4:b3:8f:c5:eb:
eb:0c:a1:17:7e:a7:50:90:73:bd:1c:ac:2d:6b:54:
d8:44:4c:53:dc:8a:71:92:aa:9c:c2:8d:6e:ac:4d:
6f:52:69:bf:34:e5:84:e8:ab:8b:b6:dd:28:b6:0d:
12:6c:7f:46:c0:64:01:86:37:49:49:51:8a:21:2b:
f1:1c:74:d7:f7:1e:cb:b4:2f:69:49:71:17:17:28:
4e:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:13:74:24:C0:2F:13:C6:ED:3A:DD:2C:F3:A9:0E:95:75:37:3A:6C
X509v3 Authority Key Identifier:
keyid:2C:75:F3:5D:25:6C:C4:A5:B8:83:19:BB:7E:4B:BB:A3:29:E4:93:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LHXzXSVsxKW4gxm7fku7oynkk0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/40a1e5-7d2a-48d6-a50e-f96fb4ea7e70/1/kBN0JMAvE8btOt0s86kOlXU3Omw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/40a1e5-7d2a-48d6-a50e-f96fb4ea7e70/1/LHXzXSVsxKW4gxm7fku7oynkk0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.22.123.0/24
Signature Algorithm: sha256WithRSAEncryption
39:3a:22:0e:e4:67:f4:1e:49:9d:5e:c8:72:b1:7d:01:85:d3:
c0:52:17:90:c8:ba:d7:a2:f0:12:34:35:7d:5f:fc:e5:4f:1d:
a9:cb:5a:21:b3:4f:a9:10:db:0e:d6:7f:28:63:f4:c0:3c:a6:
0b:dc:1a:e5:0a:b7:9f:57:b2:98:fa:1f:90:ce:f4:20:89:20:
53:b3:e6:68:cb:ac:07:ea:8c:a9:cc:30:20:f8:6a:09:4e:04:
34:f2:99:b1:19:f8:48:f1:f9:f5:4d:aa:7f:6c:47:0b:45:a3:
74:51:52:e2:cd:b5:fb:a9:c7:cc:91:57:8a:5c:c6:0f:0c:9a:
b7:70:60:cf:56:89:d9:91:5e:00:ad:c7:df:ee:3f:67:f9:94:
c7:7d:cb:c6:97:3b:51:6e:0a:5c:ae:f8:44:d7:63:0c:60:ce:
a7:05:7a:20:e9:f6:a2:b4:98:0f:a7:3a:41:78:14:30:b6:74:
09:f0:4e:2a:e6:b2:7f:84:bf:f3:fa:ec:25:24:d9:bf:c2:86:
a5:d4:51:48:ca:ad:5d:c0:9a:5b:a8:a6:16:8a:af:15:e2:06:
24:54:22:27:1f:7b:9a:0d:6a:73:d3:af:d3:28:5a:48:99:31:
80:6c:46:37:0f:90:bd:45:d3:cd:f3:60:13:db:fe:fe:7c:a7:
93:8b:ea:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:23 2024 by rpki-client on console-ams.rpki-client.org