Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/adfbf0-0c07-4a07-8954-9d8a18e7b252/1/U2rzKx_ASNVYwpXK5e66mJBizIM.roa
File: U2rzKx_ASNVYwpXK5e66mJBizIM.roa (raw, json)
Hash identifier: S8OsZo3/0O7TL1816jsNf25bKrVTnmICH5FPr12cD3E=
Subject key identifier: 53:6A:F3:2B:1F:C0:48:D5:58:C2:95:CA:E5:EE:BA:98:90:62:CC:83
Certificate issuer: /CN=77402ff815eebc61a93cf1b0d0bcdcec7a29f19f
Certificate serial: 01856E38C3535F4072C71FEFD286A6E32256
Authority key identifier: 77:40:2F:F8:15:EE:BC:61:A9:3C:F1:B0:D0:BC:DC:EC:7A:29:F1:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d0Av-BXuvGGpPPGw0Lzc7Hop8Z8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/adfbf0-0c07-4a07-8954-9d8a18e7b252/1/U2rzKx_ASNVYwpXK5e66mJBizIM.roa
Signing time: Sun 01 Jan 2023 16:44:51 +0000
ROA not before: Sun 01 Jan 2023 16:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48971
IP address blocks: 195.225.116.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:38:c3:53:5f:40:72:c7:1f:ef:d2:86:a6:e3:22:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77402ff815eebc61a93cf1b0d0bcdcec7a29f19f
Validity
Not Before: Jan 1 16:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=536af32b1fc048d558c295cae5eeba989062cc83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:41:17:d3:a1:45:ec:8c:51:fa:f7:13:64:ea:
a5:a4:13:69:95:cf:8e:84:87:5e:5d:8d:49:80:a8:
73:f2:7a:69:e3:85:90:b6:3a:82:b9:64:b8:f2:82:
2b:98:ac:27:4b:28:5c:81:d1:99:0e:16:b9:c9:c8:
7d:5a:a5:28:11:46:22:72:35:ae:06:18:b2:ca:66:
c4:50:94:7d:d6:84:ff:3f:b5:37:c6:12:a8:b4:44:
5a:84:3b:a7:7d:c9:6b:eb:38:c6:ea:df:63:7a:93:
51:75:db:1b:ae:46:38:08:b3:68:ad:40:2f:18:49:
62:80:56:c1:fb:bb:7e:5d:5e:43:9b:a0:96:28:42:
03:6c:0a:47:57:26:73:16:07:7b:9a:84:77:f1:9f:
d5:a7:9f:60:25:e8:b9:9e:37:d2:cf:a2:e8:ca:87:
b3:d8:53:47:33:cc:1a:84:50:40:5e:35:67:b3:5b:
ff:48:7d:3a:68:41:c0:59:41:10:6a:a5:13:87:00:
c0:0d:c4:c0:fc:49:d6:d2:62:51:70:61:4b:ba:6b:
cb:f6:10:37:06:02:a8:9a:9e:14:60:53:3c:4c:ae:
78:af:ce:a0:1e:a4:21:1c:8f:7d:31:ce:f1:58:72:
c4:71:50:63:9d:cc:e6:22:80:28:81:f0:f0:d2:31:
9f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:6A:F3:2B:1F:C0:48:D5:58:C2:95:CA:E5:EE:BA:98:90:62:CC:83
X509v3 Authority Key Identifier:
keyid:77:40:2F:F8:15:EE:BC:61:A9:3C:F1:B0:D0:BC:DC:EC:7A:29:F1:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0Av-BXuvGGpPPGw0Lzc7Hop8Z8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/adfbf0-0c07-4a07-8954-9d8a18e7b252/1/U2rzKx_ASNVYwpXK5e66mJBizIM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/adfbf0-0c07-4a07-8954-9d8a18e7b252/1/d0Av-BXuvGGpPPGw0Lzc7Hop8Z8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.225.116.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:fc:f5:8d:8e:31:35:c1:81:47:0c:c3:00:12:ed:d9:0e:ab:
03:4b:5d:c8:ce:45:07:95:ae:11:84:c2:73:d6:6c:35:3f:19:
7a:0f:2d:77:47:fa:dc:e3:c8:50:e3:3c:96:b5:fd:ca:ed:36:
50:b9:d1:94:20:9d:68:14:fd:02:fb:81:e3:5e:d9:7b:56:f9:
18:26:9b:07:11:1f:3b:c1:58:ef:da:74:4f:e1:e0:2b:75:8a:
d5:9c:d6:16:bc:4e:15:44:8c:cc:59:fd:02:77:b6:fd:67:bb:
4e:d3:ee:57:ac:1a:82:bf:8d:e7:2c:91:37:d1:82:58:17:fd:
8e:00:5b:e8:9f:cd:90:3e:de:40:6d:ca:bc:14:8c:62:ec:21:
09:ff:02:9f:9b:b0:ab:aa:8e:0c:1b:1a:d3:d3:7d:24:b6:dd:
5f:96:72:63:0e:fa:2c:92:5b:c1:8f:61:7f:20:94:1f:2d:cd:
3a:14:8e:65:cb:24:2f:84:1f:c4:8d:50:63:2a:72:2e:54:9f:
a9:1a:94:09:6c:47:c5:4d:5a:2e:9e:9f:d3:57:13:14:ef:d0:
22:73:97:19:e3:26:6a:96:e9:c9:83:82:f7:78:97:c6:1f:b0:
d0:f2:16:d5:1d:0c:aa:3b:03:16:f9:9c:4a:dd:7c:fc:20:1e:
59:be:fb:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:33 2024 by rpki-client on console-ams.rpki-client.org