Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d5bbce-4220-4ec4-8af5-2c1a7730bd25/1/0hpoK83IylFfK4BZlLDB_y58a-w.roa
File: 0hpoK83IylFfK4BZlLDB_y58a-w.roa (raw, json)
Hash identifier: fel/bRDjErJbVKVmqcDFFl0U2tkC7ZmPsRy9xopds10=
Subject key identifier: D2:1A:68:2B:CD:C8:CA:51:5F:2B:80:59:94:B0:C1:FF:2E:7C:6B:EC
Certificate issuer: /CN=1319f052bc9e7284888074390c9d0bc127606692
Certificate serial: 018A2871789E4AF8CD2B3AA9752267156D34
Authority key identifier: 13:19:F0:52:BC:9E:72:84:88:80:74:39:0C:9D:0B:C1:27:60:66:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExnwUryecoSIgHQ5DJ0LwSdgZpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d5bbce-4220-4ec4-8af5-2c1a7730bd25/1/0hpoK83IylFfK4BZlLDB_y58a-w.roa
Signing time: Thu 24 Aug 2023 16:47:19 +0000
ROA not before: Thu 24 Aug 2023 16:47:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199130
IP address blocks: 195.23.98.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:28:71:78:9e:4a:f8:cd:2b:3a:a9:75:22:67:15:6d:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1319f052bc9e7284888074390c9d0bc127606692
Validity
Not Before: Aug 24 16:47:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d21a682bcdc8ca515f2b805994b0c1ff2e7c6bec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:5b:9d:0f:a9:ad:b0:d0:6e:e8:1d:ae:8b:ed:
74:05:2f:90:99:78:4a:34:96:66:8a:17:89:0d:d8:
ed:ff:5f:ac:ab:5d:23:2b:55:ab:32:70:74:ff:a5:
47:18:66:ec:9c:cd:9d:06:16:fd:02:a3:25:af:ac:
c8:22:5c:94:51:79:38:eb:0b:c8:f0:bc:32:53:7c:
69:a7:45:c0:d2:af:38:49:28:35:e8:16:3c:ce:2f:
5d:af:c0:69:78:d6:bc:55:b8:40:8b:26:79:f6:58:
44:37:ed:bb:44:9a:28:e2:d0:b9:3d:5a:df:5e:c3:
b2:d6:2d:21:7d:b6:3a:36:f4:45:72:f1:bc:0b:40:
da:dc:ea:24:82:11:68:12:24:07:28:90:2a:e0:41:
e9:7d:4e:b6:d1:f8:85:c6:12:ba:d2:60:f0:bc:60:
c0:cf:9a:c8:87:e0:f2:78:dc:88:24:e7:ea:79:47:
ee:fe:aa:d4:10:09:8e:5a:cd:2b:1c:c7:e4:74:8e:
04:83:ed:6e:64:0e:54:6e:05:e8:f6:c1:47:22:ad:
d4:b4:04:ef:97:a4:cc:b6:94:ae:9d:c6:21:20:73:
09:94:3a:35:57:f9:ac:57:7b:8c:d9:8d:04:06:77:
ea:b9:dd:6b:37:31:dd:6d:a7:d6:a2:4c:67:5f:5b:
dd:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:1A:68:2B:CD:C8:CA:51:5F:2B:80:59:94:B0:C1:FF:2E:7C:6B:EC
X509v3 Authority Key Identifier:
keyid:13:19:F0:52:BC:9E:72:84:88:80:74:39:0C:9D:0B:C1:27:60:66:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExnwUryecoSIgHQ5DJ0LwSdgZpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d5bbce-4220-4ec4-8af5-2c1a7730bd25/1/0hpoK83IylFfK4BZlLDB_y58a-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d5bbce-4220-4ec4-8af5-2c1a7730bd25/1/ExnwUryecoSIgHQ5DJ0LwSdgZpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.23.98.0/24
Signature Algorithm: sha256WithRSAEncryption
83:12:f2:9a:64:81:43:24:7e:c2:26:b7:2d:8f:70:ed:10:94:
ad:68:a6:ca:89:56:31:2f:4f:84:95:97:ec:0e:85:a2:cc:40:
6c:ab:63:d0:c2:da:05:f2:f2:a8:96:f4:9f:41:85:b7:18:4d:
1b:70:fb:f9:1d:15:58:50:e9:c2:56:16:c5:8b:bf:1c:a6:95:
99:9f:04:e0:bf:6b:a1:07:c6:12:4b:06:c6:eb:e1:93:db:92:
d1:0c:e9:a4:95:0b:81:2a:4e:85:a1:f8:01:32:2c:7e:46:78:
38:67:3f:e2:29:a5:93:34:69:06:ae:2a:ad:c2:f3:5f:5f:ec:
47:65:1e:ed:76:88:57:7e:b0:0f:5f:8f:10:81:8a:c8:bd:50:
63:13:55:16:99:ff:f2:a9:30:56:bc:ab:71:23:0b:52:91:f5:
c7:67:60:63:da:b3:fc:fd:a8:eb:99:cb:95:c8:e9:db:14:13:
b0:e8:85:fa:38:58:4b:a1:cf:57:35:e6:34:0d:b8:b2:a9:e8:
3f:90:65:c7:06:41:91:ea:19:2d:34:ef:6e:96:33:1d:1d:d8:
47:34:55:08:0b:1a:96:2e:07:6c:34:a0:0d:2c:f3:f7:9b:67:
7c:34:ab:9e:67:02:c5:ff:85:34:33:e8:80:ef:dd:05:fe:4f:
e3:6c:76:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:10:53 2024 by rpki-client on console-ams.rpki-client.org