Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/5db6fa-6a52-4a48-b8cd-8e04403a325a/1/l-nQFgvAhvZY1xmrDnl6Piqk5oo.roa
File: l-nQFgvAhvZY1xmrDnl6Piqk5oo.roa (raw, json)
Hash identifier: hhhq/HsBySLRy7W5zsN3mK3IED1q29HaK2HEA2Gxilc=
Subject key identifier: 97:E9:D0:16:0B:C0:86:F6:58:D7:19:AB:0E:79:7A:3E:2A:A4:E6:8A
Certificate issuer: /CN=daa9cc48f755256ef5254fba1d1b9fb6baff91a0
Certificate serial: 0188BF53DD3DBBA5191C6A670939652A718A
Authority key identifier: DA:A9:CC:48:F7:55:25:6E:F5:25:4F:BA:1D:1B:9F:B6:BA:FF:91:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2qnMSPdVJW71JU-6HRuftrr_kaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/5db6fa-6a52-4a48-b8cd-8e04403a325a/1/l-nQFgvAhvZY1xmrDnl6Piqk5oo.roa
Signing time: Thu 15 Jun 2023 13:52:04 +0000
ROA not before: Thu 15 Jun 2023 13:52:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199081
IP address blocks: 195.35.92.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:bf:53:dd:3d:bb:a5:19:1c:6a:67:09:39:65:2a:71:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daa9cc48f755256ef5254fba1d1b9fb6baff91a0
Validity
Not Before: Jun 15 13:52:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=97e9d0160bc086f658d719ab0e797a3e2aa4e68a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c0:af:a9:d9:dc:48:6e:e3:2b:c9:54:d5:79:
c0:fb:28:1f:d5:b0:96:35:5d:5d:95:e5:ac:33:06:
18:46:ae:23:6d:f7:a5:bf:6e:db:c1:1f:52:b7:ec:
9a:0d:41:1d:9b:eb:87:d0:42:88:d6:00:e3:f2:25:
ac:e5:f9:f5:60:af:e0:d3:b0:50:2a:5e:66:5e:c3:
fd:9b:4a:5a:e4:53:e2:38:23:4f:7f:6d:80:4a:56:
47:ea:a5:da:61:64:4c:7d:ec:1b:00:f6:c0:c2:dd:
f1:56:15:4c:a9:f3:8a:dd:ee:33:90:e5:32:58:0d:
3c:30:91:ae:87:14:d7:08:a0:b2:60:1a:75:cd:0a:
99:93:9d:19:48:bf:95:a6:0b:a5:9e:17:27:44:97:
04:f4:0c:94:21:3e:1a:ae:f0:cf:3e:81:95:5e:8f:
ae:4f:14:cf:5c:30:b6:59:12:0b:f8:02:3d:7d:8b:
44:fc:eb:bb:c7:ee:8b:ed:ec:00:fc:88:22:2c:5c:
bf:48:15:e0:f9:31:40:0e:03:d8:d7:91:98:60:d4:
51:d0:db:2e:c6:0d:fa:74:ec:ea:f5:aa:19:e5:e4:
41:0a:33:97:6b:38:39:3e:98:24:4a:f4:d9:09:6b:
3b:46:95:dd:e5:db:ae:fe:02:8b:4e:b2:97:75:2f:
e6:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:E9:D0:16:0B:C0:86:F6:58:D7:19:AB:0E:79:7A:3E:2A:A4:E6:8A
X509v3 Authority Key Identifier:
keyid:DA:A9:CC:48:F7:55:25:6E:F5:25:4F:BA:1D:1B:9F:B6:BA:FF:91:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2qnMSPdVJW71JU-6HRuftrr_kaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/5db6fa-6a52-4a48-b8cd-8e04403a325a/1/l-nQFgvAhvZY1xmrDnl6Piqk5oo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/5db6fa-6a52-4a48-b8cd-8e04403a325a/1/2qnMSPdVJW71JU-6HRuftrr_kaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.35.92.0/22
Signature Algorithm: sha256WithRSAEncryption
b6:5c:f5:ea:1c:1c:ec:4c:0d:f9:f7:c0:43:8d:7c:80:8f:4c:
18:d4:a9:60:ba:07:49:9b:5d:22:30:53:e4:13:f3:10:cf:e4:
88:be:e2:3a:66:39:a9:c9:a8:71:ab:95:60:67:2c:18:f7:7c:
9f:c6:c0:44:02:75:3c:32:8f:6d:ab:a4:81:38:9e:af:fa:b4:
0d:ce:ce:31:e6:d1:92:ec:d5:ae:21:ac:7c:a2:d4:23:ef:d4:
8d:12:8f:4b:89:4f:8a:22:e7:d5:b5:6e:20:a5:11:ca:c3:25:
4f:a1:22:3a:4b:d6:63:a1:08:f1:fd:fc:67:62:4a:45:ca:21:
78:dc:70:cc:00:24:7c:d7:8f:01:7c:ad:bd:91:ad:37:06:b2:
fc:fd:fe:b4:38:df:2d:a0:f3:5e:a9:4a:27:b6:5e:2f:7e:ab:
89:5f:a4:8e:06:6b:71:ab:08:53:f0:91:e0:16:86:d1:8a:49:
58:bc:96:2c:bb:b9:32:d9:a7:f2:9a:7b:13:7d:7a:ae:d5:27:
29:93:7d:11:ab:c4:31:c8:e1:e0:5d:d6:ec:64:c6:34:4e:0b:
6f:d8:25:0b:9d:4a:11:de:51:b7:74:21:86:3c:d5:05:9d:9e:
4c:d4:95:f2:14:ed:89:c4:bd:8f:10:6b:cb:81:99:d8:8b:42:
be:47:6a:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:16:17 2024 by rpki-client on console-ams.rpki-client.org