Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/YXitCHlAlIXgnhGkrZ1idYhpK-4.roa
File: YXitCHlAlIXgnhGkrZ1idYhpK-4.roa (raw, json)
Hash identifier: 13Vg5gIhWqmMK98rS9g5anntgZvMuR9GY6WCyJultJo=
Subject key identifier: 61:78:AD:08:79:40:94:85:E0:9E:11:A4:AD:9D:62:75:88:69:2B:EE
Certificate issuer: /CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Certificate serial: 0185A4F6A3041D1764FCCD7F337C9A2AF428
Authority key identifier: 8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/YXitCHlAlIXgnhGkrZ1idYhpK-4.roa
Signing time: Thu 12 Jan 2023 07:51:45 +0000
ROA not before: Thu 12 Jan 2023 07:51:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6830
IP address blocks: 195.242.140.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a4:f6:a3:04:1d:17:64:fc:cd:7f:33:7c:9a:2a:f4:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Validity
Not Before: Jan 12 07:51:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6178ad0879409485e09e11a4ad9d627588692bee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:1b:3c:fe:ce:4d:81:b0:e8:92:d6:30:c5:a3:
5c:34:f9:d3:b0:97:0e:59:39:a9:90:91:2c:a8:b5:
d7:25:f5:9e:09:93:1f:f5:16:fc:f5:4a:9c:19:34:
18:5b:ae:ad:3d:8e:be:94:15:47:00:8c:78:12:ea:
13:95:09:fb:65:e5:36:de:d8:80:1b:d2:0e:9d:d4:
ca:10:5d:b5:2f:2d:9b:22:db:18:27:24:f9:ad:bb:
54:da:30:97:b5:0d:ab:04:c4:e5:a0:8b:cc:5f:e1:
c0:59:e6:0e:55:30:5d:59:02:c7:97:94:e1:3a:60:
10:e9:6c:e8:7d:d2:a8:43:d3:1e:52:8d:ef:7c:df:
e4:2f:f5:aa:e8:34:e1:c6:86:25:20:1c:c4:ac:54:
00:53:7d:bc:23:f1:26:0e:06:7b:52:7f:12:df:b8:
74:f9:bb:f2:ae:03:d9:39:31:b6:a5:5c:10:42:50:
ee:46:fb:10:c4:0c:10:8f:9f:bd:ef:02:99:83:ae:
f4:ce:17:a0:73:5b:f5:92:1f:58:42:b1:c8:e7:c2:
ca:42:37:88:2a:22:b8:d0:1e:a9:7c:9c:a3:01:69:
5c:3c:8a:1e:85:46:a2:32:15:2b:09:10:01:d8:15:
63:dd:97:e2:5c:5c:d0:07:51:e6:76:1b:56:f5:12:
01:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:78:AD:08:79:40:94:85:E0:9E:11:A4:AD:9D:62:75:88:69:2B:EE
X509v3 Authority Key Identifier:
keyid:8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/YXitCHlAlIXgnhGkrZ1idYhpK-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.242.140.0/23
Signature Algorithm: sha256WithRSAEncryption
34:2d:ca:a0:40:73:dd:18:c4:2a:60:97:14:30:21:70:d3:36:
f6:72:76:12:21:88:39:b0:c0:35:1b:1e:f7:92:6c:a6:c3:2e:
d4:9f:86:7b:bc:ff:36:9f:93:1b:13:7f:7d:cb:7a:aa:b3:17:
b6:82:00:54:65:e7:8f:59:67:94:2c:16:6c:87:17:db:21:55:
5e:f9:0f:c0:85:87:43:15:a7:72:77:da:99:42:f2:e4:9f:82:
44:43:69:ff:37:ee:0a:10:70:ef:3c:a1:0d:3d:52:2e:b0:bf:
85:e4:37:10:99:eb:70:24:18:c7:ed:02:dd:ea:02:07:f8:b2:
80:f5:3a:7b:63:52:de:e3:72:45:6f:69:53:8f:03:fc:08:05:
94:1e:c1:87:aa:30:bf:7d:53:92:d7:7e:44:5c:06:18:b6:82:
63:39:4d:2a:74:c4:c4:4b:31:29:6f:54:98:dd:5c:cd:4d:04:
ae:bf:05:fe:36:68:94:4b:38:6f:36:39:8b:12:b0:b1:f9:1d:
75:9a:dc:01:93:45:c8:f1:fb:0b:26:b7:eb:fa:70:03:8a:0c:
16:4a:8b:88:55:aa:88:ce:f7:19:42:cd:d6:44:9a:83:dd:02:
7b:e4:3f:22:6d:19:8c:69:ee:69:e4:b6:3c:a5:b8:06:de:94:
5b:5a:08:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:17 2024 by rpki-client on console-ams.rpki-client.org