Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/H7n6zM_9FXWBgh17nbKymfG2214.roa
File: H7n6zM_9FXWBgh17nbKymfG2214.roa (raw, json)
Hash identifier: 5YF3eFG3J3KwM4ur2QAVU6j7CYinIFjd0asgejusEQM=
Subject key identifier: 1F:B9:FA:CC:CF:FD:15:75:81:82:1D:7B:9D:B2:B2:99:F1:B6:DB:5E
Certificate issuer: /CN=60333cd6f1b59c0b682e1da389237eda3e9da918
Certificate serial: 01856F8B8A6CF01EC15A7D984F724C8FFA14
Authority key identifier: 60:33:3C:D6:F1:B5:9C:0B:68:2E:1D:A3:89:23:7E:DA:3E:9D:A9:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YDM81vG1nAtoLh2jiSN-2j6dqRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/H7n6zM_9FXWBgh17nbKymfG2214.roa
Signing time: Sun 01 Jan 2023 22:54:53 +0000
ROA not before: Sun 01 Jan 2023 22:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199871
IP address blocks: 195.149.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:8b:8a:6c:f0:1e:c1:5a:7d:98:4f:72:4c:8f:fa:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60333cd6f1b59c0b682e1da389237eda3e9da918
Validity
Not Before: Jan 1 22:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1fb9facccffd157581821d7b9db2b299f1b6db5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:8d:34:df:4a:5e:47:45:c8:5e:88:a7:73:b9:
7b:a9:f5:50:5b:26:25:d9:0d:08:b2:8e:35:ed:2f:
b3:ba:39:a7:90:38:94:a6:b8:07:06:24:85:03:ca:
43:8b:b6:d7:7d:27:f6:0a:ed:42:2e:1d:69:2d:d8:
8e:fe:54:44:85:eb:0b:1c:89:5c:7f:f3:8b:af:41:
61:08:60:23:13:17:23:56:cf:de:b2:fd:8e:0d:80:
c8:d8:54:06:3d:6c:51:3c:34:ab:d5:40:28:e9:a5:
47:91:f8:c5:9a:bc:da:9c:f0:09:3f:ab:cf:6b:60:
44:54:be:55:22:0f:d2:4d:00:eb:09:90:cb:e1:d3:
c0:cc:80:0f:ed:88:a2:80:68:79:82:e2:2f:fd:0c:
b2:f7:19:17:30:f8:4a:ea:30:22:76:66:36:9c:50:
8c:f3:98:52:31:8f:23:a9:84:a4:98:38:24:e5:b4:
42:50:33:b5:13:64:a7:5a:e7:22:2b:48:73:c2:01:
ae:a4:a4:5d:9e:55:62:f2:35:95:d5:4d:8f:36:bc:
cf:55:66:da:08:97:e0:6f:50:6f:8d:93:c9:08:0e:
60:56:87:5b:cd:4d:6d:7a:3b:4d:81:de:ac:98:bc:
36:0b:cf:09:6d:f8:0d:1f:38:26:ee:65:20:a3:eb:
7c:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:B9:FA:CC:CF:FD:15:75:81:82:1D:7B:9D:B2:B2:99:F1:B6:DB:5E
X509v3 Authority Key Identifier:
keyid:60:33:3C:D6:F1:B5:9C:0B:68:2E:1D:A3:89:23:7E:DA:3E:9D:A9:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YDM81vG1nAtoLh2jiSN-2j6dqRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/H7n6zM_9FXWBgh17nbKymfG2214.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.149.71.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:22:a8:f9:97:67:48:b2:30:3a:82:b2:df:45:79:35:69:5e:
ad:e7:f0:26:69:a3:c4:53:e5:75:5c:65:5f:40:68:cc:59:41:
4a:cf:d9:4a:dc:83:8c:32:9a:18:88:5a:1b:98:6e:04:48:58:
74:66:6f:16:92:47:9e:76:79:86:2b:fd:33:be:f7:db:19:e1:
34:12:0d:e0:bc:e7:ce:14:9c:e3:7b:11:f9:4c:b3:4f:51:1b:
58:18:00:4e:17:d9:89:a1:ac:f9:ae:42:4c:be:9e:9f:33:9b:
a3:1f:5a:7e:80:6d:63:bb:d0:34:c3:11:1c:55:f9:d0:bf:d6:
25:42:70:9f:bf:ef:f0:3a:e9:9a:9c:08:56:50:cb:a2:95:e6:
e1:45:22:ea:35:b8:ef:27:db:c4:73:e3:da:bd:53:47:69:e9:
ef:dd:5a:58:dc:bc:a8:ca:10:8f:51:27:47:9f:39:32:36:6f:
72:e9:2e:ec:8c:8d:4b:30:9d:14:bf:6d:f2:33:fc:05:d3:12:
2d:31:b6:c5:4f:d8:3a:da:1c:4f:da:aa:77:c8:17:6b:bc:95:
20:42:15:6d:6c:16:3d:23:75:17:60:0e:a5:3a:11:72:6c:d9:
bb:da:be:8d:df:4c:bb:15:d9:f1:4e:91:3f:28:6d:f7:6f:0d:
7b:65:0e:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:53 2024 by rpki-client on console-fra.rpki-client.org