Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/048df6-bccd-4885-8f43-4dc2071a5bf1/1/OIRrOmSmYL0GR0Gql6C_T71B4oY.roa
File: OIRrOmSmYL0GR0Gql6C_T71B4oY.roa (raw, json)
Hash identifier: HVX/ooz3DI1lrKfcYKU4euGrUqMnT0SzxR7BuqH1+rw=
Subject key identifier: 38:84:6B:3A:64:A6:60:BD:06:47:41:AA:97:A0:BF:4F:BD:41:E2:86
Certificate issuer: /CN=9944078b40772b172c7046e7446204980ceae139
Certificate serial: 01856DD3F9B5FFB13A56B33F72ADC48D8E56
Authority key identifier: 99:44:07:8B:40:77:2B:17:2C:70:46:E7:44:62:04:98:0C:EA:E1:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mUQHi0B3KxcscEbnRGIEmAzq4Tk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/048df6-bccd-4885-8f43-4dc2071a5bf1/1/OIRrOmSmYL0GR0Gql6C_T71B4oY.roa
Signing time: Sun 01 Jan 2023 14:54:46 +0000
ROA not before: Sun 01 Jan 2023 14:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43210
IP address blocks: 195.95.179.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:d3:f9:b5:ff:b1:3a:56:b3:3f:72:ad:c4:8d:8e:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9944078b40772b172c7046e7446204980ceae139
Validity
Not Before: Jan 1 14:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=38846b3a64a660bd064741aa97a0bf4fbd41e286
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:74:97:22:62:6e:d0:e9:92:62:a5:d8:c0:d2:
d6:a2:60:48:16:05:98:80:41:0b:46:64:05:54:b1:
16:9d:2a:94:4b:db:8a:a7:5e:02:9b:f9:19:fe:3a:
ab:a7:c3:38:bb:55:78:12:41:12:46:9d:69:73:12:
0f:d4:7a:bb:c2:1c:b3:43:48:35:ab:3a:2b:02:29:
bc:8e:c1:67:dd:f3:b2:11:bf:d3:de:c0:21:c6:20:
26:76:a8:7d:fd:44:a5:dd:1d:33:19:b3:1d:8b:b8:
a0:02:88:df:a5:1f:58:bb:0c:78:1a:fa:88:a8:f4:
d6:f6:a8:18:63:15:18:14:eb:a1:3d:cb:f8:7b:f0:
ee:26:ef:05:4a:41:42:1d:55:23:67:9c:35:26:4e:
40:46:b8:1a:d3:86:98:3c:15:9f:3e:b3:e2:d7:4d:
23:4f:67:24:55:0b:88:71:39:7d:d2:ca:60:c1:cf:
7f:6d:df:30:33:90:e6:bb:f1:f7:b0:e0:27:a2:b0:
9e:82:87:b7:69:22:5e:74:69:0d:04:b1:f8:ed:a2:
ed:a6:2e:92:40:5d:88:16:25:6c:db:df:35:58:57:
ef:98:44:f7:a4:ba:af:cc:3f:93:4e:c8:d0:0d:23:
ea:78:96:02:55:ab:be:97:63:66:e4:75:34:ae:7b:
0d:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:84:6B:3A:64:A6:60:BD:06:47:41:AA:97:A0:BF:4F:BD:41:E2:86
X509v3 Authority Key Identifier:
keyid:99:44:07:8B:40:77:2B:17:2C:70:46:E7:44:62:04:98:0C:EA:E1:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mUQHi0B3KxcscEbnRGIEmAzq4Tk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/048df6-bccd-4885-8f43-4dc2071a5bf1/1/OIRrOmSmYL0GR0Gql6C_T71B4oY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/048df6-bccd-4885-8f43-4dc2071a5bf1/1/mUQHi0B3KxcscEbnRGIEmAzq4Tk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.179.0/24
Signature Algorithm: sha256WithRSAEncryption
02:5d:0c:c6:33:3f:72:9a:32:d7:4c:cc:2c:cb:46:6f:8c:1f:
49:b3:ab:d9:78:4c:16:ea:4b:d7:cd:75:b0:97:11:32:94:5e:
9c:ef:68:44:c9:de:e2:89:26:ea:2b:ba:ff:f7:f6:d1:4f:7b:
26:1b:b6:87:6c:63:15:18:08:2e:90:a0:19:2f:c1:be:3e:ff:
5c:9c:a3:bd:e8:01:7a:ab:ce:72:4f:00:94:5f:f4:8c:c1:0b:
6e:fd:99:7d:da:1f:3e:c0:10:11:44:0c:dd:2e:7e:06:94:03:
fc:c6:93:f2:97:26:18:62:94:43:00:c0:0d:eb:2e:88:5e:f0:
17:59:eb:8c:34:20:da:53:5c:ce:5f:00:7c:b3:10:6a:52:5d:
0d:a5:a5:8d:ac:ca:7a:52:56:4e:2d:75:a2:4d:b4:15:c6:bd:
7f:56:41:b1:52:37:30:da:0b:85:31:58:94:d8:cc:ff:f6:2f:
b2:de:93:03:0c:05:3a:08:20:1c:88:67:07:8c:cb:0a:1f:0f:
9a:5a:6e:6c:c8:4c:09:92:76:7c:fe:93:9d:8d:ea:54:0c:20:
46:59:99:2c:e5:9d:37:4d:cc:25:ef:f9:3d:bb:e3:a9:96:f3:
6b:38:cd:6c:4a:32:2b:6e:03:7a:af:3f:29:1a:43:40:eb:7d:
a5:0d:b5:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:42 2024 by rpki-client on console-ams.rpki-client.org