Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/C15AXfzvYnaK_MkYFhW0ayhcLNw.roa
File: C15AXfzvYnaK_MkYFhW0ayhcLNw.roa (raw, json)
Hash identifier: opdfJBA+caLMlDaJqriHCLRHz6/jC0KcGtElZQi8cK8=
Subject key identifier: 0B:5E:40:5D:FC:EF:62:76:8A:FC:C9:18:16:15:B4:6B:28:5C:2C:DC
Certificate issuer: /CN=918316ab4ea13ebb54560c1a67042d47e966d823
Certificate serial: 018571DE7DE52830CA446E5DEAFA270848B3
Authority key identifier: 91:83:16:AB:4E:A1:3E:BB:54:56:0C:1A:67:04:2D:47:E9:66:D8:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kYMWq06hPrtUVgwaZwQtR-lm2CM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/C15AXfzvYnaK_MkYFhW0ayhcLNw.roa
Signing time: Mon 02 Jan 2023 09:44:44 +0000
ROA not before: Mon 02 Jan 2023 09:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2635
IP address blocks: 195.234.108.0/22 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:de:7d:e5:28:30:ca:44:6e:5d:ea:fa:27:08:48:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=918316ab4ea13ebb54560c1a67042d47e966d823
Validity
Not Before: Jan 2 09:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0b5e405dfcef62768afcc9181615b46b285c2cdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:07:11:1c:90:21:c2:cb:4a:70:e8:75:df:bb:
4c:b9:26:5c:71:7b:eb:a4:5a:2c:20:27:0f:61:e5:
63:01:f1:b7:71:d6:43:9f:66:3e:e4:33:89:bd:b6:
28:51:1d:cc:7b:ca:5d:6f:0d:45:97:49:55:98:2c:
77:2e:52:c1:be:ca:a6:12:ce:e4:63:34:1f:96:1f:
17:e5:8e:42:25:64:25:41:e8:81:ce:99:7e:bc:e1:
3e:ea:77:da:e1:97:7a:ea:08:36:f2:88:b4:9d:7b:
f4:8c:7a:39:35:a6:32:58:9d:00:f1:ed:1a:78:53:
91:7a:c4:db:98:23:c5:0f:cc:2c:d9:42:b4:22:47:
0c:a3:91:2b:87:f2:b2:fa:e3:eb:c3:65:ec:77:1d:
44:72:6a:d9:20:c8:ad:45:f5:6a:58:ff:f2:52:73:
af:39:0e:9c:a0:9a:bc:9b:80:cc:28:6e:b9:f1:c0:
95:58:38:b2:40:ea:c3:d1:b8:9b:63:80:3e:d2:0d:
a9:e0:11:7a:18:90:75:f7:0f:dc:c2:2f:c7:f1:39:
fb:77:91:ae:4c:89:40:bc:7e:28:cb:a3:1d:3a:09:
d2:f8:97:37:59:f7:3c:e6:f4:6a:da:19:e9:a8:7e:
0d:85:32:59:a4:af:31:fc:c4:24:39:d3:2c:44:0a:
24:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:5E:40:5D:FC:EF:62:76:8A:FC:C9:18:16:15:B4:6B:28:5C:2C:DC
X509v3 Authority Key Identifier:
keyid:91:83:16:AB:4E:A1:3E:BB:54:56:0C:1A:67:04:2D:47:E9:66:D8:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kYMWq06hPrtUVgwaZwQtR-lm2CM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/C15AXfzvYnaK_MkYFhW0ayhcLNw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.234.108.0/22
Signature Algorithm: sha256WithRSAEncryption
73:a2:b5:8d:8d:4a:1d:6f:77:6f:84:a2:ab:14:f4:d8:bf:5e:
b3:6a:db:d2:fc:71:9a:b5:0f:60:50:7e:03:32:bd:3a:8f:2a:
d2:c7:74:4b:d4:d1:8d:ba:c1:dc:7f:d3:fb:f9:2b:6e:67:b5:
08:10:61:a4:7e:98:bf:0e:28:cd:9c:55:78:9d:9d:d2:ff:48:
02:42:b6:77:6e:6f:92:ea:03:f8:41:13:34:5e:9d:64:5c:7c:
57:de:9c:6c:32:22:4a:3d:ac:20:38:1d:09:d8:6d:e8:b8:58:
6c:3d:a6:ad:8d:d6:be:8c:95:e0:97:56:14:5a:ef:f5:a1:eb:
5e:d2:b7:84:20:20:70:d5:a6:55:6c:33:80:0a:4e:64:fd:76:
ba:c4:96:af:27:83:42:25:a9:04:44:05:69:e1:8c:6c:ea:2b:
c1:ef:9a:db:2a:3d:f6:c2:0e:0a:70:98:a1:f8:00:d2:31:49:
d4:9c:ad:b7:54:82:12:d7:54:6a:d0:26:e5:0b:c0:b7:bb:93:
a9:ef:f8:40:8d:2d:9a:3e:8f:9b:1a:ad:c4:2f:13:3a:53:98:
58:29:dc:57:b8:b7:39:97:88:5e:92:3b:81:32:9b:93:01:fb:
2e:54:6a:2d:ce:c0:cf:ee:70:47:0e:08:8d:fe:53:b0:76:20:
57:40:02:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:16:20 2024 by rpki-client on console-ams.rpki-client.org