Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/f599f7-b4f8-4e52-8a96-45cb7ee20ebd/1/jfK2uBeRGz5vGzb9-rDSyAdUqvU.roa
File: jfK2uBeRGz5vGzb9-rDSyAdUqvU.roa (raw, json)
Hash identifier: l3+vqdPfjRtuG0KeIqVoxEIVjtZG8VlJnec4HOcckV8=
Subject key identifier: 8D:F2:B6:B8:17:91:1B:3E:6F:1B:36:FD:FA:B0:D2:C8:07:54:AA:F5
Certificate issuer: /CN=d2d58cf4c6838f9b3d17718dcbc948f2c455a83d
Certificate serial: 0185714C1D1077331892CFA7F7093E388967
Authority key identifier: D2:D5:8C:F4:C6:83:8F:9B:3D:17:71:8D:CB:C9:48:F2:C4:55:A8:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0tWM9MaDj5s9F3GNy8lI8sRVqD0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/f599f7-b4f8-4e52-8a96-45cb7ee20ebd/1/jfK2uBeRGz5vGzb9-rDSyAdUqvU.roa
Signing time: Mon 02 Jan 2023 07:04:51 +0000
ROA not before: Mon 02 Jan 2023 07:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 195.74.86.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:4c:1d:10:77:33:18:92:cf:a7:f7:09:3e:38:89:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2d58cf4c6838f9b3d17718dcbc948f2c455a83d
Validity
Not Before: Jan 2 07:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8df2b6b817911b3e6f1b36fdfab0d2c80754aaf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:41:d4:f4:24:d4:b1:67:10:2b:41:c4:c0:91:
65:9d:69:17:98:43:6b:17:e0:22:18:b0:a3:aa:5a:
61:f1:fa:66:05:90:36:0e:7f:db:c9:42:7b:e8:23:
e2:7e:b5:93:78:7c:20:58:d5:6d:ea:af:a4:42:2b:
a0:af:d0:92:a7:9d:6c:8e:6a:99:7a:6d:f2:72:24:
88:6d:83:d8:1d:f4:95:a3:de:07:e5:f6:c5:51:1f:
36:b8:b0:89:04:6a:37:36:92:f7:a7:2c:72:28:20:
49:29:55:9f:c6:e0:c5:91:4a:77:59:3d:89:c9:5c:
04:bb:1e:31:6c:9c:88:bc:b0:05:ff:53:e5:c5:1b:
03:af:ed:82:2e:62:16:a6:7c:db:90:73:1e:35:11:
41:9b:e8:92:dc:cf:3e:df:8e:0b:c9:43:3b:43:04:
4d:f8:57:57:f7:65:1a:c1:77:ee:8b:65:4c:0b:5b:
cf:c9:c8:d0:72:11:2b:d1:d8:e6:c3:ef:21:d9:9e:
62:8c:32:60:a3:8a:5e:fd:9a:9c:64:d0:63:de:70:
6a:65:3b:df:ab:e4:53:16:a0:d4:f6:60:70:6d:b9:
36:9e:78:91:fa:e9:30:01:cf:70:fd:3e:b1:e2:4e:
2b:2e:fc:9b:b6:be:43:9a:c8:ef:a2:b4:c1:17:35:
fb:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:F2:B6:B8:17:91:1B:3E:6F:1B:36:FD:FA:B0:D2:C8:07:54:AA:F5
X509v3 Authority Key Identifier:
keyid:D2:D5:8C:F4:C6:83:8F:9B:3D:17:71:8D:CB:C9:48:F2:C4:55:A8:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0tWM9MaDj5s9F3GNy8lI8sRVqD0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/f599f7-b4f8-4e52-8a96-45cb7ee20ebd/1/jfK2uBeRGz5vGzb9-rDSyAdUqvU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/f599f7-b4f8-4e52-8a96-45cb7ee20ebd/1/0tWM9MaDj5s9F3GNy8lI8sRVqD0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.74.86.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:db:f5:10:2f:bb:8a:db:68:d3:39:8e:df:f8:49:8c:f4:65:
c6:02:e2:df:f4:5f:d9:70:e1:98:c4:be:8c:52:b8:dd:7d:51:
b8:e2:44:ec:b8:3e:59:1e:b2:4e:b6:d6:68:3b:96:c6:de:a0:
5b:e2:20:2e:d7:69:8d:09:d8:d0:d7:c7:22:77:0a:5e:8c:f3:
d7:ed:6b:d9:68:29:cc:25:7d:47:65:c8:1b:20:49:07:60:6b:
5a:89:80:36:10:ae:ba:89:b9:94:6b:b5:c4:46:84:6f:c0:04:
84:ac:98:d8:5d:4b:e2:4d:18:dd:9f:79:4a:76:fc:5e:a3:76:
9b:47:9c:6f:cf:e6:59:5f:ca:10:5c:4f:43:3f:c7:3e:4b:b4:
85:e9:38:8c:71:7c:1a:4e:dd:86:cc:5c:31:bd:8e:8c:95:dd:
bb:8b:09:af:b8:f7:e0:21:e5:40:ed:01:a3:09:8d:88:5e:85:
00:c3:fe:bb:79:45:5b:f3:93:3e:f6:e1:b9:f9:02:10:82:a1:
43:32:1b:d9:e8:35:0c:c0:98:62:78:04:73:d4:2a:67:09:b7:
d2:77:f7:f9:8b:d6:67:e7:2a:6e:88:bf:9c:f2:58:1e:5c:c5:
0b:04:ae:d8:54:a9:32:fa:29:4b:36:58:ce:d1:de:bc:de:70:
23:47:63:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:27 2024 by rpki-client on console-ams.rpki-client.org