Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/C1q4bnhtQ73JL3ZdVOS6yocsCu0.roa
File: C1q4bnhtQ73JL3ZdVOS6yocsCu0.roa (raw, json)
Hash identifier: ll4svKX5sLD68y3KGOp/cJKVlK/kEpeCNRo0zq7DTs8=
Subject key identifier: 0B:5A:B8:6E:78:6D:43:BD:C9:2F:76:5D:54:E4:BA:CA:87:2C:0A:ED
Certificate issuer: /CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530
Certificate serial: 0185730CCB79E88C788F536C13E1E50479AF
Authority key identifier: 91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/C1q4bnhtQ73JL3ZdVOS6yocsCu0.roa
Signing time: Mon 02 Jan 2023 15:14:56 +0000
ROA not before: Mon 02 Jan 2023 15:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 397423
IP address blocks: 195.62.47.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:0c:cb:79:e8:8c:78:8f:53:6c:13:e1:e5:04:79:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530
Validity
Not Before: Jan 2 15:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0b5ab86e786d43bdc92f765d54e4baca872c0aed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:df:37:3d:09:12:e0:9f:dd:a7:3b:62:ef:9a:
6b:e9:cf:6a:36:23:dd:f4:8e:b0:2b:a4:f5:fe:77:
47:e5:d1:5d:bd:59:bd:2c:c4:84:dc:f0:c4:88:a3:
4c:0f:1a:30:3b:c7:8a:46:b0:53:3a:bd:14:c9:48:
91:ce:7f:7e:7f:83:cf:90:a3:e3:b4:3c:3c:4d:83:
03:0e:70:b1:4b:67:84:cd:b7:29:6c:0f:e9:84:80:
a5:66:11:67:e7:eb:e1:4f:7a:cf:0c:32:e2:20:87:
04:32:e4:22:ba:c4:5b:65:9c:56:ce:77:73:e5:3a:
06:a3:21:16:62:0b:bf:31:6e:e0:b8:bb:88:28:f4:
c5:c0:33:42:26:51:a5:45:37:69:ec:47:8d:11:34:
fa:8b:45:e7:ed:a7:b6:ac:69:8d:49:d0:86:a4:7e:
e0:5f:8e:17:ff:f1:b4:c9:ac:9b:19:63:72:3b:50:
30:2a:63:e8:9d:61:74:24:5e:14:3f:0e:c8:1e:5c:
d2:04:9f:39:02:f0:d2:a6:ce:a9:9f:87:d1:b9:a6:
69:8f:f7:f2:89:2c:8b:4e:7a:7c:b8:d9:b5:81:21:
b6:b6:5d:a2:a4:f1:4c:e2:65:5c:b9:4f:be:4c:dd:
36:ce:c2:a6:f2:c1:fe:f4:a7:8e:45:ab:ea:fd:b8:
02:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:5A:B8:6E:78:6D:43:BD:C9:2F:76:5D:54:E4:BA:CA:87:2C:0A:ED
X509v3 Authority Key Identifier:
keyid:91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/C1q4bnhtQ73JL3ZdVOS6yocsCu0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.62.47.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:b7:b4:c2:a0:d8:a4:e5:a9:19:33:79:7e:4e:93:ba:f2:0c:
b0:4c:a7:a1:79:32:9c:71:30:bf:f5:e9:1f:49:96:39:16:4e:
c5:15:a0:0f:44:50:eb:d9:c6:aa:c2:0c:a0:34:2b:7d:bc:82:
23:ba:6a:41:83:74:65:e1:10:fa:ef:a6:25:e1:51:43:58:11:
2d:bc:e1:bf:ee:cf:b6:83:83:31:73:78:01:36:a0:6e:82:a6:
89:cd:eb:4f:4f:cd:a4:88:55:cd:9d:28:6e:8b:66:88:b1:02:
9b:57:86:84:7a:ca:1e:30:df:e1:26:57:61:12:c8:f4:b8:85:
26:25:93:d9:97:f1:2d:58:39:52:19:0c:f7:19:8c:dc:83:17:
bc:d9:6d:ff:8b:e7:53:c9:1e:73:05:14:4a:ac:76:2a:e6:57:
49:75:ce:22:c5:8a:09:7b:2f:4a:46:4a:2a:06:82:14:a8:e0:
10:64:f5:b0:ea:e8:41:25:e8:25:fc:03:03:a3:f2:c2:7d:9d:
4a:9a:8c:86:81:97:ad:fc:c0:05:db:12:7a:24:9a:a5:3d:d3:
a4:a8:d9:31:58:12:fa:1f:68:7f:97:3f:0b:9b:a4:7f:1d:5b:
2b:0e:ab:d9:b0:38:fd:da:ea:82:ef:1a:e3:b8:c3:62:88:18:
da:9f:e9:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:44 2024 by rpki-client on console-fra.rpki-client.org