Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/68cd10-e5cc-4f47-84a9-15a0207d4609/1/ghX0EkfpYtPaFfCdo3dCz9Uj6ic.roa
File: ghX0EkfpYtPaFfCdo3dCz9Uj6ic.roa (raw, json)
Hash identifier: VeMuTot6oD4B+3r2zbmf77SdX6hK3IaM2mY0W3edWyk=
Subject key identifier: 82:15:F4:12:47:E9:62:D3:DA:15:F0:9D:A3:77:42:CF:D5:23:EA:27
Certificate issuer: /CN=88a5ab669fabe72dec2e8378476a7e915c24edcf
Certificate serial: 0185704292A5D0AE02BA307ADB3B3E39CE0C
Authority key identifier: 88:A5:AB:66:9F:AB:E7:2D:EC:2E:83:78:47:6A:7E:91:5C:24:ED:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKWrZp-r5y3sLoN4R2p-kVwk7c8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/68cd10-e5cc-4f47-84a9-15a0207d4609/1/ghX0EkfpYtPaFfCdo3dCz9Uj6ic.roa
Signing time: Mon 02 Jan 2023 02:14:49 +0000
ROA not before: Mon 02 Jan 2023 02:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8751
IP address blocks: 195.245.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:92:a5:d0:ae:02:ba:30:7a:db:3b:3e:39:ce:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88a5ab669fabe72dec2e8378476a7e915c24edcf
Validity
Not Before: Jan 2 02:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8215f41247e962d3da15f09da37742cfd523ea27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:f3:ef:dc:56:c0:9c:02:60:93:ab:7c:34:b9:
ec:14:42:1a:43:66:45:7e:bd:a6:63:9e:28:47:70:
20:f6:c8:9a:16:15:8a:50:ec:b7:e0:c7:bd:60:2b:
f6:3d:11:c8:5a:7a:e1:01:95:d4:b3:df:be:f3:8a:
67:97:de:11:3a:9b:36:2f:ab:4c:7f:fb:46:32:39:
c0:2a:f7:8f:81:81:fa:b2:b9:da:65:a6:78:fa:70:
b7:ae:c4:59:f5:b8:2f:48:fd:3e:17:fa:77:29:ec:
fb:3c:c7:ae:dd:cc:36:31:eb:e7:a7:af:75:3b:64:
11:af:65:4e:21:30:b0:97:bc:32:5c:6f:5a:f6:6c:
eb:d8:8b:00:ab:5b:17:1e:03:9f:56:39:00:4b:9d:
94:de:31:2f:a6:38:de:4c:7e:23:2d:48:ac:28:42:
3a:36:82:92:e2:66:52:51:48:1f:2d:8f:01:00:46:
31:0e:33:a4:aa:aa:79:f1:e8:b0:7f:46:86:63:f7:
95:c0:77:0e:5e:69:a0:17:88:42:91:47:2a:72:05:
df:4d:f2:47:2d:39:61:f5:66:f4:9e:71:93:dc:43:
f9:8a:ea:b8:ec:f2:2a:06:f6:ec:a2:82:49:85:65:
4c:d0:95:0d:e0:5c:95:62:96:0e:da:da:3b:4c:1c:
52:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:15:F4:12:47:E9:62:D3:DA:15:F0:9D:A3:77:42:CF:D5:23:EA:27
X509v3 Authority Key Identifier:
keyid:88:A5:AB:66:9F:AB:E7:2D:EC:2E:83:78:47:6A:7E:91:5C:24:ED:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKWrZp-r5y3sLoN4R2p-kVwk7c8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/68cd10-e5cc-4f47-84a9-15a0207d4609/1/ghX0EkfpYtPaFfCdo3dCz9Uj6ic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/68cd10-e5cc-4f47-84a9-15a0207d4609/1/iKWrZp-r5y3sLoN4R2p-kVwk7c8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.245.220.0/24
Signature Algorithm: sha256WithRSAEncryption
41:ac:1d:f3:82:96:0c:5a:3b:31:e4:fe:31:a7:e3:0f:78:bc:
13:b5:96:36:f3:fe:15:ad:fb:8e:1c:79:05:79:52:ca:9c:d9:
e6:9d:b8:90:8d:62:4c:54:71:98:43:44:ee:60:e1:7c:e3:e8:
33:65:43:ab:23:4d:f6:cb:79:47:73:02:ef:47:7f:22:43:d0:
99:be:a9:ef:0d:38:a3:88:f0:c4:9a:4e:fd:6a:b4:f3:0f:aa:
f1:54:46:3e:f2:3b:42:d5:b9:eb:f3:9f:87:aa:a6:cd:9b:15:
05:3f:68:90:f7:2b:31:83:78:a3:a6:29:99:c4:31:55:2f:2b:
c5:49:5f:12:4c:67:01:01:a0:e4:dc:b9:19:ee:ce:13:63:b5:
1a:4b:5b:90:60:34:0c:97:c5:08:39:ef:fb:2f:61:54:3c:fe:
ca:23:eb:89:fe:22:ac:9f:f5:7b:6e:33:c8:69:1d:22:f2:76:
0b:ae:8c:da:30:bd:19:cf:a7:85:40:a5:7e:6b:7b:c4:f3:27:
a1:b0:2c:d9:61:b6:46:e3:c5:1f:05:8f:10:a8:50:21:48:f8:
3c:cb:ac:71:ab:ce:29:d7:44:73:6c:41:40:4e:f0:66:c3:e6:
ba:7d:45:2a:f8:03:bb:9e:50:84:32:55:8f:9e:a5:a3:16:da:
3a:11:d8:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:14 2024 by rpki-client on console-fra.rpki-client.org