Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/68cd10-e5cc-4f47-84a9-15a0207d4609/1/yOh9_lTPrAttWiBuuP65IRx3GDY.roa
File: yOh9_lTPrAttWiBuuP65IRx3GDY.roa (raw, json)
Hash identifier: ydrc3A5gM8OH9GX3f0IR+PgfeMynOD4Z03eueUQUs/4=
Subject key identifier: C8:E8:7D:FE:54:CF:AC:0B:6D:5A:20:6E:B8:FE:B9:21:1C:77:18:36
Certificate issuer: /CN=88a5ab669fabe72dec2e8378476a7e915c24edcf
Certificate serial: 01857042936485E1711360A22D21DF9B5893
Authority key identifier: 88:A5:AB:66:9F:AB:E7:2D:EC:2E:83:78:47:6A:7E:91:5C:24:ED:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKWrZp-r5y3sLoN4R2p-kVwk7c8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/68cd10-e5cc-4f47-84a9-15a0207d4609/1/yOh9_lTPrAttWiBuuP65IRx3GDY.roa
Signing time: Mon 02 Jan 2023 02:14:49 +0000
ROA not before: Mon 02 Jan 2023 02:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12310
IP address blocks: 195.245.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:93:64:85:e1:71:13:60:a2:2d:21:df:9b:58:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88a5ab669fabe72dec2e8378476a7e915c24edcf
Validity
Not Before: Jan 2 02:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c8e87dfe54cfac0b6d5a206eb8feb9211c771836
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f3:43:b4:4e:32:98:09:85:80:94:31:92:d7:
4f:a1:71:76:55:50:8a:4f:5c:50:8e:f5:b8:2d:bf:
be:b1:a8:17:df:46:5c:d0:cd:64:5a:ba:31:20:98:
2a:1c:f6:75:37:0a:63:be:35:3a:e7:62:a8:cb:bc:
17:82:ea:95:ee:31:5c:73:7e:64:cb:c8:03:2e:54:
48:10:02:ca:ec:ab:62:f4:65:ae:0b:af:2e:db:4a:
ef:89:db:b4:71:19:c0:b4:94:72:c7:2a:fa:a4:32:
b5:2c:48:8b:20:0f:3d:2a:77:ac:0d:4b:2f:15:45:
24:6d:5a:65:f4:89:93:15:d9:44:f6:75:39:db:c7:
ad:25:be:cc:37:4d:e6:1f:86:d1:8b:ec:70:15:dc:
01:4a:38:c1:d1:62:97:b7:ec:ce:c2:71:e5:79:a0:
52:31:eb:12:71:2e:27:69:d0:ff:76:45:4f:06:32:
80:a3:fa:6d:98:93:54:f6:25:13:63:ab:2c:f5:fe:
55:e5:de:72:fa:0e:c0:91:60:1f:92:1c:0b:7d:5b:
ac:66:b2:04:55:9b:95:ae:65:bc:e8:d5:f0:c9:af:
58:ed:c1:99:13:b1:1f:91:af:a7:22:21:66:f9:1d:
f0:32:e3:03:1f:69:29:da:42:ee:18:50:9c:00:a4:
55:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:E8:7D:FE:54:CF:AC:0B:6D:5A:20:6E:B8:FE:B9:21:1C:77:18:36
X509v3 Authority Key Identifier:
keyid:88:A5:AB:66:9F:AB:E7:2D:EC:2E:83:78:47:6A:7E:91:5C:24:ED:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKWrZp-r5y3sLoN4R2p-kVwk7c8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/68cd10-e5cc-4f47-84a9-15a0207d4609/1/yOh9_lTPrAttWiBuuP65IRx3GDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/68cd10-e5cc-4f47-84a9-15a0207d4609/1/iKWrZp-r5y3sLoN4R2p-kVwk7c8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.245.220.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:bb:a4:fc:11:4c:a7:d4:17:05:92:85:6a:f2:60:9e:65:83:
86:29:4e:75:a4:03:16:09:33:7b:22:d6:ac:4d:d0:71:27:1d:
dc:47:3b:fa:5a:22:ee:70:44:57:e9:ab:3b:6f:45:91:34:fb:
77:bf:3b:fe:fe:28:d1:84:01:76:ce:06:27:7a:49:76:64:92:
73:ac:74:f1:62:92:01:f0:dc:2b:c4:67:a0:a5:c1:77:08:aa:
24:fe:ab:21:ed:b6:79:62:29:c0:94:36:e9:c9:5c:31:0f:59:
e2:46:e0:24:5a:eb:f3:8f:6d:33:20:2f:fe:d6:ce:29:29:55:
b6:6e:70:fe:c6:38:e3:d8:00:94:89:5a:c1:ba:40:35:ac:00:
d0:07:32:f3:ab:c6:3f:a6:d7:02:c0:f4:2f:d2:d9:52:cc:04:
75:5b:e5:77:5d:9c:3f:8b:fc:7b:e2:47:60:ca:9b:64:72:a0:
c4:23:21:df:61:ca:be:6c:8c:58:d2:a9:25:a9:d7:94:5b:35:
ef:0a:74:d2:81:7c:77:2c:fd:db:b4:c2:14:3d:86:ce:14:df:
30:24:6e:98:30:87:a9:62:5a:6f:da:0b:c0:fd:43:f4:7e:71:
ae:6c:50:c9:d3:c7:12:fc:b6:8f:c2:ee:f7:09:d6:4a:2e:92:
1d:0f:64:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:14 2024 by rpki-client on console-fra.rpki-client.org