Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/dd18d0-d1a2-46d4-8464-c94a8f2e3230/1/49N8psYtAhcfZifM8Q6Mnx45SjE.roa
File: 49N8psYtAhcfZifM8Q6Mnx45SjE.roa (raw, json)
Hash identifier: nQuWIHUkxmoItHHZDpHZDdxfYeCP5U/K61PCg+Irxlw=
Subject key identifier: E3:D3:7C:A6:C6:2D:02:17:1F:66:27:CC:F1:0E:8C:9F:1E:39:4A:31
Certificate issuer: /CN=3c4ee9110b85fdde3eb6e4462541babc3236e8ba
Certificate serial: 01856C6F142872B323F1CFC097D3BF428EBF
Authority key identifier: 3C:4E:E9:11:0B:85:FD:DE:3E:B6:E4:46:25:41:BA:BC:32:36:E8:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PE7pEQuF_d4-tuRGJUG6vDI26Lo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/dd18d0-d1a2-46d4-8464-c94a8f2e3230/1/49N8psYtAhcfZifM8Q6Mnx45SjE.roa
Signing time: Sun 01 Jan 2023 08:24:57 +0000
ROA not before: Sun 01 Jan 2023 08:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8515
IP address blocks: 195.42.160.0/19 maxlen: 19
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6f:14:28:72:b3:23:f1:cf:c0:97:d3:bf:42:8e:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c4ee9110b85fdde3eb6e4462541babc3236e8ba
Validity
Not Before: Jan 1 08:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3d37ca6c62d02171f6627ccf10e8c9f1e394a31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:09:14:52:fa:36:e0:07:69:36:10:1b:7e:e2:
13:6b:c8:f8:83:af:fb:5d:87:11:6c:06:be:0b:b1:
24:f0:cc:7b:92:96:07:99:c3:46:52:91:ae:f4:22:
e3:b7:8a:fa:a8:32:0f:f4:b7:cc:f3:49:4a:11:56:
59:21:89:5f:d1:89:b9:4f:0a:8f:5f:fc:6b:77:d8:
a8:b6:c3:87:97:ba:33:4c:dd:7b:dc:20:62:c4:a4:
ec:59:6d:be:f3:d6:67:94:93:ac:db:b8:fd:a4:3b:
1a:57:01:ca:ff:46:b2:6a:d7:97:58:3d:18:a3:2c:
0e:22:d1:86:17:5d:1f:6f:e2:0d:f7:e0:9e:27:61:
db:f7:38:08:a6:09:76:e6:10:fb:7c:d9:8f:7e:45:
7e:bf:ca:47:58:12:20:30:af:d3:ad:ae:44:08:4f:
8d:70:fe:dd:a4:b3:8a:8d:69:e8:ff:44:f5:1c:65:
c9:34:46:8f:1a:51:08:93:fb:27:50:a8:6b:0f:d9:
73:3e:e1:87:f5:99:6a:9f:3f:96:9b:70:7d:d9:07:
0c:dc:a3:a7:48:e6:13:38:c4:f9:56:7c:a5:b4:1f:
fc:e1:6e:7e:28:44:e2:f0:d1:41:19:1b:35:b5:9d:
74:71:1e:a8:52:fc:4b:29:8c:0d:50:68:81:de:a4:
1b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:D3:7C:A6:C6:2D:02:17:1F:66:27:CC:F1:0E:8C:9F:1E:39:4A:31
X509v3 Authority Key Identifier:
keyid:3C:4E:E9:11:0B:85:FD:DE:3E:B6:E4:46:25:41:BA:BC:32:36:E8:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PE7pEQuF_d4-tuRGJUG6vDI26Lo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/dd18d0-d1a2-46d4-8464-c94a8f2e3230/1/49N8psYtAhcfZifM8Q6Mnx45SjE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/dd18d0-d1a2-46d4-8464-c94a8f2e3230/1/PE7pEQuF_d4-tuRGJUG6vDI26Lo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.42.160.0/19
Signature Algorithm: sha256WithRSAEncryption
28:f4:7f:88:e2:e7:80:62:a2:c7:7c:c3:8a:da:35:db:26:1c:
cf:05:1d:c8:41:c6:90:51:ac:ab:68:98:e5:58:98:13:b6:1e:
60:82:97:aa:0d:c4:91:aa:bd:1a:af:b5:3b:57:3e:62:dc:51:
9f:1b:bd:34:27:14:f5:fe:52:f5:dd:5d:1f:63:dd:89:d8:57:
c8:d3:ab:d5:3a:0c:30:0b:74:ae:29:2d:ea:82:85:76:3c:3c:
8a:60:ce:07:ae:b0:f4:8b:72:3f:b3:09:dc:6f:75:2b:4f:b2:
5f:42:63:02:c6:58:00:f7:07:bf:47:da:bf:e5:be:38:1d:e9:
61:c9:3f:87:f9:1d:fc:4c:f0:b3:b4:d8:0c:58:17:d5:d4:f7:
5e:67:d0:40:a2:e3:c9:7d:2f:ab:21:d7:a6:da:81:16:c7:48:
f2:8f:86:49:17:1b:78:5e:7b:c6:89:2f:7d:c1:1e:f6:29:61:
0d:15:a7:15:b9:52:9b:c6:44:5a:8c:43:10:25:8c:94:4d:83:
98:f0:d5:56:a8:ba:36:5e:97:bd:11:72:54:87:b5:fe:53:91:
f3:50:4e:27:70:08:42:fa:3b:fc:c6:dd:d5:f8:c5:9c:14:c8:
bb:dd:c4:7b:d7:5d:e3:58:e7:f7:41:25:21:dd:9c:86:d2:14:
f9:2a:f7:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:16 2024 by rpki-client on console-ams.rpki-client.org