Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/82233d-ec07-42fb-8799-ed30b9bb12d5/1/p1hhnorT1QYyT75AK5URjdUt7dM.roa
File: p1hhnorT1QYyT75AK5URjdUt7dM.roa (raw, json)
Hash identifier: 16lCXWCMVXby6TTmwuNFQQ1H0mdYU5iDkRn4Qpn6JLc=
Subject key identifier: A7:58:61:9E:8A:D3:D5:06:32:4F:BE:40:2B:95:11:8D:D5:2D:ED:D3
Certificate issuer: /CN=60fcd55b9130858d8ea583c0987dad00f614db39
Certificate serial: 01856EA68CC9085FD1BA9AA28C0EFEAB8E3A
Authority key identifier: 60:FC:D5:5B:91:30:85:8D:8E:A5:83:C0:98:7D:AD:00:F6:14:DB:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YPzVW5EwhY2OpYPAmH2tAPYU2zk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/82233d-ec07-42fb-8799-ed30b9bb12d5/1/p1hhnorT1QYyT75AK5URjdUt7dM.roa
Signing time: Sun 01 Jan 2023 18:44:46 +0000
ROA not before: Sun 01 Jan 2023 18:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398464
IP address blocks: 195.64.122.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:8c:c9:08:5f:d1:ba:9a:a2:8c:0e:fe:ab:8e:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60fcd55b9130858d8ea583c0987dad00f614db39
Validity
Not Before: Jan 1 18:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a758619e8ad3d506324fbe402b95118dd52dedd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:79:e3:74:ca:c5:37:53:3b:7e:df:54:e9:92:
75:e9:f6:34:37:54:cf:93:e5:8d:06:0f:a7:25:ca:
85:f5:43:83:76:d4:99:8f:2f:ba:f9:23:70:99:7c:
38:98:ff:40:89:5a:83:8b:04:27:6f:e8:3b:69:3e:
41:5c:be:dd:1c:68:44:c3:6c:de:75:9e:fd:72:12:
22:ee:96:79:66:65:3e:7c:98:84:6f:4b:74:e2:60:
26:1f:52:b0:dc:e9:cb:e2:b5:81:0c:7a:ef:27:a0:
c4:ad:69:8c:a4:47:ef:60:96:bb:85:61:70:99:a4:
4d:7b:43:2c:1c:55:47:f6:e9:6b:57:30:26:e7:7b:
cf:d9:65:4d:65:c4:5a:17:1d:f7:f0:6a:24:d1:af:
26:2d:1b:75:cc:8d:74:2d:ee:45:7f:d3:be:15:d2:
8f:e7:c7:e5:29:02:51:3b:56:88:17:dd:e8:f5:c9:
51:88:a2:7c:82:cc:5a:ef:d2:9c:81:e6:64:cd:0a:
6f:3b:0c:2e:76:7f:f2:38:c2:cf:69:32:36:9f:6e:
c9:83:8e:66:75:2f:1d:d2:7d:be:51:89:70:25:ab:
e9:e4:64:c3:2d:27:87:2e:d4:54:68:6d:57:eb:dc:
b2:dc:77:2c:b2:02:19:de:60:65:e7:d5:df:7c:d5:
bc:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:58:61:9E:8A:D3:D5:06:32:4F:BE:40:2B:95:11:8D:D5:2D:ED:D3
X509v3 Authority Key Identifier:
keyid:60:FC:D5:5B:91:30:85:8D:8E:A5:83:C0:98:7D:AD:00:F6:14:DB:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YPzVW5EwhY2OpYPAmH2tAPYU2zk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/82233d-ec07-42fb-8799-ed30b9bb12d5/1/p1hhnorT1QYyT75AK5URjdUt7dM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/82233d-ec07-42fb-8799-ed30b9bb12d5/1/YPzVW5EwhY2OpYPAmH2tAPYU2zk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.122.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:e0:ad:89:d1:48:f1:9a:98:cf:ff:86:21:a2:f0:05:af:a5:
e3:04:d8:fe:a5:20:be:e2:04:24:14:a9:07:dd:82:dd:73:14:
26:f8:66:dc:cc:81:7a:03:e1:b0:e9:6e:7f:f1:fa:46:38:5a:
dc:9e:f0:66:d8:14:ad:0f:c8:af:e1:76:46:08:ea:49:eb:53:
76:e8:b5:71:4f:18:95:2d:40:0a:85:e1:f8:26:ad:ff:01:28:
d7:4d:89:ef:ac:9f:8a:07:1e:24:e7:5c:95:d5:83:bf:fe:54:
08:51:57:7a:ed:6f:5e:e9:94:dd:b5:17:73:8a:bc:85:af:0c:
ca:e1:f5:25:4c:be:2d:7c:23:b8:a5:71:16:52:91:9b:23:6d:
99:ce:f7:ff:e7:c3:0e:e5:3e:f1:b2:ef:ee:f9:36:72:69:2a:
36:17:00:e1:c8:c3:0f:5f:e4:52:13:ad:81:a1:09:14:67:90:
b2:64:31:39:c0:7a:66:fd:43:19:e8:7a:ca:88:47:44:f9:00:
a6:a8:30:3f:28:f5:39:ab:ed:49:88:70:98:7d:72:86:48:5e:
f7:d0:c2:7a:db:7a:e9:aa:a9:b7:3c:ef:4f:c6:c8:ec:71:65:
a6:c9:29:dc:fd:8c:12:bb:df:e4:34:4c:d2:f1:b3:8e:82:82:
86:6d:c9:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:23 2024 by rpki-client on console-ams.rpki-client.org