Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/8b5f7c-b3ae-4b58-81bb-25a40c075f12/1/FsIazO7Vn6gwAEryqz2iMlI6NQ8.roa
File: FsIazO7Vn6gwAEryqz2iMlI6NQ8.roa (raw, json)
Hash identifier: BWQkKkIFZPYv15rWBQ1USpgzNVO0Y7EM8fstgTDJ44c=
Subject key identifier: 16:C2:1A:CC:EE:D5:9F:A8:30:00:4A:F2:AB:3D:A2:32:52:3A:35:0F
Certificate issuer: /CN=463f917077f8f3d0e338c742ea21d64358d19d52
Certificate serial: 019057317A04DB34E47B346DB3B25E5D3735
Authority key identifier: 46:3F:91:70:77:F8:F3:D0:E3:38:C7:42:EA:21:D6:43:58:D1:9D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rj-RcHf489DjOMdC6iHWQ1jRnVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/8b5f7c-b3ae-4b58-81bb-25a40c075f12/1/FsIazO7Vn6gwAEryqz2iMlI6NQ8.roa
Signing time: Thu 27 Jun 2024 00:56:18 +0000
ROA not before: Thu 27 Jun 2024 00:56:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 195.2.202.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 27 Jun 2024 12:50:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:57:31:7a:04:db:34:e4:7b:34:6d:b3:b2:5e:5d:37:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=463f917077f8f3d0e338c742ea21d64358d19d52
Validity
Not Before: Jun 27 00:56:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=16c21acceed59fa830004af2ab3da232523a350f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:51:d7:a4:17:16:46:29:6d:7f:fc:d5:41:10:
17:e8:15:d0:c9:5e:0e:f7:b8:aa:4a:0d:1a:bf:8f:
52:16:b3:ac:8b:b2:32:2e:4e:fe:12:71:21:58:ef:
98:d9:23:c7:5a:94:34:cd:f8:27:d5:d6:84:69:6e:
41:d2:95:c8:7c:96:b1:72:8b:b9:e8:7e:50:a7:11:
8b:38:56:25:42:3e:e3:de:15:5c:a2:c5:0e:06:d3:
60:e6:c9:0a:01:2f:95:65:1e:28:63:a7:5c:55:21:
e2:61:3e:93:be:f2:45:a4:a8:79:53:c3:03:f6:f5:
86:53:cf:05:ec:98:7d:3e:94:7d:0e:1b:74:a5:78:
e6:9a:e6:c8:0a:b0:92:2e:de:39:fc:5c:0b:69:a4:
bf:65:8e:10:9c:89:5e:ef:81:23:19:e6:d9:29:eb:
51:f9:4f:be:54:3d:62:50:9a:78:e0:81:ef:1e:78:
d8:10:ef:5b:62:7f:f8:12:24:dd:32:5b:84:6c:5c:
52:55:36:96:98:83:c3:d2:75:d4:08:2a:a1:f6:99:
a1:f4:0d:a1:7b:70:93:ee:99:9c:7e:14:c9:f0:56:
c3:14:af:cc:3f:4a:cc:27:7e:20:53:f3:d3:0b:64:
f2:89:07:5b:0b:50:c2:bb:91:5f:75:d7:d8:0d:1e:
e5:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:C2:1A:CC:EE:D5:9F:A8:30:00:4A:F2:AB:3D:A2:32:52:3A:35:0F
X509v3 Authority Key Identifier:
keyid:46:3F:91:70:77:F8:F3:D0:E3:38:C7:42:EA:21:D6:43:58:D1:9D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rj-RcHf489DjOMdC6iHWQ1jRnVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/8b5f7c-b3ae-4b58-81bb-25a40c075f12/1/FsIazO7Vn6gwAEryqz2iMlI6NQ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/8b5f7c-b3ae-4b58-81bb-25a40c075f12/1/Rj-RcHf489DjOMdC6iHWQ1jRnVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.2.202.0/23
Signature Algorithm: sha256WithRSAEncryption
95:66:ca:a6:a0:da:fa:10:f8:4b:61:f0:8c:02:47:8b:a4:f1:
82:3f:87:b5:b2:c8:ca:d1:5d:3f:a0:21:88:33:29:71:ac:e4:
60:9f:4c:d4:82:d7:f6:bd:92:39:de:6f:8c:71:c2:86:41:e7:
3b:97:28:25:d6:66:45:c4:f5:51:42:7d:36:1f:47:21:24:93:
92:33:7b:1f:1d:33:05:f8:38:7b:9f:19:d8:73:1c:2e:60:c1:
5a:75:8f:ca:62:09:b7:2e:05:e0:28:f8:40:b2:09:9a:c8:37:
5e:9e:b6:db:38:f5:fe:99:55:f9:90:b3:bd:b0:34:c4:04:62:
0d:b9:66:88:35:45:c0:63:28:c3:9c:fc:8f:00:5d:5b:f6:73:
11:f1:b1:bd:08:53:b6:63:2f:f4:c4:db:38:a1:65:3b:30:58:
72:f6:ce:85:87:9e:60:b2:c2:0c:34:ed:77:c8:26:b9:8b:ad:
eb:7b:1b:a6:6b:9f:68:c3:1d:ec:46:5f:13:7b:34:9f:fb:67:
22:0d:bf:46:be:07:8b:13:75:bf:a7:bc:c0:95:01:63:3c:00:
b2:fe:d4:3d:b5:a8:83:f1:26:9c:ee:a6:4f:83:6f:1a:17:2a:
ee:18:a6:4f:a9:92:79:bd:d7:81:89:f3:d0:69:73:bb:06:b4:
ca:2f:31:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 27 16:07:25 2024 by rpki-client on console-ams.rpki-client.org