Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/a49102-0612-47a0-8117-cb1125007dfb/1/4EDpVYGyKVth3SZGqjM_WKwCqBs.roa
File: 4EDpVYGyKVth3SZGqjM_WKwCqBs.roa (raw, json)
Hash identifier: 4MaNz6OjJZ3sQmh5xH1FgmOcbDGjsggC1tsp3laWPfY=
Subject key identifier: E0:40:E9:55:81:B2:29:5B:61:DD:26:46:AA:33:3F:58:AC:02:A8:1B
Certificate issuer: /CN=94846741139263388d984db1e97e031669c6486e
Certificate serial: 01867AE6E2D972D512C518A9A538AE9C04E1
Authority key identifier: 94:84:67:41:13:92:63:38:8D:98:4D:B1:E9:7E:03:16:69:C6:48:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lIRnQROSYziNmE2x6X4DFmnGSG4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/a49102-0612-47a0-8117-cb1125007dfb/1/4EDpVYGyKVth3SZGqjM_WKwCqBs.roa
Signing time: Wed 22 Feb 2023 20:53:17 +0000
ROA not before: Wed 22 Feb 2023 20:53:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59643
IP address blocks: 195.190.139.0/24 maxlen: 24
188.95.89.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 Mar 2023 10:49:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7a:e6:e2:d9:72:d5:12:c5:18:a9:a5:38:ae:9c:04:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94846741139263388d984db1e97e031669c6486e
Validity
Not Before: Feb 22 20:53:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e040e95581b2295b61dd2646aa333f58ac02a81b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c5:f7:f2:47:ab:33:21:52:88:dd:e0:ad:95:
e5:4a:16:73:8d:7e:c8:33:a2:5b:a4:0e:aa:73:5c:
ab:51:89:ec:0c:78:1f:36:58:15:37:0e:2c:94:00:
ba:0c:85:15:e3:4a:91:f9:b9:98:f5:58:61:cd:be:
c3:72:3a:b3:de:c3:61:d0:c1:48:0e:99:d9:46:ed:
d5:49:13:a5:e6:35:a3:8f:26:80:3d:06:24:6f:59:
39:00:cd:8e:14:d1:64:98:c4:85:95:fb:40:85:42:
75:eb:a2:80:cf:61:67:fc:09:3e:57:ea:85:ae:ae:
e7:2a:af:5d:96:43:6a:c8:01:b2:49:2f:39:9c:bf:
91:6e:93:ba:2a:8b:0d:de:fe:a4:f0:06:b8:5e:80:
2b:e8:ee:a8:07:01:a2:fa:6a:56:78:fe:c0:3c:5a:
50:2d:9f:7c:03:ac:2b:56:60:84:a5:76:2f:49:b2:
0c:67:3d:0e:ea:a3:ff:fa:9d:d7:fa:bf:79:55:d8:
e6:f9:e0:0c:b8:c2:06:65:c6:83:aa:12:f5:cc:d8:
3c:50:73:4d:4b:ce:24:89:c6:6a:b6:b2:f7:4b:3b:
a3:d6:a5:be:b4:7f:88:f3:1c:74:18:47:8f:06:4e:
ff:43:15:b8:63:2f:83:60:bd:c9:25:c4:01:a3:ba:
45:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:40:E9:55:81:B2:29:5B:61:DD:26:46:AA:33:3F:58:AC:02:A8:1B
X509v3 Authority Key Identifier:
keyid:94:84:67:41:13:92:63:38:8D:98:4D:B1:E9:7E:03:16:69:C6:48:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lIRnQROSYziNmE2x6X4DFmnGSG4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/a49102-0612-47a0-8117-cb1125007dfb/1/4EDpVYGyKVth3SZGqjM_WKwCqBs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/a49102-0612-47a0-8117-cb1125007dfb/1/lIRnQROSYziNmE2x6X4DFmnGSG4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.95.89.0/24
195.190.139.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:f9:c0:16:99:4f:bb:21:b4:3a:b5:ab:03:7a:b4:a3:d4:f8:
ee:40:d1:73:d6:71:f0:61:34:a9:ef:63:67:58:26:03:ca:ea:
94:54:a9:21:a2:c7:c9:84:f7:eb:14:5d:5d:a4:47:0e:18:c3:
5b:d1:99:ed:6c:3e:4b:05:3e:0d:a3:72:fd:53:42:1e:92:28:
55:3e:ee:2e:a3:35:7f:c8:fb:ec:ad:2c:da:ec:fa:13:6e:3b:
86:93:03:1c:f2:d8:4a:f5:1b:c8:37:f6:02:33:4b:7a:eb:1f:
b2:79:a3:8a:41:35:12:e9:8e:cd:9a:8d:2a:6a:a2:a2:55:c9:
2c:e8:2b:82:2b:43:52:18:26:73:e7:be:14:1e:15:2e:3f:07:
62:39:55:c3:76:1b:2c:c5:97:95:22:cf:39:c6:97:b0:6b:35:
10:9a:d6:bd:b4:7f:fa:eb:f2:bb:1e:1a:96:c1:8b:f9:08:18:
29:fb:9b:56:b9:d7:d7:2d:0a:a3:80:3e:86:4d:07:3f:64:1f:
91:59:5d:d4:ce:8a:7a:15:cf:c5:00:4a:4d:b0:c2:51:de:aa:
74:0d:0f:ee:30:33:7a:35:8a:62:4b:1a:47:67:ed:a1:18:e0:
b6:86:8e:14:f9:62:59:7f:2d:37:b9:41:3a:49:76:74:28:45:
c8:a1:74:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:05 2024 by rpki-client on console-ams.rpki-client.org