Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/a49102-0612-47a0-8117-cb1125007dfb/1/RwMj88YYQbPIBDI1PPAjtP8POPA.roa
File: RwMj88YYQbPIBDI1PPAjtP8POPA.roa (raw, json)
Hash identifier: vl2hvDY5Ex9qrYzOtW8Wj1nbNxsWAh7mDO87jNNYiJk=
Subject key identifier: 47:03:23:F3:C6:18:41:B3:C8:04:32:35:3C:F0:23:B4:FF:0F:38:F0
Certificate issuer: /CN=94846741139263388d984db1e97e031669c6486e
Certificate serial: 0187046BD032131CEDF2D4FE5452FDB1C25E
Authority key identifier: 94:84:67:41:13:92:63:38:8D:98:4D:B1:E9:7E:03:16:69:C6:48:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lIRnQROSYziNmE2x6X4DFmnGSG4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/a49102-0612-47a0-8117-cb1125007dfb/1/RwMj88YYQbPIBDI1PPAjtP8POPA.roa
Signing time: Tue 21 Mar 2023 13:46:27 +0000
ROA not before: Tue 21 Mar 2023 13:46:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204650
IP address blocks: 195.190.130.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Jun 2023 18:03:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:04:6b:d0:32:13:1c:ed:f2:d4:fe:54:52:fd:b1:c2:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94846741139263388d984db1e97e031669c6486e
Validity
Not Before: Mar 21 13:46:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=470323f3c61841b3c80432353cf023b4ff0f38f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:a5:b0:e0:16:89:7e:f4:68:7c:63:c6:9a:e1:
98:7a:9d:a2:2e:e6:c0:54:c7:a0:d4:e2:6b:db:40:
3f:f6:62:26:be:96:d9:6a:f7:3a:37:a4:e7:2f:2f:
bc:1e:e9:85:7e:74:4a:16:e5:99:28:c0:c2:f3:3e:
12:e7:aa:d3:1a:e4:bc:7a:e2:c8:02:26:97:5f:63:
59:ac:24:7a:10:cc:03:ad:83:14:17:36:86:dc:bb:
75:ad:d0:0e:e8:9c:83:c5:52:4b:f9:51:26:7b:9c:
6e:1d:26:60:c9:43:ef:8d:64:5b:0b:dc:61:f2:d1:
b2:5a:ea:ff:70:ba:f8:e4:df:e2:20:e7:28:e0:e6:
95:b0:ad:64:92:2e:5d:11:42:7d:9f:cc:c8:e7:d7:
21:6b:3c:40:fd:15:9b:9e:9a:ed:c1:f5:3f:ce:0d:
da:94:b8:2b:71:c9:bc:9d:fa:7f:f2:24:60:ec:60:
7b:52:3f:77:95:f3:11:b9:42:9b:8d:8b:11:57:55:
c9:72:f8:63:4f:11:02:f5:1b:88:dd:3c:b1:27:96:
62:e0:9e:45:37:e6:d5:6f:c2:7e:3c:6c:d0:db:10:
83:6c:a0:a7:3c:4e:16:df:b4:10:4e:61:9d:f8:d0:
84:13:a3:12:63:fa:13:d4:fa:da:96:6b:5c:89:25:
5c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:03:23:F3:C6:18:41:B3:C8:04:32:35:3C:F0:23:B4:FF:0F:38:F0
X509v3 Authority Key Identifier:
keyid:94:84:67:41:13:92:63:38:8D:98:4D:B1:E9:7E:03:16:69:C6:48:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lIRnQROSYziNmE2x6X4DFmnGSG4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/a49102-0612-47a0-8117-cb1125007dfb/1/RwMj88YYQbPIBDI1PPAjtP8POPA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/a49102-0612-47a0-8117-cb1125007dfb/1/lIRnQROSYziNmE2x6X4DFmnGSG4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.190.130.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:b7:1a:df:c8:65:f6:25:48:09:66:94:48:0f:5b:55:7b:07:
c6:a0:e6:56:ca:a7:5a:bd:d0:dc:e9:66:fb:e6:b6:e3:48:38:
51:2a:cc:7f:ae:50:32:df:b2:b4:a2:4c:61:d2:a0:50:f4:cf:
24:b9:37:56:f2:2a:36:56:93:bb:3b:0d:6b:b5:a9:64:eb:d2:
d4:1a:43:2a:79:0d:61:72:66:d4:ac:da:8e:14:fb:c7:65:8a:
59:e4:d9:9a:b7:1f:75:f0:3b:1b:08:72:13:78:15:d8:3e:0f:
9d:79:ff:29:e0:1e:59:45:19:16:2d:c3:e2:21:5a:2e:e2:cf:
3f:50:ba:6c:d9:c7:0f:8e:a1:a7:8d:c2:6b:fe:04:d4:a9:b2:
0d:76:da:e0:ea:94:0c:23:74:30:96:9c:5e:2a:81:98:39:82:
8e:66:49:97:27:f7:69:45:6a:4e:04:e0:18:68:a8:3e:2f:41:
f9:a7:db:cb:ac:66:22:48:57:a7:07:6b:7c:ee:c5:1c:54:75:
02:4a:7a:bc:10:9a:58:0f:07:1b:17:d7:29:b4:8f:95:ec:69:
4a:f8:02:6a:02:01:6a:5f:a6:01:6c:84:9c:b9:6b:b4:bc:4e:
bc:1b:cc:56:4b:79:44:3b:80:ee:14:5e:bc:c5:de:b4:20:c2:
35:05:3c:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:51 2024 by rpki-client on console-fra.rpki-client.org