Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/a49102-0612-47a0-8117-cb1125007dfb/1/cSydjnPho3a7mbaPaZOSzE1ksY8.roa
File: cSydjnPho3a7mbaPaZOSzE1ksY8.roa (raw, json)
Hash identifier: mCFFqmzrWU5IzPFgSNpm6sIfxXLBUJV/YaaFToL9ckA=
Subject key identifier: 71:2C:9D:8E:73:E1:A3:76:BB:99:B6:8F:69:93:92:CC:4D:64:B1:8F
Certificate issuer: /CN=94846741139263388d984db1e97e031669c6486e
Certificate serial: 018A4033516368228235003F52B5D8BC8147
Authority key identifier: 94:84:67:41:13:92:63:38:8D:98:4D:B1:E9:7E:03:16:69:C6:48:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lIRnQROSYziNmE2x6X4DFmnGSG4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/a49102-0612-47a0-8117-cb1125007dfb/1/cSydjnPho3a7mbaPaZOSzE1ksY8.roa
Signing time: Tue 29 Aug 2023 07:30:19 +0000
ROA not before: Tue 29 Aug 2023 07:30:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211056
IP address blocks: 195.190.139.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:40:33:51:63:68:22:82:35:00:3f:52:b5:d8:bc:81:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94846741139263388d984db1e97e031669c6486e
Validity
Not Before: Aug 29 07:30:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=712c9d8e73e1a376bb99b68f699392cc4d64b18f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e1:c0:9b:88:4e:b4:78:aa:e4:e5:ce:04:13:
26:15:83:c5:2c:d8:e0:75:4b:b6:90:af:a1:04:73:
2f:4a:59:b1:3f:0b:5d:99:f2:9d:4a:a2:03:bb:dd:
63:eb:a9:35:df:59:c8:2f:be:b4:e2:17:d1:7b:44:
04:2a:71:f1:b0:66:72:1b:34:a0:64:55:67:6c:53:
3b:21:a5:84:b1:b2:76:8d:a1:e6:11:bc:2f:e6:3c:
d0:5f:a3:90:53:0b:5d:32:2f:5f:a9:cf:c2:a7:a9:
59:04:6c:19:4e:3d:b1:51:c0:aa:f5:33:0d:00:70:
79:d0:16:f7:b2:71:d1:e7:23:fa:83:84:ec:b5:44:
59:b2:7f:15:1c:61:dc:a5:5c:0c:01:de:13:76:95:
76:60:ba:ad:71:8a:56:a7:2e:a7:54:b0:2f:96:e2:
3e:92:d4:c0:de:f7:49:06:b3:47:2b:03:ad:ec:82:
1c:16:bf:80:76:50:9d:59:67:e0:b0:64:ea:90:ed:
1f:1a:31:fc:1b:9f:66:8f:4a:b4:50:db:87:42:74:
59:1f:d5:57:3b:11:65:33:e8:94:7f:e2:5a:d2:ed:
75:5d:f0:e8:5d:7f:20:69:42:b4:c6:be:9c:28:7c:
f0:56:32:95:e2:0e:3a:41:67:46:ea:e9:ab:f7:3f:
55:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:2C:9D:8E:73:E1:A3:76:BB:99:B6:8F:69:93:92:CC:4D:64:B1:8F
X509v3 Authority Key Identifier:
keyid:94:84:67:41:13:92:63:38:8D:98:4D:B1:E9:7E:03:16:69:C6:48:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lIRnQROSYziNmE2x6X4DFmnGSG4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/a49102-0612-47a0-8117-cb1125007dfb/1/cSydjnPho3a7mbaPaZOSzE1ksY8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/a49102-0612-47a0-8117-cb1125007dfb/1/lIRnQROSYziNmE2x6X4DFmnGSG4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.190.139.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:d7:c0:04:bc:31:7a:37:29:5f:75:20:28:4c:6b:3b:5d:2a:
56:00:f9:76:ae:81:cc:f3:48:ed:3f:e3:55:73:be:53:8d:cf:
6a:85:42:c8:4c:d0:cf:3d:61:1f:82:1e:ae:14:e3:c2:db:cf:
cb:ed:f8:89:8e:32:fc:49:8a:96:d1:f4:44:c9:3c:92:b5:11:
cb:e1:7d:78:3e:89:c3:ee:14:d0:bd:3c:d7:cd:34:1d:20:63:
c5:69:1e:13:90:6a:71:c8:7f:98:a2:bf:ce:c2:b1:f4:80:a2:
e4:50:a7:7b:0e:22:42:c4:4e:24:74:69:0e:3e:26:e6:45:a5:
58:7b:11:66:ba:7f:41:fb:b1:dc:2a:1c:52:63:7c:a6:70:b8:
70:0a:3b:cf:52:75:88:e5:fa:a7:7f:77:87:d0:7f:0d:32:bf:
36:32:68:2c:af:86:cd:a2:7e:b9:dc:9f:2e:42:b0:e4:96:7c:
a6:8b:4a:f5:16:f3:15:bb:ac:ed:e9:86:fd:2e:2c:8d:af:73:
17:df:ae:a5:40:46:2e:4f:51:14:17:06:a6:e0:ae:80:c2:84:
f9:78:4a:e4:1a:ae:79:7f:7c:63:9e:16:cd:8b:30:42:cf:ca:
d0:ac:57:f9:af:b7:75:ba:7d:50:a6:b5:26:93:61:bc:4e:96:
6f:d5:26:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 1 11:15:41 2023 by rpki-client on console-fra.rpki-client.org