Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/2f5fd6-1904-4dca-abb2-8837ca69e396/1/k2I8laBwDx3_hkFVlGuSVbcwHrA.roa
File: k2I8laBwDx3_hkFVlGuSVbcwHrA.roa (raw, json)
Hash identifier: 4ipDF7kSbp27rEsx+a6FoqBW1XUKqGX0LBqXMeqxN2M=
Subject key identifier: 93:62:3C:95:A0:70:0F:1D:FF:86:41:55:94:6B:92:55:B7:30:1E:B0
Certificate issuer: /CN=aebdead4f1d1c8dda96d1cd1789d9dd3e23bf153
Certificate serial: 01856D8ADA0545AD72173174EA95CE24573C
Authority key identifier: AE:BD:EA:D4:F1:D1:C8:DD:A9:6D:1C:D1:78:9D:9D:D3:E2:3B:F1:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rr3q1PHRyN2pbRzReJ2d0-I78VM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/2f5fd6-1904-4dca-abb2-8837ca69e396/1/k2I8laBwDx3_hkFVlGuSVbcwHrA.roa
Signing time: Sun 01 Jan 2023 13:34:54 +0000
ROA not before: Sun 01 Jan 2023 13:34:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15404
IP address blocks: 195.250.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8a:da:05:45:ad:72:17:31:74:ea:95:ce:24:57:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aebdead4f1d1c8dda96d1cd1789d9dd3e23bf153
Validity
Not Before: Jan 1 13:34:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=93623c95a0700f1dff864155946b9255b7301eb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3d:61:de:b3:57:81:42:26:c9:0d:1a:1b:de:
54:17:06:4b:19:ea:0e:be:e2:cc:0c:c1:95:3d:1f:
61:b9:73:3a:d0:af:c9:2a:98:87:04:63:b0:77:14:
8c:92:a6:f6:09:39:94:16:86:8e:75:3f:d6:e9:e5:
bd:51:ec:e8:f4:ed:a0:aa:6a:31:f2:39:b4:3b:a0:
96:03:3c:6b:1a:02:d3:45:72:45:09:af:69:84:89:
63:fa:a8:f7:7e:95:3c:de:2a:ea:6c:61:86:da:75:
14:14:1f:63:55:1f:12:ac:4d:aa:74:5c:19:29:23:
9f:01:61:73:03:18:1b:73:14:81:b0:d0:e7:e2:82:
f4:6d:33:d2:8e:38:36:d9:4b:ae:9c:d1:80:83:0b:
ea:33:aa:df:0a:51:25:d2:03:06:1b:5a:ab:b2:34:
66:06:e6:05:64:ad:60:7e:80:78:0d:7f:e2:17:a1:
29:d2:bf:80:1d:29:63:38:17:51:71:77:e8:78:c7:
87:c9:e9:90:c2:98:42:0a:e7:b2:4a:62:51:da:76:
c7:88:41:a6:a3:ad:e7:68:4c:29:07:1a:98:bb:0d:
64:63:5f:3c:73:55:95:c6:fe:40:78:61:16:5a:8f:
d7:9e:a3:5d:05:0b:bd:6a:b2:1b:50:37:16:d8:76:
b2:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:62:3C:95:A0:70:0F:1D:FF:86:41:55:94:6B:92:55:B7:30:1E:B0
X509v3 Authority Key Identifier:
keyid:AE:BD:EA:D4:F1:D1:C8:DD:A9:6D:1C:D1:78:9D:9D:D3:E2:3B:F1:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rr3q1PHRyN2pbRzReJ2d0-I78VM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/2f5fd6-1904-4dca-abb2-8837ca69e396/1/k2I8laBwDx3_hkFVlGuSVbcwHrA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/2f5fd6-1904-4dca-abb2-8837ca69e396/1/rr3q1PHRyN2pbRzReJ2d0-I78VM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.250.46.0/24
Signature Algorithm: sha256WithRSAEncryption
20:45:af:22:b2:b7:19:93:75:c9:f2:69:46:1e:3c:c9:02:4f:
20:8b:ad:0b:ee:41:e6:e6:97:7f:db:ba:0f:15:85:12:2e:c9:
49:34:09:a0:ff:62:95:6c:6e:c4:b3:f3:c2:18:56:b4:bf:c4:
6f:cc:8d:d7:cb:a5:e2:ad:cc:60:15:f7:aa:64:c3:6a:4d:ef:
7a:50:80:d3:64:62:51:ca:42:0b:27:ce:57:be:f2:c7:80:4a:
d9:98:91:7b:f9:09:ba:1d:f3:d1:06:53:64:da:10:ea:7f:78:
f3:b8:f8:a8:b1:3b:08:81:78:0c:d6:c6:1f:5f:f5:bb:9c:95:
38:3b:9f:84:bd:65:1a:47:c8:24:eb:91:33:90:ac:4f:4d:6e:
12:61:fa:1c:e5:62:c7:99:02:d1:98:59:7b:e7:2e:44:7b:4a:
65:85:3f:02:49:48:ea:81:38:98:bd:82:c9:5c:a2:ec:71:fd:
a9:f6:20:e3:a4:95:89:35:35:10:5c:f3:56:63:9b:72:09:89:
da:3d:96:c3:d0:39:3b:33:49:14:e5:bb:e2:c8:57:7f:27:0a:
d8:aa:21:87:54:ea:5b:16:01:9a:49:50:9f:b5:ed:8a:6a:cf:
28:09:88:83:ec:dc:e4:4d:61:bb:d7:a5:56:e1:6a:ae:b1:70:
4b:f7:e2:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:55 2024 by rpki-client on console-fra.rpki-client.org