Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/2f5fd6-1904-4dca-abb2-8837ca69e396/1/t0sjjjF3FIg-cmmWKloGJB3OhR8.roa
File: t0sjjjF3FIg-cmmWKloGJB3OhR8.roa (raw, json)
Hash identifier: GfhJv+Vnrn0/UhYeoRiiGb0qBd2oBV00zldYyHC0eYs=
Subject key identifier: B7:4B:23:8E:31:77:14:88:3E:72:69:96:2A:5A:06:24:1D:CE:85:1F
Certificate issuer: /CN=aebdead4f1d1c8dda96d1cd1789d9dd3e23bf153
Certificate serial: 01882F690EA90C6AB88DB7DA8C7E0976E8B2
Authority key identifier: AE:BD:EA:D4:F1:D1:C8:DD:A9:6D:1C:D1:78:9D:9D:D3:E2:3B:F1:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rr3q1PHRyN2pbRzReJ2d0-I78VM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/2f5fd6-1904-4dca-abb2-8837ca69e396/1/t0sjjjF3FIg-cmmWKloGJB3OhR8.roa
Signing time: Thu 18 May 2023 15:09:54 +0000
ROA not before: Thu 18 May 2023 15:09:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209242
IP address blocks: 195.250.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:2f:69:0e:a9:0c:6a:b8:8d:b7:da:8c:7e:09:76:e8:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aebdead4f1d1c8dda96d1cd1789d9dd3e23bf153
Validity
Not Before: May 18 15:09:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b74b238e317714883e7269962a5a06241dce851f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:27:29:e1:59:65:58:23:d1:42:41:c8:87:b0:
a3:5b:03:37:ca:7a:51:e2:36:83:5f:18:df:ea:a2:
60:a2:a1:2b:33:57:28:46:90:38:cf:ec:8d:af:f6:
b8:fb:96:6a:38:17:78:ff:a4:e9:66:85:19:6b:c7:
8e:56:d2:2f:97:57:2e:f7:07:ef:69:6a:13:35:86:
02:b0:d8:bd:a7:b8:63:01:b3:4b:7e:d9:ab:4d:c3:
2e:80:50:71:23:a7:54:6a:6e:52:52:d2:a8:89:d4:
99:18:46:c9:7a:c4:ed:c2:91:c8:5e:22:0c:1f:c5:
0d:1b:35:07:3e:72:88:2d:50:fd:f6:49:0e:3c:24:
d0:66:70:27:c7:df:ac:0a:20:8d:aa:8f:3e:5d:79:
20:eb:21:2f:f4:df:dc:f1:58:cc:20:bb:64:6d:07:
9c:e8:f5:c6:c7:08:f5:ab:52:f4:35:0e:7b:a8:0c:
f1:93:c4:3c:d4:d8:ed:06:46:72:e6:93:43:63:37:
a3:39:f9:b5:87:14:e5:f3:f5:55:1f:de:dc:61:47:
98:50:d0:ee:0f:c5:b2:4d:e1:00:7b:0f:d3:cc:10:
a7:fd:4c:9e:e4:2e:e9:50:23:ed:da:cf:ef:a9:05:
13:23:79:66:8c:e7:70:91:92:93:c8:e7:10:dc:4f:
08:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:4B:23:8E:31:77:14:88:3E:72:69:96:2A:5A:06:24:1D:CE:85:1F
X509v3 Authority Key Identifier:
keyid:AE:BD:EA:D4:F1:D1:C8:DD:A9:6D:1C:D1:78:9D:9D:D3:E2:3B:F1:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rr3q1PHRyN2pbRzReJ2d0-I78VM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/2f5fd6-1904-4dca-abb2-8837ca69e396/1/t0sjjjF3FIg-cmmWKloGJB3OhR8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/2f5fd6-1904-4dca-abb2-8837ca69e396/1/rr3q1PHRyN2pbRzReJ2d0-I78VM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.250.46.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:be:04:45:33:4d:33:a6:ad:e0:19:35:5c:82:50:80:0b:d1:
aa:ce:6b:77:b1:2d:dc:65:37:e6:d0:2a:4e:05:9b:e7:c1:0d:
e5:3a:21:15:60:0d:39:ad:12:8d:63:21:78:51:e8:c1:61:20:
93:52:6a:b8:67:f8:6a:7a:ca:8e:cc:57:36:ec:4a:04:34:57:
a5:1e:88:d7:7a:f4:34:bf:93:af:de:e1:4e:9b:e3:37:9b:5e:
eb:69:93:55:5d:87:74:26:80:8b:53:37:11:0a:11:02:52:98:
7c:66:c8:72:eb:e7:18:47:bd:a0:a6:08:bc:00:65:43:9a:c6:
cf:9d:ea:66:36:7b:eb:2f:49:ed:12:94:d8:66:bd:c3:6c:0d:
dc:a9:15:1d:1b:9a:e0:97:1a:f3:86:b0:cd:66:52:7e:6c:48:
10:2b:bc:57:0a:f0:d0:a0:d8:d6:a1:f3:2c:30:a0:e0:f5:9c:
10:96:5a:80:4e:dc:71:31:86:32:c3:b6:f9:5c:00:be:e9:3b:
50:40:11:37:83:a3:31:b9:0a:95:f5:66:d2:18:37:57:fe:ba:
b6:8a:13:8c:d6:2f:1a:36:04:78:40:87:c3:7b:58:6d:4c:cc:
41:c6:7a:a4:b4:0e:59:61:87:83:17:fe:bd:ac:63:4b:88:e9:
3a:22:4f:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:11 2024 by rpki-client on console-ams.rpki-client.org