Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/3deae4-720d-4eae-b3d9-b21dd3f68aba/1/WgHfLMA99Iplg4_HP3xN0xz74Qo.roa
File: WgHfLMA99Iplg4_HP3xN0xz74Qo.roa (raw, json)
Hash identifier: BeBRVq2ZiGdDDgwYrj6hI6pQK+Gm40tyO7YhSp4Qc3A=
Subject key identifier: 5A:01:DF:2C:C0:3D:F4:8A:65:83:8F:C7:3F:7C:4D:D3:1C:FB:E1:0A
Certificate issuer: /CN=6c4e7eafe2ffaa90cae9476803034db6da7c1219
Certificate serial: 01856C53C4D9A0EB25356742EC3596A6E536
Authority key identifier: 6C:4E:7E:AF:E2:FF:AA:90:CA:E9:47:68:03:03:4D:B6:DA:7C:12:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bE5-r-L_qpDK6UdoAwNNttp8Ehk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/3deae4-720d-4eae-b3d9-b21dd3f68aba/1/WgHfLMA99Iplg4_HP3xN0xz74Qo.roa
Signing time: Sun 01 Jan 2023 07:55:07 +0000
ROA not before: Sun 01 Jan 2023 07:55:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8412
IP address blocks: 195.20.132.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:c4:d9:a0:eb:25:35:67:42:ec:35:96:a6:e5:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c4e7eafe2ffaa90cae9476803034db6da7c1219
Validity
Not Before: Jan 1 07:55:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a01df2cc03df48a65838fc73f7c4dd31cfbe10a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:72:9e:56:5d:be:2c:4d:a6:a5:58:ae:93:68:
20:5c:dd:d7:74:65:ab:d0:a9:4f:84:4d:dc:ae:74:
ff:ca:5a:4d:39:f6:82:6e:5a:74:5e:a5:c5:13:91:
bc:f1:81:81:4c:79:47:d4:9a:c8:87:8b:21:a6:b9:
cf:54:98:b5:64:99:10:3b:37:5b:2d:ef:2d:e7:24:
2a:38:b5:5c:9b:b7:bf:3b:98:0d:e9:b0:e0:24:df:
e9:63:d5:62:46:f1:c1:27:b9:39:0b:e9:82:aa:6f:
86:b3:46:be:9e:14:5c:17:8d:48:a9:42:2a:6e:88:
ab:27:22:a1:46:e9:e7:96:f3:14:9f:89:70:7a:23:
9e:48:91:91:03:74:0f:c9:15:83:40:5a:f7:24:ec:
13:f6:3b:6e:a8:9d:ea:5e:b6:d2:b4:b2:c5:30:c4:
53:91:f5:f7:92:97:30:84:0d:79:c8:5d:3b:78:b0:
26:de:97:21:1a:f7:04:38:1d:19:cc:33:8f:11:37:
b3:95:45:1c:b8:37:72:bf:e9:cc:fa:33:05:f4:db:
80:75:66:19:60:e6:23:62:ca:1e:73:10:de:a0:b6:
51:1a:f3:3f:6d:c7:4a:2f:8c:c0:4b:5f:ca:d9:b1:
d2:b8:bd:24:20:19:a2:4e:4c:eb:6c:00:20:16:fa:
4e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:01:DF:2C:C0:3D:F4:8A:65:83:8F:C7:3F:7C:4D:D3:1C:FB:E1:0A
X509v3 Authority Key Identifier:
keyid:6C:4E:7E:AF:E2:FF:AA:90:CA:E9:47:68:03:03:4D:B6:DA:7C:12:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bE5-r-L_qpDK6UdoAwNNttp8Ehk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/3deae4-720d-4eae-b3d9-b21dd3f68aba/1/WgHfLMA99Iplg4_HP3xN0xz74Qo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/3deae4-720d-4eae-b3d9-b21dd3f68aba/1/bE5-r-L_qpDK6UdoAwNNttp8Ehk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.20.132.0/24
Signature Algorithm: sha256WithRSAEncryption
56:8d:46:6e:d4:79:63:ef:bc:3f:33:0c:dd:09:bf:44:f2:55:
14:e6:9b:c7:33:17:eb:5c:b4:a9:b0:3f:8c:23:dc:ba:88:8b:
d9:d3:65:e7:9d:47:8d:d9:e8:9d:2e:3e:6f:a9:3c:1d:a1:3b:
85:56:7d:a3:9a:f3:cd:c6:ff:32:ae:6e:23:8d:41:5b:23:6f:
97:7d:e0:c0:c7:86:b7:de:33:93:12:de:64:45:2d:8d:45:4d:
56:8b:4f:79:b4:73:bb:3e:94:40:ac:17:7a:96:c4:ab:91:79:
f6:63:99:55:31:8f:c5:f6:d4:ae:c9:16:02:79:80:9d:0f:95:
8b:30:48:9f:8b:46:64:1e:9b:63:6f:c4:81:d8:1e:b0:1e:02:
18:4e:fe:bd:3d:48:eb:10:8a:d9:41:5d:7c:1c:bc:84:42:a5:
4b:95:99:d4:dd:ad:d1:66:13:7c:7f:c1:c2:e3:3b:2c:ba:7a:
5d:64:bf:fd:a7:68:ee:73:c3:47:db:f4:85:70:ea:3e:f2:88:
11:45:17:60:d1:67:71:eb:bc:da:f8:70:b2:99:77:7e:59:92:
48:32:ae:75:3f:65:4c:8e:ac:97:c5:53:41:b6:7e:78:a6:2c:
d8:04:f2:62:a3:49:e0:38:88:50:ec:27:72:6f:d2:fc:5e:cc:
22:1e:f4:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:38 2024 by rpki-client on console-fra.rpki-client.org