Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/2ac980-2259-46fd-a428-7b98c7462a7e/1/oacpp7auptFlb_Zqyb1hHdkCx1U.roa
File: oacpp7auptFlb_Zqyb1hHdkCx1U.roa (raw, json)
Hash identifier: Pfz3oio6luyIfMWbePbhW6i3Jd+qJkzRW4a/4ap1RSs=
Subject key identifier: A1:A7:29:A7:B6:AE:A6:D1:65:6F:F6:6A:C9:BD:61:1D:D9:02:C7:55
Certificate issuer: /CN=84f2ce71c6ffce87560d565ee5ccda31e01b9c15
Certificate serial: 01857267CF16A4CE1E3AC775C7AB69D30689
Authority key identifier: 84:F2:CE:71:C6:FF:CE:87:56:0D:56:5E:E5:CC:DA:31:E0:1B:9C:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hPLOccb_zodWDVZe5czaMeAbnBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/2ac980-2259-46fd-a428-7b98c7462a7e/1/oacpp7auptFlb_Zqyb1hHdkCx1U.roa
Signing time: Mon 02 Jan 2023 12:14:43 +0000
ROA not before: Mon 02 Jan 2023 12:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5588
IP address blocks: 195.47.74.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 28 Apr 2023 12:33:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:67:cf:16:a4:ce:1e:3a:c7:75:c7:ab:69:d3:06:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84f2ce71c6ffce87560d565ee5ccda31e01b9c15
Validity
Not Before: Jan 2 12:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a1a729a7b6aea6d1656ff66ac9bd611dd902c755
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:44:24:19:c7:2f:40:3d:3d:4e:79:2d:83:e4:
ae:ee:12:6e:07:b9:9e:db:5b:a5:00:ba:cd:9f:1c:
b6:09:4a:6a:dd:01:b7:e1:08:50:00:16:b4:27:5c:
7b:63:4d:5c:c1:ec:74:43:2e:39:f9:2d:bb:70:04:
ab:59:7a:3a:02:4a:31:20:64:ce:a8:0c:43:60:cb:
40:f1:ec:f3:fd:6f:f7:fe:98:e9:09:a4:2f:c2:96:
e6:a8:57:1b:78:15:4d:33:69:99:0f:7b:57:49:ed:
f6:d1:23:5a:a7:91:7b:10:1c:9b:43:b2:50:2c:c4:
ef:7c:5e:e0:2b:ba:39:77:3e:e1:9a:53:17:b4:60:
9b:ea:69:ba:79:25:f6:33:e0:0b:b3:8a:6c:79:73:
30:07:c3:d0:55:22:02:9b:f6:5a:4d:e8:8f:73:98:
b0:4f:79:ae:b4:0c:1e:04:8d:4b:18:4d:d8:e5:c8:
78:de:ea:97:8e:15:25:4b:dd:8a:c7:0b:bf:fc:19:
ef:61:2f:7a:ed:c2:ab:d6:db:5d:e7:9c:c1:f5:d5:
5d:5e:b6:9e:7e:32:bb:ee:08:21:82:66:1b:ac:10:
2d:77:7f:5d:23:f7:1b:63:1e:d6:7b:6b:ad:5d:bd:
2d:dc:e1:89:02:b7:80:d4:8a:08:8b:e6:ab:15:c6:
d6:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:A7:29:A7:B6:AE:A6:D1:65:6F:F6:6A:C9:BD:61:1D:D9:02:C7:55
X509v3 Authority Key Identifier:
keyid:84:F2:CE:71:C6:FF:CE:87:56:0D:56:5E:E5:CC:DA:31:E0:1B:9C:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPLOccb_zodWDVZe5czaMeAbnBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/2ac980-2259-46fd-a428-7b98c7462a7e/1/oacpp7auptFlb_Zqyb1hHdkCx1U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/2ac980-2259-46fd-a428-7b98c7462a7e/1/hPLOccb_zodWDVZe5czaMeAbnBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.47.74.0/24
Signature Algorithm: sha256WithRSAEncryption
30:69:8b:38:7d:be:6b:fb:eb:c5:ae:76:6d:4b:df:ac:1e:78:
42:ce:42:46:5a:cd:18:0d:43:4a:a5:7e:29:56:67:d1:e8:df:
ca:fe:3c:a7:15:fd:88:32:eb:05:ab:2d:cc:a9:e6:79:6e:38:
3a:46:1c:25:80:8b:ad:89:f7:3a:59:8a:b9:81:a7:d3:66:15:
3e:96:2d:07:08:bf:c2:05:e2:c7:78:60:db:28:9e:99:41:f4:
de:94:27:2e:32:7a:30:4a:09:81:43:06:3c:66:7c:47:5d:3d:
ec:56:07:e6:ba:0e:47:83:c4:7b:5e:fb:94:50:75:2d:4c:e4:
28:3e:f9:c7:c1:eb:d5:84:d5:a2:25:3e:8e:ba:6c:38:30:87:
03:0a:2b:37:5c:09:f0:ba:6c:dc:c7:ef:6c:29:a4:69:16:de:
78:34:4f:0a:a5:04:a5:6b:d6:b2:93:7f:74:80:33:e7:6a:cd:
60:32:80:cd:12:90:44:c9:f0:bb:2c:95:53:91:54:50:9a:7c:
77:c6:9e:b2:bb:80:63:19:9c:db:df:ec:39:a9:30:53:4c:5b:
05:53:47:c0:f4:4e:27:d2:de:58:19:97:99:04:d4:e7:ad:4b:
98:fd:aa:9e:ac:ee:ba:af:3f:27:8a:d4:86:bc:90:6f:e7:36:
57:3c:ab:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:45 2024 by rpki-client on console-fra.rpki-client.org