Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/a3b8cd-56fa-43a1-8dc1-2e5af5b68781/1/9aIrwnDvuBLs9Fhaznayiyx_WSc.roa
File: 9aIrwnDvuBLs9Fhaznayiyx_WSc.roa (raw, json)
Hash identifier: DL6CgANZMtfbKDukHBpbvFKcPdxtym/CBJNXOXrHxfI=
Subject key identifier: F5:A2:2B:C2:70:EF:B8:12:EC:F4:58:5A:CE:76:B2:8B:2C:7F:59:27
Certificate issuer: /CN=c128165f8eee185faaf9aa33875f4ee412b10f8c
Certificate serial: 018572B4050A9D86B5D0E18F63869B2AC607
Authority key identifier: C1:28:16:5F:8E:EE:18:5F:AA:F9:AA:33:87:5F:4E:E4:12:B1:0F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wSgWX47uGF-q-aozh19O5BKxD4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/a3b8cd-56fa-43a1-8dc1-2e5af5b68781/1/9aIrwnDvuBLs9Fhaznayiyx_WSc.roa
Signing time: Mon 02 Jan 2023 13:37:58 +0000
ROA not before: Mon 02 Jan 2023 13:37:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25541
IP address blocks: 195.245.216.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:05:0a:9d:86:b5:d0:e1:8f:63:86:9b:2a:c6:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c128165f8eee185faaf9aa33875f4ee412b10f8c
Validity
Not Before: Jan 2 13:37:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f5a22bc270efb812ecf4585ace76b28b2c7f5927
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:0b:45:6e:2c:6a:4a:77:32:fd:13:d7:35:e5:
29:27:2b:23:67:96:1a:60:ce:30:80:36:b3:6b:01:
01:1d:2c:d8:56:ee:6d:39:2f:bb:3e:d8:32:8d:db:
52:88:e9:8a:aa:36:36:cf:1e:35:8a:5a:19:ba:31:
ba:26:85:24:43:6d:5b:10:bc:bc:61:6e:9a:ba:3e:
a0:cf:47:cb:98:97:d5:fc:5a:4d:f5:d1:1c:ef:1f:
01:12:b2:4a:aa:7c:fc:33:a7:dc:06:6b:b7:55:7b:
fb:f4:66:b4:11:db:6e:3f:5a:a7:0f:f8:af:fa:1b:
7a:11:df:60:72:2d:13:43:79:b8:8a:c9:c8:86:68:
c5:05:23:f5:94:e0:3d:f3:f6:23:79:7d:11:a0:01:
4a:f6:4c:66:5c:0d:f3:ca:f4:0c:34:96:66:87:fb:
00:a5:60:36:04:7d:72:c0:29:ab:0e:09:73:b9:32:
5f:53:87:94:e6:e8:d9:b9:b4:5e:c5:4e:b8:7b:96:
07:b3:2c:e6:d1:6f:fb:03:88:5c:9e:08:7e:01:9e:
f0:b0:34:20:d3:04:44:9b:30:13:80:76:57:f9:87:
ff:66:bd:fe:f6:25:5b:c1:4a:4c:09:90:a1:0e:a7:
a7:13:cb:74:db:a8:3a:99:48:56:a3:8f:3f:08:d1:
0c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:A2:2B:C2:70:EF:B8:12:EC:F4:58:5A:CE:76:B2:8B:2C:7F:59:27
X509v3 Authority Key Identifier:
keyid:C1:28:16:5F:8E:EE:18:5F:AA:F9:AA:33:87:5F:4E:E4:12:B1:0F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wSgWX47uGF-q-aozh19O5BKxD4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/a3b8cd-56fa-43a1-8dc1-2e5af5b68781/1/9aIrwnDvuBLs9Fhaznayiyx_WSc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/a3b8cd-56fa-43a1-8dc1-2e5af5b68781/1/wSgWX47uGF-q-aozh19O5BKxD4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.245.216.0/24
Signature Algorithm: sha256WithRSAEncryption
89:ee:9e:6b:98:50:ea:72:cb:21:ab:c7:ce:20:ae:44:55:af:
3e:60:3c:94:f1:4c:2c:c0:ff:81:9e:58:05:81:d6:88:65:de:
0d:b0:c0:cc:7b:8a:8b:dd:6a:38:26:4f:38:38:07:f8:b1:9a:
5c:81:ad:72:e1:0b:19:d5:28:f9:9d:65:70:3c:63:84:a6:95:
f2:49:2a:90:b4:ae:a7:8c:98:2d:14:48:97:98:b6:33:5d:1b:
c2:23:f7:3c:9f:1e:38:72:94:26:f6:92:ea:f5:90:b3:42:ca:
22:b7:c7:08:41:01:aa:93:79:09:33:4e:81:dd:71:7b:a7:c1:
5a:4a:8c:fd:bf:9e:22:20:9d:7c:a8:50:14:04:24:99:da:35:
b5:9e:c4:7b:7f:23:86:01:a2:8a:dd:c7:3f:56:26:b4:98:89:
78:0f:d0:85:4b:10:0e:9a:e8:7d:6c:cc:8d:12:54:44:66:fc:
42:7f:de:be:74:e7:7f:a1:50:16:87:e8:39:4c:8a:48:cb:3e:
40:96:59:89:cd:57:15:4d:78:3f:52:dd:bc:ea:72:54:89:e7:
1c:eb:9e:77:c3:94:16:d2:32:89:df:48:59:23:67:eb:a9:3c:
25:29:23:da:ae:17:df:fb:01:69:86:0a:e3:23:9c:12:04:21:
b1:dd:b8:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:41 2024 by rpki-client on console-ams.rpki-client.org