Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/6a2c5c-9e1b-4561-a4e9-e9e1d91a9816/1/3SXlXsEHnB8tFmw185nVPuA86cc.roa
File: 3SXlXsEHnB8tFmw185nVPuA86cc.roa (raw, json)
Hash identifier: 9bjyUM9DUXCGQ1sqKWHUtN/EmhcIeSgn2QjEUXJN7tU=
Subject key identifier: DD:25:E5:5E:C1:07:9C:1F:2D:16:6C:35:F3:99:D5:3E:E0:3C:E9:C7
Certificate issuer: /CN=ab6c80080637facb16f519c5d97ec27b3d85097d
Certificate serial: 01884DBB5D7ECDCE889250E40DBAB2612CAE
Authority key identifier: AB:6C:80:08:06:37:FA:CB:16:F5:19:C5:D9:7E:C2:7B:3D:85:09:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q2yACAY3-ssW9RnF2X7Cez2FCX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/6a2c5c-9e1b-4561-a4e9-e9e1d91a9816/1/3SXlXsEHnB8tFmw185nVPuA86cc.roa
Signing time: Wed 24 May 2023 12:28:24 +0000
ROA not before: Wed 24 May 2023 12:28:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28925
IP address blocks: 195.222.104.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:4d:bb:5d:7e:cd:ce:88:92:50:e4:0d:ba:b2:61:2c:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab6c80080637facb16f519c5d97ec27b3d85097d
Validity
Not Before: May 24 12:28:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dd25e55ec1079c1f2d166c35f399d53ee03ce9c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:dd:26:12:f3:69:a7:21:10:da:16:b8:dd:4d:
cc:84:7d:49:a3:2e:3d:22:91:59:13:4c:15:cb:28:
3b:57:11:38:9a:68:ef:ee:ff:6e:bb:fc:50:1b:28:
92:f7:d3:62:c8:e2:de:40:28:d4:04:8a:f3:74:77:
4f:1f:f9:a6:6e:d7:f5:98:13:41:80:8f:a3:5b:79:
4a:25:0c:6e:3a:b2:de:7a:4b:0a:92:9a:66:92:50:
9b:34:b2:11:a0:66:51:70:58:76:6d:68:51:84:b8:
df:e0:91:c6:44:9c:c4:11:fe:cf:41:aa:93:1f:9e:
55:67:8e:0e:d0:77:36:6a:1f:f5:92:0a:a9:4a:1c:
b8:7b:3c:22:4d:5f:92:02:28:b9:b4:8d:e2:97:c4:
2f:d6:78:7b:e1:d5:07:d3:83:94:ed:6c:14:92:eb:
9d:dc:48:d6:9e:0f:ea:89:db:9c:fc:a6:b3:6f:51:
c3:90:1b:b2:62:75:6c:4c:4f:37:6d:b9:6d:f1:d8:
87:eb:ee:ac:54:e9:b4:3c:f3:ac:9d:83:f8:0f:2c:
47:33:85:39:93:55:c2:d3:dc:c3:5d:0f:6d:f6:2f:
21:5f:c1:c7:49:ac:0d:3a:93:3a:dd:80:2d:a9:a5:
18:6c:96:5b:aa:55:bb:4b:2d:8e:06:7d:91:a4:8b:
c0:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:25:E5:5E:C1:07:9C:1F:2D:16:6C:35:F3:99:D5:3E:E0:3C:E9:C7
X509v3 Authority Key Identifier:
keyid:AB:6C:80:08:06:37:FA:CB:16:F5:19:C5:D9:7E:C2:7B:3D:85:09:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q2yACAY3-ssW9RnF2X7Cez2FCX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/6a2c5c-9e1b-4561-a4e9-e9e1d91a9816/1/3SXlXsEHnB8tFmw185nVPuA86cc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/6a2c5c-9e1b-4561-a4e9-e9e1d91a9816/1/q2yACAY3-ssW9RnF2X7Cez2FCX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.222.104.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:ef:d0:5f:bb:5b:43:be:ce:52:16:0a:17:a2:97:13:08:f4:
fb:1c:c8:df:0d:ea:2c:91:03:ba:41:da:e3:c6:1f:5e:7c:33:
38:1a:cf:86:26:f7:76:87:dd:a5:d4:5d:a9:7a:a6:97:fd:85:
0b:8e:d1:52:51:75:57:5e:53:5a:68:50:15:93:1d:e1:19:f3:
4f:fe:4c:a0:78:3a:b9:03:d1:14:20:7b:d7:66:40:cd:b2:2d:
50:aa:4f:07:e2:81:82:48:f9:bc:11:42:99:d5:02:3e:37:7c:
9a:31:d6:72:e4:f8:10:09:03:1c:53:56:90:7b:b7:84:23:45:
c6:36:ae:d4:7e:df:41:b7:6b:05:8b:c0:c4:b9:cb:99:76:64:
f9:4f:f6:0b:65:26:af:04:16:13:bf:8a:8a:e6:6d:ec:4d:73:
a8:ab:e7:7b:26:3d:f4:eb:79:c1:eb:82:c1:90:18:4b:35:f2:
9e:aa:0d:54:9c:87:be:cc:27:c1:32:7c:7e:bb:46:28:68:d7:
d8:95:8a:be:3d:03:95:41:1d:24:4f:88:34:0e:a2:a0:c3:27:
e3:06:8e:c3:59:3d:69:6f:9b:c7:e1:4b:9e:ab:39:72:ce:82:
33:62:61:e6:fa:24:c8:29:70:63:d0:00:17:fc:61:95:92:06:
78:ff:cc:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:03 2024 by rpki-client on console-ams.rpki-client.org