Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/s9awRRaUja9z1eP0MyozGoxokQs.roa
File: s9awRRaUja9z1eP0MyozGoxokQs.roa (raw, json)
Hash identifier: pS1ZHjc6g0AiqMYvo2KcGke2VWU71tFFYY9Vwktxy9Q=
Subject key identifier: B3:D6:B0:45:16:94:8D:AF:73:D5:E3:F4:33:2A:33:1A:8C:68:91:0B
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 01856E38D58F99495C2865B5FF1073B7CE76
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/s9awRRaUja9z1eP0MyozGoxokQs.roa
Signing time: Sun 01 Jan 2023 16:44:56 +0000
ROA not before: Sun 01 Jan 2023 16:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213129
IP address blocks: 195.178.158.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:38:d5:8f:99:49:5c:28:65:b5:ff:10:73:b7:ce:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Jan 1 16:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b3d6b04516948daf73d5e3f4332a331a8c68910b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d0:5a:a4:cc:6c:02:b7:91:5c:3c:b9:63:ce:
ad:89:7b:8f:27:cc:a1:d4:d4:b8:21:b2:b0:de:b5:
9b:7a:0a:aa:b5:5f:40:2a:d4:02:65:2e:23:db:01:
2c:e7:ad:de:c9:62:4f:c9:19:0e:ea:a0:9e:5b:ef:
b0:af:38:3e:15:07:e5:ed:24:bc:41:1c:45:8f:94:
ce:6c:81:8b:ee:5e:61:88:c5:64:2e:16:c9:e0:d8:
ef:45:5f:94:31:2d:85:ce:7c:5f:eb:d0:c1:42:b1:
8d:3e:74:37:94:fa:85:58:4e:79:e2:4f:66:48:c0:
c5:d0:8f:c5:0f:d4:e7:93:4a:bc:04:f3:ed:f0:1e:
c1:b1:ca:c8:ef:3f:c3:0f:3f:e8:78:d2:cc:ab:2d:
df:31:4e:84:fa:65:90:37:88:61:1c:db:90:15:2a:
a8:d6:85:5b:eb:f8:2a:ba:0b:f7:e2:76:11:67:67:
96:7b:bc:f6:09:7f:e1:6a:b6:29:64:fc:6f:85:4b:
56:ce:64:51:69:73:8e:41:ba:03:c6:3a:f0:c7:6e:
5a:e9:89:3f:75:ce:6f:f6:b5:a3:1f:cc:18:d8:1d:
70:f4:07:81:74:cb:c8:06:a9:7d:96:35:97:4e:02:
26:ac:75:df:5d:9e:92:4c:bb:95:b1:7f:87:eb:06:
7f:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:D6:B0:45:16:94:8D:AF:73:D5:E3:F4:33:2A:33:1A:8C:68:91:0B
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/s9awRRaUja9z1eP0MyozGoxokQs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.178.158.0/24
Signature Algorithm: sha256WithRSAEncryption
83:bf:3f:58:bc:2a:b2:97:43:54:94:44:7e:2d:3b:e8:c9:45:
fc:13:b2:7d:a3:3e:dd:25:50:f4:b5:1b:ca:a6:b4:b5:67:d6:
d4:35:27:a5:b1:1d:17:02:af:85:9f:95:44:8f:7e:e4:66:8b:
a0:45:49:40:ed:d5:88:90:6b:88:ef:e2:2b:d5:d4:36:a0:d2:
77:a1:b4:d7:b0:35:5e:35:2f:95:19:18:00:d4:59:5e:7d:7d:
7c:1b:41:34:fe:db:bf:8f:a3:23:28:35:8f:a9:4f:af:64:bd:
d1:5d:52:44:5f:1d:b4:bd:a2:8a:ac:76:79:1f:86:38:6c:54:
5a:1c:1c:82:cc:df:68:80:5c:94:ed:9b:63:0b:3a:43:23:bb:
00:b1:45:54:d6:ca:a1:5c:65:1a:c0:20:6e:80:8b:c7:51:0b:
01:2b:2c:8d:e4:e8:8a:e0:13:0a:c4:11:13:27:10:64:73:28:
21:91:d3:cb:16:ed:70:89:f6:42:5e:c6:93:b9:85:64:cf:b7:
52:60:ef:cc:8d:6f:05:48:a6:1b:15:c8:c4:b8:f8:f1:9e:1e:
5e:27:75:3d:e4:21:93:77:ae:69:96:d8:d7:41:da:8a:9c:42:
55:ce:7a:10:52:03:8c:d7:48:4f:05:c6:99:28:eb:b4:f8:85:
ba:13:50:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:43 2024 by rpki-client on console-fra.rpki-client.org