Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/068c4a-76c0-4fbe-a9ee-0df73c2f6a9f/1/CEd9FRRODEwnX-mw1d5Po9DCySU.roa
File: CEd9FRRODEwnX-mw1d5Po9DCySU.roa (raw, json)
Hash identifier: VCInNeXQYGNjuAYpdueMFhI5mwH2EW24h7UU8OD0uro=
Subject key identifier: 08:47:7D:15:14:4E:0C:4C:27:5F:E9:B0:D5:DE:4F:A3:D0:C2:C9:25
Certificate issuer: /CN=a15df6cd829d95f63d931d5dcf91cc8ba50f90b0
Certificate serial: 018570028C5693304530B887082105C889EF
Authority key identifier: A1:5D:F6:CD:82:9D:95:F6:3D:93:1D:5D:CF:91:CC:8B:A5:0F:90:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oV32zYKdlfY9kx1dz5HMi6UPkLA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/068c4a-76c0-4fbe-a9ee-0df73c2f6a9f/1/CEd9FRRODEwnX-mw1d5Po9DCySU.roa
Signing time: Mon 02 Jan 2023 01:04:53 +0000
ROA not before: Mon 02 Jan 2023 01:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42648
IP address blocks: 195.248.225.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:8c:56:93:30:45:30:b8:87:08:21:05:c8:89:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a15df6cd829d95f63d931d5dcf91cc8ba50f90b0
Validity
Not Before: Jan 2 01:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=08477d15144e0c4c275fe9b0d5de4fa3d0c2c925
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:cc:8e:ba:c6:0b:b1:0a:fa:17:f1:4d:0d:9b:
e3:19:75:2c:ec:df:b8:ba:af:ac:33:f0:3b:5d:b5:
1d:8b:53:2c:54:0f:83:ef:fe:aa:c7:60:42:ed:b2:
44:e7:b9:da:f8:b2:b0:29:87:0e:1d:31:a8:f3:00:
ae:99:d8:67:cf:24:52:9a:75:b4:14:3e:5c:b6:14:
dd:7e:7c:83:9a:05:0f:69:a8:bb:c3:a2:48:93:a8:
de:56:70:f0:7d:48:e0:33:79:bb:3d:b5:7a:10:5b:
f8:4a:69:ca:b7:f6:b6:38:cc:ae:ce:af:87:aa:17:
b4:58:da:67:3f:c4:ea:a1:c6:73:47:e2:99:ae:5f:
ad:9d:22:c2:17:66:c1:38:41:99:7b:cb:9f:10:2c:
49:ea:59:a5:e1:c9:f6:f7:86:9d:99:75:b8:fb:98:
da:41:e3:63:36:9b:9c:22:3d:1f:99:19:4c:8e:b0:
88:35:9a:5a:bd:1d:05:6b:b8:61:84:1c:61:65:36:
15:8c:2c:c8:13:fd:9c:4b:42:f0:d9:d5:00:d9:05:
b7:b1:d2:ff:30:14:3a:aa:6b:cb:e5:7b:1f:08:3e:
5d:e7:f2:7b:7e:a2:be:97:c6:1a:f5:24:3d:e1:37:
b3:20:3c:81:b1:e0:30:98:e5:ab:7c:d6:47:0a:38:
69:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:47:7D:15:14:4E:0C:4C:27:5F:E9:B0:D5:DE:4F:A3:D0:C2:C9:25
X509v3 Authority Key Identifier:
keyid:A1:5D:F6:CD:82:9D:95:F6:3D:93:1D:5D:CF:91:CC:8B:A5:0F:90:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oV32zYKdlfY9kx1dz5HMi6UPkLA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/068c4a-76c0-4fbe-a9ee-0df73c2f6a9f/1/CEd9FRRODEwnX-mw1d5Po9DCySU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/068c4a-76c0-4fbe-a9ee-0df73c2f6a9f/1/oV32zYKdlfY9kx1dz5HMi6UPkLA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.248.225.0/24
Signature Algorithm: sha256WithRSAEncryption
51:31:3c:5d:18:a4:73:1c:75:67:ee:4a:a7:bd:1a:b8:cf:03:
3a:59:23:7d:46:02:ad:50:58:e1:fc:66:86:d7:e4:d9:6e:43:
4a:5d:28:8b:af:45:37:9b:28:d8:21:2e:92:21:3c:3b:d8:be:
a8:42:2e:71:d9:84:ad:78:db:3b:3a:05:86:fe:a0:dc:65:dd:
c5:93:c1:55:1e:57:e6:18:bf:92:50:f0:bf:88:c4:e1:f7:05:
63:e1:1c:6c:80:98:6e:91:82:79:65:06:a3:4d:95:fd:54:03:
4b:af:99:14:1e:77:6e:25:a9:ce:4d:84:8a:6a:16:81:84:f2:
b3:6b:38:c9:c8:46:0f:08:67:16:c0:fe:0b:3a:67:42:d6:10:
41:50:0f:0c:af:74:75:41:cb:dc:db:47:92:0a:e4:67:01:99:
b6:85:6a:a7:5a:90:4a:93:ab:be:76:fc:d5:4a:01:7e:e6:c5:
b1:c8:ba:a2:c2:34:4f:e7:ea:af:40:ff:1c:41:c9:72:9e:a3:
3b:06:cd:fe:2d:b3:3b:aa:55:75:af:76:4d:fd:16:15:24:17:
63:5d:95:ed:75:07:94:1c:c6:d5:5e:6c:a8:1e:0c:6d:1e:09:
06:aa:f2:99:9b:65:c0:f6:d6:2b:ff:21:c6:cf:d6:05:26:d7:
32:70:56:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:16:14 2024 by rpki-client on console-ams.rpki-client.org