Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/48aeaf-9545-4d4b-9cda-9d0743370495/1/_3yFrIsO9OoD_GBdI4-hk_I47yA.roa
File: _3yFrIsO9OoD_GBdI4-hk_I47yA.roa (raw, json)
Hash identifier: t6/70HpVSKbnPRYl7RE8v6Ip0SmHb9chEZGYqGlqjKc=
Subject key identifier: FF:7C:85:AC:8B:0E:F4:EA:03:FC:60:5D:23:8F:A1:93:F2:38:EF:20
Certificate issuer: /CN=f7a8b70aa10069b5515a9cb3c149b885b7a12834
Certificate serial: 018BCE5C4D8A197B8810136749EC602A12E8
Authority key identifier: F7:A8:B7:0A:A1:00:69:B5:51:5A:9C:B3:C1:49:B8:85:B7:A1:28:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/96i3CqEAabVRWpyzwUm4hbehKDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/48aeaf-9545-4d4b-9cda-9d0743370495/1/_3yFrIsO9OoD_GBdI4-hk_I47yA.roa
Signing time: Tue 14 Nov 2023 15:03:57 +0000
ROA not before: Tue 14 Nov 2023 15:03:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25180
IP address blocks: 195.149.121.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ce:5c:4d:8a:19:7b:88:10:13:67:49:ec:60:2a:12:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7a8b70aa10069b5515a9cb3c149b885b7a12834
Validity
Not Before: Nov 14 15:03:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ff7c85ac8b0ef4ea03fc605d238fa193f238ef20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:30:96:fb:99:4f:e6:2f:d7:c0:a4:56:10:cb:
8f:e8:a7:5d:9e:0a:d4:0f:d4:ec:00:93:67:ea:4d:
80:d7:66:18:b9:ec:13:e7:95:08:6f:37:b5:f3:cd:
95:aa:21:d1:ed:c1:2f:11:e4:6d:34:3c:76:4e:d1:
b7:87:fb:38:34:d5:17:e7:0a:9a:ee:79:5e:ed:dd:
74:8f:ca:c2:39:d5:d9:6d:a0:63:c5:54:c6:c0:c9:
92:23:4a:0b:76:6e:24:20:31:c6:96:a7:7c:73:54:
e0:ce:ff:28:57:2f:42:2e:b4:09:75:72:a9:c1:62:
5f:83:0d:1b:68:73:44:92:40:9a:06:3c:99:da:64:
79:5a:27:c5:24:e9:90:72:0f:a0:95:26:a1:56:33:
4b:9c:25:b8:2d:a8:13:07:f6:eb:a7:64:b0:38:fb:
4f:21:aa:2d:90:fa:eb:d0:ac:20:57:2e:0f:af:8e:
9e:77:e5:10:83:20:ac:ea:73:0a:2d:af:35:e7:31:
84:71:90:00:9d:e5:22:e9:f6:db:f8:d9:ec:7e:ae:
50:ab:a1:2c:63:b9:77:6b:25:1c:a6:24:1e:3b:11:
49:64:d9:00:bd:fd:a2:83:a2:fe:98:a0:d4:5b:7d:
15:d4:d8:f9:a8:a8:db:7c:ab:93:b5:16:8a:b6:0d:
cc:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:7C:85:AC:8B:0E:F4:EA:03:FC:60:5D:23:8F:A1:93:F2:38:EF:20
X509v3 Authority Key Identifier:
keyid:F7:A8:B7:0A:A1:00:69:B5:51:5A:9C:B3:C1:49:B8:85:B7:A1:28:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/96i3CqEAabVRWpyzwUm4hbehKDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/48aeaf-9545-4d4b-9cda-9d0743370495/1/_3yFrIsO9OoD_GBdI4-hk_I47yA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/48aeaf-9545-4d4b-9cda-9d0743370495/1/96i3CqEAabVRWpyzwUm4hbehKDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.149.121.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:c0:a8:a5:7f:1c:45:75:90:82:2b:38:ae:7e:b9:6c:26:89:
1a:cc:d7:04:d4:b0:f6:f8:cb:45:25:bc:d3:84:a0:09:bc:5c:
6d:20:cf:ee:79:9c:7e:24:b3:88:27:3c:15:df:e0:11:4c:eb:
5c:8a:ee:c7:26:5f:d8:9e:fb:71:31:ab:7d:0a:60:da:92:64:
7b:78:38:91:ba:7e:eb:5d:70:a9:3a:d7:59:77:77:b8:b0:75:
95:e2:d8:8c:f8:0a:cc:f6:6e:7e:1b:11:ce:6a:d6:e6:a5:4f:
89:25:d5:41:e9:1b:ff:87:e8:f9:a0:5a:d4:db:39:6c:9d:91:
19:0f:df:04:76:22:1c:a9:08:c5:02:34:82:52:fa:a3:73:3e:
75:ef:fd:f9:97:da:ee:3b:d5:08:a2:63:55:96:3c:4e:e9:99:
fd:e2:49:4b:a3:8c:01:34:4b:20:30:79:e6:fa:e8:1e:09:aa:
e3:89:a4:b8:f3:49:13:1b:ea:64:97:92:34:69:23:21:df:e4:
4f:f4:18:d9:52:f4:85:0d:fb:11:f6:4b:db:cb:c1:b6:cc:a1:
7d:ec:3a:99:62:04:bd:0b:31:d6:0c:1f:29:84:e2:33:0d:31:
ee:74:67:02:5e:b1:0e:30:99:ca:e4:24:58:cb:0d:30:bf:27:
3c:14:58:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:56:32 2024 by rpki-client on console-fra.rpki-client.org