Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/82f0f1-2147-49fd-a4d6-b7b574eedc33/1/rISOHTlM25TfhTOQI3V0cSKmRM4.roa
File: rISOHTlM25TfhTOQI3V0cSKmRM4.roa (raw, json)
Hash identifier: CgvwTsJiXzjrefLf7c2VSRczNFOl+ibG2bb/xZUJIzw=
Subject key identifier: AC:84:8E:1D:39:4C:DB:94:DF:85:33:90:23:75:74:71:22:A6:44:CE
Certificate issuer: /CN=3ae145fe3b79b2bf68aadbe007def6d72aef2ac3
Certificate serial: 018570F0AA0AD528004C4178B2CEE913C871
Authority key identifier: 3A:E1:45:FE:3B:79:B2:BF:68:AA:DB:E0:07:DE:F6:D7:2A:EF:2A:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OuFF_jt5sr9oqtvgB9721yrvKsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/82f0f1-2147-49fd-a4d6-b7b574eedc33/1/rISOHTlM25TfhTOQI3V0cSKmRM4.roa
Signing time: Mon 02 Jan 2023 05:24:58 +0000
ROA not before: Mon 02 Jan 2023 05:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31064
IP address blocks: 195.16.84.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:aa:0a:d5:28:00:4c:41:78:b2:ce:e9:13:c8:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ae145fe3b79b2bf68aadbe007def6d72aef2ac3
Validity
Not Before: Jan 2 05:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac848e1d394cdb94df8533902375747122a644ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:4c:a0:38:a7:9b:dd:2f:89:df:f0:57:45:99:
b5:c5:4f:0a:15:09:a1:08:a0:de:f7:17:50:2d:00:
ce:96:6a:81:f6:fb:16:75:01:67:42:d3:62:65:1f:
17:75:26:6f:19:6c:31:71:cd:0b:c2:b4:71:a1:e8:
20:13:36:e4:97:b6:24:68:28:5a:b1:ea:18:fb:10:
1a:29:5f:8d:ef:ba:bb:f3:63:84:2d:6a:e4:0f:1c:
6f:2d:34:f0:05:1a:6f:9d:ee:fc:41:ad:a4:6d:93:
17:8e:25:6a:91:0f:5b:dd:89:51:f3:d6:06:ff:04:
08:37:63:b5:ee:5a:e0:90:2e:52:b2:b3:12:9c:98:
14:9c:50:53:8a:60:9d:b2:98:97:77:a9:d8:e2:7e:
66:72:ea:60:1c:cf:d7:1b:3b:7c:05:fb:4b:c7:1d:
1e:be:35:87:34:b3:f9:7a:44:d9:85:59:ea:eb:0c:
6f:0b:d9:7b:a1:f3:72:eb:81:77:a1:57:c0:66:90:
4c:1d:46:b7:0d:75:0f:13:ea:50:eb:21:da:29:13:
cd:0a:60:c3:1c:b5:ba:c9:f6:ba:1a:a8:de:b1:8a:
b8:a6:d8:c2:e1:42:d0:9d:b6:74:94:6c:43:2e:5e:
86:8f:34:58:b5:35:de:88:fd:dd:cf:a9:08:c6:7c:
0d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:84:8E:1D:39:4C:DB:94:DF:85:33:90:23:75:74:71:22:A6:44:CE
X509v3 Authority Key Identifier:
keyid:3A:E1:45:FE:3B:79:B2:BF:68:AA:DB:E0:07:DE:F6:D7:2A:EF:2A:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OuFF_jt5sr9oqtvgB9721yrvKsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/82f0f1-2147-49fd-a4d6-b7b574eedc33/1/rISOHTlM25TfhTOQI3V0cSKmRM4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/82f0f1-2147-49fd-a4d6-b7b574eedc33/1/OuFF_jt5sr9oqtvgB9721yrvKsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.16.84.0/22
Signature Algorithm: sha256WithRSAEncryption
97:cb:46:a3:24:40:c2:8b:44:2b:8d:36:96:15:ce:2d:25:68:
0d:64:14:b1:f5:29:68:71:77:b9:fe:60:ab:69:1c:f5:6e:38:
4c:56:20:e5:fa:ed:6b:c5:34:e4:8e:50:17:32:0c:3a:ef:6c:
39:4a:8f:ad:24:be:03:67:bf:5f:52:e3:77:76:2a:da:b6:19:
be:6f:35:89:e4:7c:50:52:a4:1a:68:60:94:d0:2c:dd:f3:45:
16:c8:f8:c6:53:56:b1:3e:a5:f3:3c:5f:9c:7b:60:52:a9:f4:
2b:ab:67:9e:d4:70:96:52:59:98:a7:39:c9:37:a1:ba:78:eb:
42:14:34:12:33:ab:0f:7b:22:1b:c1:9b:f3:08:d0:24:49:a4:
7f:ad:1e:ab:54:b9:e2:a7:69:3f:90:34:20:00:f9:57:10:37:
b5:64:99:37:e0:dc:65:e4:ee:ec:1d:b5:cc:c4:84:2d:d9:8f:
c1:90:da:86:f7:92:94:b3:77:43:89:68:e2:fd:5f:a3:ae:a6:
31:43:42:60:cd:7a:68:49:4c:3e:7f:b9:31:5e:ed:c2:32:98:
72:d3:2d:72:3a:94:ca:a6:5a:01:35:7b:a5:84:fd:f0:02:01:
95:4a:64:0c:14:36:04:33:92:3b:4a:51:df:3f:0b:ad:f2:35:
db:b7:f0:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:51:48 2024 by rpki-client on console-fra.rpki-client.org