Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/i1dlzyUuI4psLtTTdREYud3jvDg.roa
File: i1dlzyUuI4psLtTTdREYud3jvDg.roa (raw, json)
Hash identifier: SDZSE9Kyo6f6dVwbKrJGQTN7PPqD0DVu0PDjQe/iqpY=
Subject key identifier: 8B:57:65:CF:25:2E:23:8A:6C:2E:D4:D3:75:11:18:B9:DD:E3:BC:38
Certificate issuer: /CN=ff698eeb2e49fcb5f9c65a99857af29ce06641d9
Certificate serial: 018572B43C62D14D84D38B3D55C204B6538E
Authority key identifier: FF:69:8E:EB:2E:49:FC:B5:F9:C6:5A:99:85:7A:F2:9C:E0:66:41:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2mO6y5J_LX5xlqZhXrynOBmQdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/i1dlzyUuI4psLtTTdREYud3jvDg.roa
Signing time: Mon 02 Jan 2023 13:38:12 +0000
ROA not before: Mon 02 Jan 2023 13:38:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62220
IP address blocks: 195.244.158.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:3c:62:d1:4d:84:d3:8b:3d:55:c2:04:b6:53:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff698eeb2e49fcb5f9c65a99857af29ce06641d9
Validity
Not Before: Jan 2 13:38:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b5765cf252e238a6c2ed4d3751118b9dde3bc38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ac:a3:d8:a5:64:4a:13:8a:ad:c8:4c:f9:e7:
ec:67:b4:a9:0d:b1:ce:77:d5:8d:2a:ff:92:4c:43:
7f:77:f8:36:9f:23:20:a2:f6:68:af:2d:f3:d7:68:
7c:5f:6a:b2:9e:c2:02:70:5d:cd:5a:3e:e5:ed:3a:
ef:55:40:02:4a:8d:10:87:bf:10:ea:67:78:67:f0:
59:46:1c:a5:e7:98:50:3a:2c:2a:b2:3b:69:e8:9c:
ce:6f:5b:c6:09:8b:54:57:56:1e:ee:9a:5b:02:ae:
66:21:be:59:29:d9:7e:fa:f8:e4:d6:6c:3a:79:46:
4d:ba:42:91:0b:b2:d8:94:4e:7a:c4:1f:49:9b:45:
1b:d0:9b:93:b7:d9:b1:b6:90:da:d5:22:5d:92:34:
94:1e:82:8d:ad:59:8b:34:65:e5:f1:76:89:e9:56:
9b:d2:25:57:b9:5b:75:d3:95:c7:e1:68:3e:a8:91:
9f:61:73:7f:e7:b2:d1:cb:97:4e:6c:ee:06:2d:31:
55:19:86:f5:5d:bd:48:1b:bf:b8:ce:63:05:87:80:
09:ea:1c:20:3b:60:35:c8:a1:04:eb:8e:27:57:a2:
c7:e8:8d:29:5e:dc:69:79:40:9e:83:5d:03:80:7f:
bf:a1:90:4b:60:f4:8c:17:fb:8d:15:31:69:41:cf:
24:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:57:65:CF:25:2E:23:8A:6C:2E:D4:D3:75:11:18:B9:DD:E3:BC:38
X509v3 Authority Key Identifier:
keyid:FF:69:8E:EB:2E:49:FC:B5:F9:C6:5A:99:85:7A:F2:9C:E0:66:41:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2mO6y5J_LX5xlqZhXrynOBmQdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/i1dlzyUuI4psLtTTdREYud3jvDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/_2mO6y5J_LX5xlqZhXrynOBmQdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.244.158.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:cc:dc:68:e4:ee:8f:1a:e9:39:4f:e9:81:31:f2:bb:a8:76:
94:84:b1:94:6b:04:56:bf:8c:f2:af:77:e1:30:11:6d:a8:ec:
2c:43:0f:eb:8c:fc:72:2e:4c:c2:da:89:7a:a5:dc:c9:9d:a9:
fe:7a:ef:69:df:78:70:8e:19:ad:bc:1d:78:aa:df:bf:8a:c7:
86:d9:ce:5c:ec:c2:a8:8b:96:fb:9b:90:d2:22:a3:3c:bd:44:
c3:50:82:4d:6e:04:0e:c3:86:72:cd:6a:37:9e:44:8b:18:21:
4d:d2:50:e5:e6:1a:65:e2:aa:0d:ea:51:e8:8c:16:e9:35:e7:
bb:28:a2:56:7b:2b:82:20:31:00:e4:15:0c:0a:8b:05:64:e3:
3e:a2:98:29:d2:64:6d:c2:8d:36:ae:47:9b:82:2b:2d:0c:93:
0c:1a:54:9f:6b:9d:fb:18:b0:af:e9:59:a5:12:b4:79:ca:19:
25:fb:e3:69:b3:00:e3:41:c1:ff:06:e8:fa:a2:c4:ca:b7:a6:
59:50:96:62:59:ba:36:cd:0c:c2:1a:83:78:15:f6:34:63:e1:
f8:54:a1:5f:82:02:99:b2:aa:62:bc:06:1a:8e:9c:1b:b7:7c:
7d:a9:e8:05:3a:bc:b8:bf:81:e6:cc:18:03:cf:ad:93:db:12:
13:bc:27:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:07 2024 by rpki-client on console-fra.rpki-client.org