Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/xD4anlcV78MhfHlw6xIQuPIaXt8.roa
File: xD4anlcV78MhfHlw6xIQuPIaXt8.roa (raw, json)
Hash identifier: pvHCXsBeb9mgdRQ9xFUxE/rZIl7IElP2h3wG9NVO7Nc=
Subject key identifier: C4:3E:1A:9E:57:15:EF:C3:21:7C:79:70:EB:12:10:B8:F2:1A:5E:DF
Certificate issuer: /CN=c74da21da8038a820542b3afafbeaaaa666b7b27
Certificate serial: 01856F548334D1ACAA9C90B3DF9AC1071EC0
Authority key identifier: C7:4D:A2:1D:A8:03:8A:82:05:42:B3:AF:AF:BE:AA:AA:66:6B:7B:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/xD4anlcV78MhfHlw6xIQuPIaXt8.roa
Signing time: Sun 01 Jan 2023 21:54:47 +0000
ROA not before: Sun 01 Jan 2023 21:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6799
IP address blocks: 195.43.132.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:83:34:d1:ac:aa:9c:90:b3:df:9a:c1:07:1e:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74da21da8038a820542b3afafbeaaaa666b7b27
Validity
Not Before: Jan 1 21:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c43e1a9e5715efc3217c7970eb1210b8f21a5edf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:68:ec:94:42:fd:76:25:87:bf:52:9d:1f:6e:
0e:73:c4:c8:ef:da:10:30:46:75:ef:4e:7f:00:c7:
ea:8f:cd:74:9b:d8:a9:d8:60:1c:9f:ec:36:1f:9b:
d1:26:4c:e7:41:8d:3b:0f:11:8f:e4:8e:09:4d:ba:
39:92:ca:55:da:3f:7a:a9:29:7b:85:3f:65:d5:83:
ad:0d:a5:ca:00:6c:b6:da:97:db:a2:c6:f5:df:3a:
36:99:4e:c2:18:1e:cf:31:9f:4c:1f:56:32:91:0d:
a0:d4:9d:a3:f2:6e:17:b6:e9:85:0c:2e:cf:48:d3:
3a:d3:8a:33:e0:7c:75:d0:4b:9b:b5:59:d5:53:e4:
62:67:ff:7e:fb:42:09:97:eb:d4:2c:59:d2:0c:b9:
02:dc:00:92:77:9b:94:cd:3e:d3:00:0e:c2:65:69:
b1:c5:32:de:d8:99:47:5d:ad:3d:cd:61:f9:e8:14:
2d:92:7d:ca:0f:be:68:6b:9b:a9:78:1b:52:86:d5:
a3:ce:3b:e6:06:ec:bf:3a:83:c0:67:86:e8:9e:96:
98:2b:61:5d:80:1e:bd:71:3c:ec:d9:31:7b:cf:8c:
87:6d:9e:ec:91:1c:82:c7:23:25:9c:ef:0c:ef:c2:
d7:0f:82:a3:6e:41:19:07:18:2b:e7:81:7b:f1:9b:
4c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:3E:1A:9E:57:15:EF:C3:21:7C:79:70:EB:12:10:B8:F2:1A:5E:DF
X509v3 Authority Key Identifier:
keyid:C7:4D:A2:1D:A8:03:8A:82:05:42:B3:AF:AF:BE:AA:AA:66:6B:7B:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/xD4anlcV78MhfHlw6xIQuPIaXt8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.43.132.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:7c:0d:cd:c5:5b:07:e1:ad:9e:44:d0:70:2c:db:bb:7d:bc:
bd:7c:36:4f:b3:2a:71:b1:a6:3e:06:61:02:d0:18:d4:82:9b:
a4:99:49:08:85:bf:53:89:ef:bd:41:72:97:4a:65:34:14:48:
27:76:fc:0b:96:4a:1d:e6:75:a9:93:0a:69:44:ae:17:48:ee:
cb:56:04:a6:85:8c:cd:fb:ef:38:87:1c:e4:4b:1e:f2:e2:16:
f1:65:2c:a3:b6:4d:45:05:1a:a6:51:7e:69:e1:60:4b:24:8f:
47:34:c3:10:18:e1:37:3f:38:22:68:a7:dd:1f:09:57:04:a6:
7a:60:f2:7b:f3:8a:d2:af:d2:0a:4e:a4:96:04:3f:7e:53:89:
96:84:62:5f:13:1d:f5:0e:56:c2:f4:c7:8d:d6:50:f7:c3:a0:
fe:6e:ae:e2:81:7d:6d:66:b5:ce:c4:3d:d5:84:02:54:59:c5:
ae:6e:9a:95:c1:2d:36:70:9a:cc:0a:47:b9:fe:a4:4b:00:79:
e9:8d:83:ae:70:f6:97:62:7d:ec:9d:26:43:ec:d5:b5:15:11:
d8:27:2c:a6:34:27:ee:6e:2e:02:7a:bc:eb:5c:b1:fc:46:1a:
65:6f:27:c3:be:f8:ee:25:6a:62:60:34:03:be:b5:4c:c1:92:
26:f0:8a:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:02 2024 by rpki-client on console-fra.rpki-client.org