Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/IL49oxV2cM4Hl8N2fVzpn_SebTM.roa
File: IL49oxV2cM4Hl8N2fVzpn_SebTM.roa (raw, json)
Hash identifier: JBOXebvPmUHMCC63PI9/ayxpJtcgW+9xtFhcsamqhq4=
Subject key identifier: 20:BE:3D:A3:15:76:70:CE:07:97:C3:76:7D:5C:E9:9F:F4:9E:6D:33
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 01856F9DCA1562E2F1FEEFCF2EEEB23143A5
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/IL49oxV2cM4Hl8N2fVzpn_SebTM.roa
Signing time: Sun 01 Jan 2023 23:14:49 +0000
ROA not before: Sun 01 Jan 2023 23:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197654
IP address blocks: 195.33.198.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:ca:15:62:e2:f1:fe:ef:cf:2e:ee:b2:31:43:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 23:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=20be3da3157670ce0797c3767d5ce99ff49e6d33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:dc:fd:22:2b:08:e0:3e:8d:0d:e4:49:6a:b8:
b5:c6:38:65:7f:ed:d3:3f:71:2d:e9:38:b5:13:fe:
59:53:99:45:8c:26:07:1e:6e:6f:a3:96:10:bc:ce:
56:ed:c2:3f:39:77:56:89:a1:e4:de:33:79:49:2d:
5a:75:08:00:27:49:f4:eb:70:38:cf:89:20:e4:59:
eb:b6:f8:cf:49:8e:c1:e0:bd:35:9c:fc:92:ec:47:
9c:2a:bd:45:32:4a:12:a3:73:d1:e3:4d:16:03:b1:
d7:3a:eb:b7:5b:03:41:49:c6:81:63:2c:bf:5f:cf:
4b:7c:ff:f4:9c:8e:a9:2c:70:75:51:a2:a0:2e:88:
57:17:22:8c:ef:7a:cc:08:57:ac:23:ea:83:92:4b:
50:5d:e7:1d:17:01:11:0a:b1:68:06:61:4a:86:cd:
44:02:22:e9:11:fc:7a:3c:43:62:0e:94:b6:45:70:
de:fb:49:41:e9:28:62:85:1b:e6:00:73:75:24:b3:
cc:3f:6b:83:4a:63:f2:00:42:64:ce:6d:d2:1f:1e:
37:5c:4a:9a:2e:83:7c:bb:bf:93:ab:f6:36:6a:6d:
2e:f4:3a:29:1f:6d:1c:57:cf:04:99:49:d2:0d:6e:
c1:49:46:dd:92:e8:f4:66:4c:b5:55:5d:0f:6f:64:
92:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:BE:3D:A3:15:76:70:CE:07:97:C3:76:7D:5C:E9:9F:F4:9E:6D:33
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/IL49oxV2cM4Hl8N2fVzpn_SebTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.33.198.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:a2:1d:d7:62:43:52:37:9b:98:2a:77:69:87:e1:a5:d3:74:
d9:cc:1e:e5:ed:8f:0f:33:51:0d:fb:0c:6c:7e:74:0b:92:8f:
fd:cf:fd:f2:1c:b2:05:d4:7c:64:02:e6:5a:39:1b:ba:77:e9:
99:48:70:46:25:43:9e:89:a1:6a:05:79:d9:cd:cc:4e:91:78:
3c:5f:6f:4e:5d:78:27:17:ca:28:a4:de:ef:63:d9:e8:59:13:
94:d1:ea:92:ca:cf:4e:01:93:fc:97:9d:e6:76:60:37:1b:c1:
98:4a:6d:02:12:da:51:af:b7:b7:1c:db:33:61:22:f8:cf:3a:
60:2a:65:6f:b0:98:0c:b2:e8:46:26:69:36:3b:79:c6:41:8f:
56:b6:40:91:f4:76:c8:76:3b:2d:b9:6a:2f:22:b5:2f:ba:c7:
33:28:7c:45:9f:52:7b:9a:0a:e9:d6:4f:2f:b8:e9:15:85:e5:
48:91:95:7c:56:5c:36:d6:c6:0a:ff:e2:6c:ca:52:50:3e:3b:
0a:06:b2:9a:55:7b:f5:d4:f4:31:70:89:ed:f3:6d:01:1f:c4:
25:97:3b:bc:8c:46:40:71:db:4b:ba:32:90:cb:1d:d5:ac:97:
7f:0d:67:84:42:e9:bb:94:2e:dc:67:85:71:c4:ca:00:d1:50:
e4:1b:9e:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:22 2024 by rpki-client on console-ams.rpki-client.org