Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/qfWVtJ4Ar1dvPeFIO17w6rLPLCc.roa
File: qfWVtJ4Ar1dvPeFIO17w6rLPLCc.roa (raw, json)
Hash identifier: 4Sh1VTxeh59RDvkfKMTxd9QBanfJinve00+O5s1bHDY=
Subject key identifier: A9:F5:95:B4:9E:00:AF:57:6F:3D:E1:48:3B:5E:F0:EA:B2:CF:2C:27
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 01856F9DC63B7CCA5E36C881E8E8B0F00F55
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/qfWVtJ4Ar1dvPeFIO17w6rLPLCc.roa
Signing time: Sun 01 Jan 2023 23:14:48 +0000
ROA not before: Sun 01 Jan 2023 23:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52117
IP address blocks: 195.33.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:c6:3b:7c:ca:5e:36:c8:81:e8:e8:b0:f0:0f:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 23:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a9f595b49e00af576f3de1483b5ef0eab2cf2c27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:13:43:7d:cb:7b:c2:39:52:d4:15:c7:f8:8e:
68:e0:f1:54:5e:d0:00:c7:0a:ba:68:8b:90:92:2d:
6f:14:de:bb:69:0f:f2:0d:c3:0f:73:a4:77:45:40:
30:fb:6d:12:3f:12:c5:01:e7:01:3c:68:86:a8:8c:
b5:c7:db:4a:ef:7d:d8:d2:39:1e:27:1c:c8:b5:5c:
6b:04:cc:fe:16:70:40:e4:fe:f3:50:1b:f1:57:25:
a0:4e:c3:02:2a:41:1d:be:74:4d:8d:f7:7f:e7:04:
b5:5f:9c:36:7a:b7:8b:92:32:8f:7b:aa:eb:b7:2f:
d3:e7:3a:6c:17:14:35:92:4a:b2:87:99:1c:68:c4:
e0:fc:e9:41:69:85:33:b6:bf:f1:f7:1f:5b:a3:d9:
b3:5e:81:e2:e9:cc:4f:0a:75:1b:2d:35:ff:12:05:
8c:ce:0f:91:e6:9d:46:c7:50:0d:df:94:41:78:43:
57:f1:65:b7:18:e4:1d:1b:9c:7d:9f:c3:93:ca:c4:
fa:81:54:5e:91:5e:88:b7:42:2b:da:ae:26:ba:a7:
a5:07:45:4d:1a:06:80:65:e9:a4:43:95:8b:e2:1f:
a0:78:b5:4a:1d:51:3a:ef:7b:45:72:02:da:e7:1b:
64:2c:2e:10:da:d0:bf:f4:ee:ad:ab:7a:04:2b:b0:
df:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:F5:95:B4:9E:00:AF:57:6F:3D:E1:48:3B:5E:F0:EA:B2:CF:2C:27
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/qfWVtJ4Ar1dvPeFIO17w6rLPLCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.33.239.0/24
Signature Algorithm: sha256WithRSAEncryption
86:72:96:0b:fa:67:a2:61:7f:29:bf:8f:22:e3:34:44:76:46:
17:ee:74:b1:7b:93:e2:48:06:0a:1f:e8:96:59:f2:e9:bd:5b:
68:39:51:1f:b0:a2:36:bc:2b:8a:6d:fd:17:e2:ea:63:2b:4b:
16:94:05:9d:65:c7:a9:b8:de:e1:b2:88:79:11:43:d5:9a:f0:
26:17:86:47:08:d1:19:e9:77:25:83:85:51:66:d5:67:2c:c7:
d9:54:42:d0:45:a6:97:3d:1a:9c:5d:5e:7a:00:a1:57:2c:c1:
95:f2:d1:5b:06:a4:7c:b6:21:f0:f3:0d:69:bf:bb:3b:8e:fe:
81:d0:ce:9c:ba:26:f7:b8:de:55:08:04:99:7d:0f:a8:f9:e4:
3a:dc:26:f4:2d:35:71:3e:e6:22:72:6d:b5:5a:c4:32:ba:53:
df:f7:1a:99:77:b2:5a:d2:61:8c:9b:f0:87:65:78:31:0a:23:
ab:b4:d1:62:cc:33:25:12:56:9d:4c:6a:1c:25:b6:53:4a:fc:
98:c0:3f:87:a5:db:96:4e:21:8e:c7:72:01:82:33:ed:2c:cc:
9f:50:0e:3e:8f:17:65:e7:90:40:c6:b8:a3:4a:cc:eb:12:c2:
3e:a3:61:bf:20:18:cd:b0:05:48:36:fe:4a:58:67:25:ef:36:
0b:24:69:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:22 2024 by rpki-client on console-ams.rpki-client.org