Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/4a3caf-f84c-4c76-8065-962206b1686b/1/4-C45BTJQyQzi8OMILj85lebT8Q.roa
File: 4-C45BTJQyQzi8OMILj85lebT8Q.roa (raw, json)
Hash identifier: syRgAiuew3drCAZGYEu2q/4CdZsguji+sy9H74HmzSo=
Subject key identifier: E3:E0:B8:E4:14:C9:43:24:33:8B:C3:8C:20:B8:FC:E6:57:9B:4F:C4
Certificate issuer: /CN=806757de8ffcdd1fd9af78b645536bda7c76c30e
Certificate serial: 018E7FDDD4893E0EE4B308A0763861AFBD8F
Authority key identifier: 80:67:57:DE:8F:FC:DD:1F:D9:AF:78:B6:45:53:6B:DA:7C:76:C3:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gGdX3o_83R_Zr3i2RVNr2nx2ww4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/4a3caf-f84c-4c76-8065-962206b1686b/1/4-C45BTJQyQzi8OMILj85lebT8Q.roa
Signing time: Wed 27 Mar 2024 12:23:48 +0000
ROA not before: Wed 27 Mar 2024 12:23:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57043
IP address blocks: 195.162.69.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Apr 2024 12:10:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:7f:dd:d4:89:3e:0e:e4:b3:08:a0:76:38:61:af:bd:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=806757de8ffcdd1fd9af78b645536bda7c76c30e
Validity
Not Before: Mar 27 12:23:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e3e0b8e414c94324338bc38c20b8fce6579b4fc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:39:a8:79:02:87:2e:4f:f2:e3:70:ba:2e:dd:
b8:fe:9f:82:7a:32:cc:8a:41:98:5d:ee:49:c0:9a:
df:d0:0f:a0:bc:ca:c2:9d:49:bd:a0:78:81:57:db:
d7:38:3c:df:45:a8:80:82:4e:51:be:32:a2:80:87:
2f:5a:40:b7:3c:bd:b5:14:15:84:a9:68:9a:cc:c3:
93:dc:a6:92:76:5f:0a:7b:65:63:3f:94:26:56:1a:
55:cd:8b:3d:e1:c8:8a:ce:09:ff:cf:38:8b:5e:ba:
99:89:11:13:5b:13:35:2b:d7:56:5e:9d:ea:f7:ad:
b2:76:73:03:e4:25:87:f9:5d:08:26:06:cf:0c:38:
0c:52:8c:53:97:c4:c0:19:85:e5:d5:cd:16:5e:a3:
6d:95:cb:72:e7:ee:4f:6b:8c:2f:ce:fc:c7:c9:82:
3f:2a:86:a6:bd:2b:b0:12:b4:1b:9e:fd:3c:32:23:
9a:b8:28:f2:52:f7:a0:73:ec:5a:ca:bc:06:8d:1b:
96:97:f0:77:e0:55:eb:d7:66:83:e3:8c:2d:f1:98:
c8:c9:76:ef:fb:d1:df:a8:09:f3:10:fc:85:0d:da:
c4:1d:5a:98:b5:cb:12:83:9f:98:f1:ee:f2:b1:9a:
77:37:35:c9:9e:13:97:54:3b:09:87:9f:a5:40:34:
af:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:E0:B8:E4:14:C9:43:24:33:8B:C3:8C:20:B8:FC:E6:57:9B:4F:C4
X509v3 Authority Key Identifier:
keyid:80:67:57:DE:8F:FC:DD:1F:D9:AF:78:B6:45:53:6B:DA:7C:76:C3:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gGdX3o_83R_Zr3i2RVNr2nx2ww4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/4a3caf-f84c-4c76-8065-962206b1686b/1/4-C45BTJQyQzi8OMILj85lebT8Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/4a3caf-f84c-4c76-8065-962206b1686b/1/gGdX3o_83R_Zr3i2RVNr2nx2ww4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.162.69.0/24
Signature Algorithm: sha256WithRSAEncryption
40:a2:35:80:b8:2f:67:31:56:04:15:f7:59:c8:40:3f:f6:b1:
b6:9f:d8:e4:3e:78:b0:cf:37:d3:72:6e:66:83:d8:08:a6:b1:
ab:9c:9b:38:0e:6f:8a:2f:84:19:ee:b5:ba:b5:b2:62:17:6a:
bf:f6:ad:97:68:2b:95:7f:4d:be:bb:0d:43:6a:24:59:38:f2:
4c:a8:a7:25:38:5b:ec:05:8a:1c:6e:88:d5:b5:40:46:f0:b9:
02:ca:e9:ba:01:d3:b3:22:bc:40:1e:e7:35:d6:b4:81:1e:ce:
af:6b:b2:62:9b:03:2d:0a:12:68:86:07:2a:c6:0c:a6:e5:f9:
78:d7:00:b5:4d:2c:77:dd:79:1b:7a:a0:0f:e3:20:64:50:14:
8f:52:d1:fd:d9:61:95:49:aa:83:43:34:58:f8:92:dd:0c:2c:
6f:5a:3e:fc:57:88:81:59:16:0d:03:3e:6e:e8:bc:cd:e0:87:
5a:d5:2f:a5:73:60:1a:3b:41:2a:aa:27:ed:92:23:3d:f4:b4:
70:bc:bb:9c:72:50:47:dc:f8:92:3e:64:99:03:2c:f4:3c:cf:
fd:8c:6e:66:93:35:4f:98:e3:a7:17:26:48:9a:82:c0:be:a1:
98:b1:e3:f4:69:33:01:2f:86:99:be:3e:ae:33:cf:d3:13:49:
f8:27:76:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:43 2024 by rpki-client on console-fra.rpki-client.org