Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/780d86-4ebd-4d6b-8d8f-0e41861beb2f/1/LnCaHgbfOizIEbCAwkmXuPqzYKY.roa
File: LnCaHgbfOizIEbCAwkmXuPqzYKY.roa (raw, json)
Hash identifier: DPRmdE1UMmwzAVKrE/1Z6PPivZGnOjE0QT1PQClVqxA=
Subject key identifier: 2E:70:9A:1E:06:DF:3A:2C:C8:11:B0:80:C2:49:97:B8:FA:B3:60:A6
Certificate issuer: /CN=b64b25cadc4c48166fa9bbd5de8671c220415b67
Certificate serial: 01856BE588854B5D635FF8486E31A3E27FA5
Authority key identifier: B6:4B:25:CA:DC:4C:48:16:6F:A9:BB:D5:DE:86:71:C2:20:41:5B:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tkslytxMSBZvqbvV3oZxwiBBW2c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/780d86-4ebd-4d6b-8d8f-0e41861beb2f/1/LnCaHgbfOizIEbCAwkmXuPqzYKY.roa
Signing time: Sun 01 Jan 2023 05:54:42 +0000
ROA not before: Sun 01 Jan 2023 05:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39734
IP address blocks: 195.60.75.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:e5:88:85:4b:5d:63:5f:f8:48:6e:31:a3:e2:7f:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b64b25cadc4c48166fa9bbd5de8671c220415b67
Validity
Not Before: Jan 1 05:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2e709a1e06df3a2cc811b080c24997b8fab360a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:61:6d:88:95:97:a5:17:9d:cb:9c:56:4b:2a:
e2:86:dd:ab:6d:94:a2:11:8e:8d:36:04:2f:67:31:
cc:bf:a0:3a:2e:a2:d2:06:b7:b0:5d:24:76:14:30:
bb:4a:49:45:cc:ac:58:9b:db:8c:8c:b4:1b:b8:d8:
12:40:30:b1:a1:5d:4a:a9:ef:e9:06:bb:b6:c2:53:
16:0a:10:8e:e7:11:93:4b:be:e0:74:bf:2b:a4:87:
16:35:d7:14:0f:c1:e3:0b:3d:24:ff:92:c5:74:43:
05:de:bf:0e:23:a2:3b:27:49:fb:ab:79:3c:53:bd:
b9:5e:06:ea:70:e2:54:75:52:7f:7e:04:63:bf:49:
9c:fb:55:a5:29:4c:3c:fb:1a:d9:e8:81:5a:82:b0:
b8:1b:df:e8:89:e4:2f:ae:4d:77:a4:f0:d8:a8:3b:
8e:bf:ea:32:ab:4f:27:96:66:0e:ca:30:53:d0:99:
71:df:9b:75:f6:87:dd:f4:ec:d9:01:05:eb:6e:6e:
62:a8:18:80:df:87:5f:0d:a9:e9:ac:67:da:b1:bc:
f4:42:dd:dc:ea:05:00:fd:6c:df:36:57:7b:08:e3:
ec:29:35:d0:d6:74:fd:43:f3:fc:47:42:28:12:75:
78:f5:df:7e:b1:d1:5c:7e:24:12:67:0c:c5:88:77:
a5:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:70:9A:1E:06:DF:3A:2C:C8:11:B0:80:C2:49:97:B8:FA:B3:60:A6
X509v3 Authority Key Identifier:
keyid:B6:4B:25:CA:DC:4C:48:16:6F:A9:BB:D5:DE:86:71:C2:20:41:5B:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tkslytxMSBZvqbvV3oZxwiBBW2c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/780d86-4ebd-4d6b-8d8f-0e41861beb2f/1/LnCaHgbfOizIEbCAwkmXuPqzYKY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/780d86-4ebd-4d6b-8d8f-0e41861beb2f/1/tkslytxMSBZvqbvV3oZxwiBBW2c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.60.75.0/24
Signature Algorithm: sha256WithRSAEncryption
49:e1:22:69:41:39:5a:68:d8:d1:d8:ea:2f:1c:30:98:2a:df:
b1:5f:ca:f1:b0:90:37:a2:a8:e0:91:d0:78:f8:8d:fc:2a:0d:
21:bd:9b:31:1c:ff:9d:26:03:2e:76:b6:d8:6c:b2:8e:fd:51:
0b:71:47:45:9a:f9:3f:be:9a:58:50:9d:7b:02:31:51:2a:d4:
00:e8:ac:1e:f2:77:ef:76:1c:09:e2:3c:ef:cd:15:56:60:c4:
6b:83:b1:38:3e:84:b8:18:cd:d5:d0:59:8f:b4:14:0b:78:c2:
83:5a:b8:95:30:35:44:06:01:84:cd:cb:7d:99:53:83:92:f9:
28:2a:3b:f1:68:36:94:e6:95:0f:9f:6c:73:8d:59:a1:44:81:
43:8c:28:2c:ea:b7:35:a1:56:a3:4c:2b:71:69:80:33:a9:46:
e6:5b:1e:c8:a4:3c:26:32:b7:85:6b:ac:bb:1c:01:12:93:f1:
d7:6f:da:8a:c9:37:12:0a:09:ca:67:a1:d2:7b:3b:05:b6:26:
bd:82:e1:0b:2f:83:85:5e:ed:3b:bb:f7:cc:cb:8b:7f:8e:e8:
64:23:a7:dc:89:62:71:db:4d:a3:cc:c4:62:ef:6e:c9:82:6d:
d0:6d:bc:d5:fd:18:76:55:ab:2f:4f:33:61:12:92:54:a3:5f:
3d:91:26:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:45 2024 by rpki-client on console-fra.rpki-client.org