Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/283234-a52a-4556-b3cb-f1d5ca96a7d6/1/_-dJJXAOb0aXSCVJUYjC2huahss.roa
File: _-dJJXAOb0aXSCVJUYjC2huahss.roa (raw, json)
Hash identifier: GFWjpP8tfi9B5Lnds936oWso5V4GiwdeJExybYUAcRg=
Subject key identifier: FF:E7:49:25:70:0E:6F:46:97:48:25:49:51:88:C2:DA:1B:9A:86:CB
Certificate issuer: /CN=414915cdd322bfe39472536955464a5ff67117c3
Certificate serial: 018C9BABD3362A9D663B9641015BEB11883F
Authority key identifier: 41:49:15:CD:D3:22:BF:E3:94:72:53:69:55:46:4A:5F:F6:71:17:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QUkVzdMiv-OUclNpVUZKX_ZxF8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/283234-a52a-4556-b3cb-f1d5ca96a7d6/1/_-dJJXAOb0aXSCVJUYjC2huahss.roa
Signing time: Sun 24 Dec 2023 11:52:58 +0000
ROA not before: Sun 24 Dec 2023 11:52:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9044
IP address blocks: 195.137.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:9b:ab:d3:36:2a:9d:66:3b:96:41:01:5b:eb:11:88:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=414915cdd322bfe39472536955464a5ff67117c3
Validity
Not Before: Dec 24 11:52:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ffe74925700e6f46974825495188c2da1b9a86cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:85:bb:fa:37:cb:f9:f0:af:64:5e:d5:dc:95:
c4:8e:8a:bc:e7:0a:6f:8d:1b:a5:9a:20:0c:f1:8d:
14:51:80:30:cd:5d:ab:27:8d:65:ad:84:77:17:22:
01:87:ff:51:20:ea:45:2e:48:80:e2:59:ee:f4:88:
aa:37:24:ce:f6:b7:0a:d3:7c:bf:80:a0:d2:43:d5:
81:ac:2a:6f:f3:cb:25:c8:d5:c1:8e:43:68:33:a2:
08:82:e8:c4:64:a8:fb:c8:95:03:1d:8b:24:1b:c0:
72:3c:cc:b1:33:c5:ef:42:8b:58:1c:1d:35:93:a5:
31:06:b9:27:f1:05:ba:43:e2:7f:80:5a:bb:8d:f5:
52:d5:cc:a9:a2:0e:7a:f8:e9:c7:9a:34:d8:be:5b:
b6:2f:59:69:5c:3d:c9:19:ab:6b:65:35:d3:87:9a:
68:64:12:54:78:ce:db:5f:03:2c:62:d1:60:2c:dd:
66:77:fa:e1:8d:cc:2c:4b:6d:4f:06:fb:ad:57:c0:
7c:1f:14:62:60:97:1f:6f:2e:f8:99:6d:d4:ef:e5:
05:03:35:8a:81:f4:5d:76:11:86:d3:08:87:46:28:
2c:13:b9:fb:7c:c5:98:32:40:87:5b:e6:ab:b8:36:
1d:56:41:0c:5a:72:7f:5c:b1:ef:00:8a:6f:9d:ed:
a5:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:E7:49:25:70:0E:6F:46:97:48:25:49:51:88:C2:DA:1B:9A:86:CB
X509v3 Authority Key Identifier:
keyid:41:49:15:CD:D3:22:BF:E3:94:72:53:69:55:46:4A:5F:F6:71:17:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QUkVzdMiv-OUclNpVUZKX_ZxF8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/283234-a52a-4556-b3cb-f1d5ca96a7d6/1/_-dJJXAOb0aXSCVJUYjC2huahss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/283234-a52a-4556-b3cb-f1d5ca96a7d6/1/QUkVzdMiv-OUclNpVUZKX_ZxF8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.137.175.0/24
Signature Algorithm: sha256WithRSAEncryption
02:76:b6:2a:ee:79:c3:a6:a0:96:4b:a2:61:e1:93:ac:1b:cd:
9a:12:21:65:75:4e:2d:26:df:b8:ef:64:e1:8d:a2:4f:8b:4a:
e2:1b:61:a8:63:50:bf:5c:cd:a7:5b:14:2d:2e:19:a4:8d:e2:
97:c3:ba:b9:17:d6:75:4f:39:bf:c8:98:e3:27:80:85:f9:11:
12:ad:48:1b:d9:30:a1:08:da:88:f7:73:e8:77:66:03:7b:4d:
c8:57:44:7f:12:da:75:4c:5e:59:18:a3:2f:6b:61:7c:61:9e:
d4:9e:27:3a:ce:aa:6d:ed:96:3a:6e:4e:b7:05:84:b9:15:00:
f3:40:9a:de:d2:e1:8d:c0:fc:21:c3:d2:88:f3:b7:3c:ea:f7:
86:54:ca:42:92:c0:17:90:e8:a4:58:ae:50:f9:9b:44:57:c7:
41:17:c0:2f:de:4c:1b:6e:bd:3a:ab:9d:53:ab:8f:23:77:c2:
9e:cd:fd:2c:ed:84:83:be:68:2d:0f:9e:88:f3:36:65:e2:da:
bf:41:90:78:74:bd:45:d6:31:34:e0:e8:ce:4f:2d:4e:c9:54:
d6:ef:0d:e5:ca:c4:8f:36:0a:b6:ea:41:77:a4:96:b5:75:07:
1e:c2:10:0a:5a:1c:c0:62:77:32:cc:e2:9a:bc:16:d5:bf:b7:
d0:4c:ee:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:42 2024 by rpki-client on console-fra.rpki-client.org