Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/35OGJncxLZt0fT1-iwTSsDUIm5I.roa
File: 35OGJncxLZt0fT1-iwTSsDUIm5I.roa (raw, json)
Hash identifier: R5qwEH4/P2R1HLMJtL/HPKb1ZmR8EszRUi7xpoV9/oo=
Subject key identifier: DF:93:86:26:77:31:2D:9B:74:7D:3D:7E:8B:04:D2:B0:35:08:9B:92
Certificate issuer: /CN=81fa48f40bc84540c46bd23be9b90897aa184f4d
Certificate serial: 0189500D3A2FCD1B8D22C0356D7C7480299E
Authority key identifier: 81:FA:48:F4:0B:C8:45:40:C4:6B:D2:3B:E9:B9:08:97:AA:18:4F:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gfpI9AvIRUDEa9I76bkIl6oYT00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/35OGJncxLZt0fT1-iwTSsDUIm5I.roa
Signing time: Thu 13 Jul 2023 16:19:51 +0000
ROA not before: Thu 13 Jul 2023 16:19:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211947
IP address blocks: 195.64.231.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:50:0d:3a:2f:cd:1b:8d:22:c0:35:6d:7c:74:80:29:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81fa48f40bc84540c46bd23be9b90897aa184f4d
Validity
Not Before: Jul 13 16:19:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df93862677312d9b747d3d7e8b04d2b035089b92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:ad:e0:6f:e9:0a:61:52:4d:97:9a:2d:0e:6e:
6b:d7:99:33:e8:07:f1:a1:c6:ac:c0:0e:e5:53:01:
bb:24:c0:66:ae:28:9c:70:34:1b:69:51:63:b8:39:
b0:97:df:9f:b3:73:1b:09:db:b1:95:28:48:7d:2e:
9a:a8:77:ae:29:ae:c6:c0:b2:2a:f7:dc:6c:f1:15:
84:d4:ea:cd:85:d1:71:57:db:5a:da:8e:62:18:8f:
28:67:53:7b:f4:d6:8b:63:38:9c:a5:ef:a4:e6:ed:
a4:56:e8:8c:de:dc:3e:3b:7b:b9:9c:8e:a0:de:cf:
d5:61:27:84:82:76:cf:76:1c:8c:70:ad:05:c9:ff:
6a:4e:5a:53:32:c8:5f:9a:d7:28:99:7c:ef:d3:3a:
8f:73:af:e5:00:fa:5b:1a:40:ca:3a:19:88:cc:c9:
9b:5e:d5:a3:f4:6f:c1:3e:1b:70:a8:ca:28:ef:7c:
c2:be:8a:76:5c:6e:27:f2:a8:ef:f6:39:0b:66:bb:
6f:80:be:95:f9:52:93:5f:6b:47:5c:35:3e:f5:8f:
8d:41:e7:43:33:a0:d1:4f:08:6b:9e:78:8e:fc:49:
aa:35:9b:0b:90:1b:b4:0c:8c:ad:8c:73:d1:fa:7f:
7b:0f:87:43:f0:3a:59:ec:67:81:a3:91:52:16:e9:
89:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:93:86:26:77:31:2D:9B:74:7D:3D:7E:8B:04:D2:B0:35:08:9B:92
X509v3 Authority Key Identifier:
keyid:81:FA:48:F4:0B:C8:45:40:C4:6B:D2:3B:E9:B9:08:97:AA:18:4F:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gfpI9AvIRUDEa9I76bkIl6oYT00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/35OGJncxLZt0fT1-iwTSsDUIm5I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/gfpI9AvIRUDEa9I76bkIl6oYT00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.231.0/24
Signature Algorithm: sha256WithRSAEncryption
37:83:3d:91:0c:d7:98:60:4d:92:f9:d8:00:ba:0a:d7:e7:89:
ae:f8:b3:d9:f7:3b:44:fb:57:23:9a:75:d9:31:04:df:75:1b:
88:42:b8:20:b2:f9:9a:64:8b:f1:f2:ce:5e:6c:0d:c9:77:42:
28:53:ce:d4:ad:80:22:63:35:2e:d1:b6:00:94:19:ca:fc:f7:
3a:7f:36:8b:14:59:3a:6a:89:dd:24:1b:ad:b9:22:c2:e3:f7:
58:c9:ff:a6:1c:8b:ba:74:b4:f4:27:25:aa:4a:31:35:a0:78:
63:28:59:fe:b7:79:35:1b:af:2a:df:39:33:b1:41:e0:19:13:
97:6a:a3:0a:6a:eb:6b:ab:09:ba:27:75:f0:0d:1e:e4:75:fe:
bf:b7:71:88:8a:d4:dc:40:1a:5b:c6:a3:07:fd:c1:aa:5f:98:
97:33:f4:5b:c4:51:7a:76:3e:5a:6d:86:23:b4:16:3e:ae:58:
43:ea:91:c3:53:83:17:fe:1b:6e:e9:24:be:39:bb:cc:36:bd:
99:e9:78:42:fc:db:96:44:ba:0e:e6:25:c5:85:a2:8a:09:4c:
8b:06:d1:cf:da:64:98:25:7e:19:c1:c9:0c:7a:d2:01:1f:a1:
ad:ee:de:e2:69:87:0d:5f:59:8a:bf:af:62:3e:b6:2e:ad:ae:
03:7c:04:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:15 2024 by rpki-client on console-fra.rpki-client.org