Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/hPfQrirF5ZwQbhULrmnnZNN-Sbo.roa
File: hPfQrirF5ZwQbhULrmnnZNN-Sbo.roa (raw, json)
Hash identifier: Rsq9ml3ybp6Wfa35hBsFBNBICo1ZTkriOzml8CSgopk=
Subject key identifier: 84:F7:D0:AE:2A:C5:E5:9C:10:6E:15:0B:AE:69:E7:64:D3:7E:49:BA
Certificate issuer: /CN=81fa48f40bc84540c46bd23be9b90897aa184f4d
Certificate serial: 01856E2FCE24D22E293BD59C0904E5A534E4
Authority key identifier: 81:FA:48:F4:0B:C8:45:40:C4:6B:D2:3B:E9:B9:08:97:AA:18:4F:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gfpI9AvIRUDEa9I76bkIl6oYT00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/hPfQrirF5ZwQbhULrmnnZNN-Sbo.roa
Signing time: Sun 01 Jan 2023 16:35:04 +0000
ROA not before: Sun 01 Jan 2023 16:35:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205459
IP address blocks: 195.64.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:2f:ce:24:d2:2e:29:3b:d5:9c:09:04:e5:a5:34:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81fa48f40bc84540c46bd23be9b90897aa184f4d
Validity
Not Before: Jan 1 16:35:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=84f7d0ae2ac5e59c106e150bae69e764d37e49ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:82:61:1c:2e:74:6e:e8:c8:b7:c0:d8:0e:eb:
d6:2f:f3:85:c2:22:d6:9d:7a:33:4d:04:f7:f6:a3:
2d:ef:c3:de:f3:ee:c0:21:e1:e9:3f:48:bd:64:dd:
73:d4:48:40:7f:1b:ed:64:a1:47:55:00:d6:2a:5f:
1d:eb:64:14:50:d9:cb:95:a5:52:fa:cc:cb:9d:32:
3a:db:e6:70:1e:0d:a2:c6:58:16:7e:21:28:9b:8d:
40:07:d0:ef:9a:ee:ff:fe:fd:ce:3a:f3:d8:59:63:
d8:89:d5:82:da:93:20:54:2b:1f:0f:6c:58:35:8f:
cc:b1:1f:c8:5d:ca:4c:da:58:7c:1c:33:6f:ce:06:
90:0c:57:aa:02:92:ff:7c:ca:d5:17:ae:4d:62:ea:
b6:32:d1:22:94:57:7a:9e:b7:61:29:3a:a3:21:38:
3a:19:84:e4:95:9a:1e:16:22:64:8b:a5:e5:8d:44:
b2:ce:fe:32:b7:d6:8c:dd:71:c6:6a:e7:ba:01:55:
be:b1:97:15:1e:00:f5:9b:90:b8:69:c6:aa:f3:70:
9b:63:77:7a:2e:e3:bf:ce:0e:ca:e7:c5:ee:51:d5:
b0:e2:8d:ff:e1:c0:45:c8:01:14:fa:35:ce:af:ca:
1b:a3:bd:e8:ad:78:db:c3:8d:fc:bc:8b:85:c5:3b:
43:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:F7:D0:AE:2A:C5:E5:9C:10:6E:15:0B:AE:69:E7:64:D3:7E:49:BA
X509v3 Authority Key Identifier:
keyid:81:FA:48:F4:0B:C8:45:40:C4:6B:D2:3B:E9:B9:08:97:AA:18:4F:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gfpI9AvIRUDEa9I76bkIl6oYT00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/hPfQrirF5ZwQbhULrmnnZNN-Sbo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/gfpI9AvIRUDEa9I76bkIl6oYT00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.230.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:57:2e:b0:92:e0:86:9c:a4:60:1e:f6:57:30:a5:36:c6:b6:
75:cf:0a:9a:4d:23:23:0b:2d:3a:05:e3:76:91:96:9d:59:8e:
bf:b7:59:38:2c:bb:2e:72:11:61:ba:12:28:de:90:8d:84:a7:
e1:c2:0a:8d:19:65:eb:0b:de:95:17:08:81:c6:9c:5e:78:35:
fd:26:6b:ef:8f:1a:4c:b9:f3:a5:f5:06:08:47:1d:78:8d:12:
c1:1d:b8:e8:26:96:1b:3c:8c:b8:4a:60:ab:14:31:29:65:1b:
c1:f6:9c:6d:24:a8:7f:01:76:d9:ab:b7:e0:a8:d2:64:1d:ac:
1b:27:46:6b:18:99:d4:d5:36:f9:5c:3f:8a:5b:56:29:25:86:
0e:66:a7:94:7c:8f:22:ce:f9:52:11:7b:0a:81:18:af:ae:af:
02:0a:ab:06:9c:5f:8c:e1:ea:04:52:57:ab:70:0a:78:49:cc:
65:14:57:b0:74:e6:79:f8:cd:9d:16:7a:d7:4b:fd:a4:22:0b:
5e:c9:d6:99:2d:0c:ab:38:02:b8:8b:6d:c0:a0:5c:10:52:7b:
47:f1:62:c1:0f:a0:aa:c8:29:17:0b:e5:3c:ee:12:b9:e6:09:
51:c8:24:41:ba:75:33:d5:b7:eb:0f:59:02:b4:db:43:65:70:
14:3c:3f:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:57 2024 by rpki-client on console-fra.rpki-client.org