Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/cd5c81-d205-40dc-a85b-f744fdc83cf5/1/d7law8hs2SJDrZHHA2_UwgTyy98.roa
File: d7law8hs2SJDrZHHA2_UwgTyy98.roa (raw, json)
Hash identifier: Sega02o16qF35d4aRFlB7KCJbV5vTm5alGJyynBPXtM=
Subject key identifier: 77:B9:5A:C3:C8:6C:D9:22:43:AD:91:C7:03:6F:D4:C2:04:F2:CB:DF
Certificate issuer: /CN=e871726c4c103e0eb42c2f0e8b5da8733fa7efed
Certificate serial: 01856CAF4285755A3983A356141B6DF66398
Authority key identifier: E8:71:72:6C:4C:10:3E:0E:B4:2C:2F:0E:8B:5D:A8:73:3F:A7:EF:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6HFybEwQPg60LC8Oi12ocz-n7-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/cd5c81-d205-40dc-a85b-f744fdc83cf5/1/d7law8hs2SJDrZHHA2_UwgTyy98.roa
Signing time: Sun 01 Jan 2023 09:35:03 +0000
ROA not before: Sun 01 Jan 2023 09:35:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41617
IP address blocks: 195.138.210.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:42:85:75:5a:39:83:a3:56:14:1b:6d:f6:63:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e871726c4c103e0eb42c2f0e8b5da8733fa7efed
Validity
Not Before: Jan 1 09:35:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77b95ac3c86cd92243ad91c7036fd4c204f2cbdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:63:ef:a9:16:ae:3b:fa:ce:16:2f:37:93:01:
53:41:27:b4:1b:1f:0f:2d:6c:b0:c6:6e:5e:f6:6e:
46:9b:4d:44:6b:bc:36:cd:f5:43:3a:60:9e:b3:39:
46:7e:34:03:f5:5f:dd:b0:23:23:93:db:37:df:23:
5c:9e:bc:06:a9:fd:97:ba:41:23:ad:8f:37:d8:bc:
ac:c2:03:db:ed:72:54:41:66:80:f7:20:c5:9e:81:
f8:7d:1b:d5:73:28:ca:db:34:d7:02:ce:95:33:09:
6c:78:60:3a:b6:e8:dd:96:81:0e:d9:82:11:69:b2:
66:39:e4:f6:cd:85:ce:9f:e8:03:ba:10:9f:54:1d:
0f:a1:01:66:ea:52:99:c5:d2:54:41:4c:ab:82:bc:
7b:44:18:ba:ef:74:d2:0a:6b:e0:27:31:e8:e4:30:
92:17:ef:af:a0:50:2d:6c:09:27:9e:f6:7a:cf:87:
0e:2a:49:b3:46:c4:bc:37:6c:2e:9b:db:11:0e:32:
df:0e:7b:8a:86:4c:ed:e9:7c:b0:9d:aa:de:a8:18:
fb:44:15:2e:16:61:41:b6:05:a3:02:1a:08:12:55:
a8:ea:69:27:ee:d4:18:f6:f1:55:47:7f:b6:d2:91:
42:f5:ba:0a:52:36:52:74:48:fe:1b:39:c7:2a:95:
ab:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:B9:5A:C3:C8:6C:D9:22:43:AD:91:C7:03:6F:D4:C2:04:F2:CB:DF
X509v3 Authority Key Identifier:
keyid:E8:71:72:6C:4C:10:3E:0E:B4:2C:2F:0E:8B:5D:A8:73:3F:A7:EF:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6HFybEwQPg60LC8Oi12ocz-n7-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/cd5c81-d205-40dc-a85b-f744fdc83cf5/1/d7law8hs2SJDrZHHA2_UwgTyy98.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/cd5c81-d205-40dc-a85b-f744fdc83cf5/1/6HFybEwQPg60LC8Oi12ocz-n7-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.138.210.0/24
Signature Algorithm: sha256WithRSAEncryption
61:ed:01:50:55:a8:f6:fc:35:3d:96:bc:e8:5b:ff:38:f1:f1:
bd:2f:64:80:fc:f1:f3:e7:63:2b:4d:c2:7a:29:16:81:77:d3:
fd:97:e3:ee:e4:17:38:f8:8c:3b:42:e5:f3:af:41:43:ec:76:
f4:a2:b3:65:d1:05:f9:10:24:53:7c:94:b3:0d:d7:80:d1:b1:
a9:98:b8:64:cb:d6:22:4e:74:ef:4f:b2:81:95:8b:d1:cb:20:
bc:43:23:ba:40:61:75:ce:57:56:bb:c3:51:44:63:0a:9c:11:
88:fc:ef:ac:9f:0a:08:0b:84:00:e6:41:07:40:93:2d:71:9c:
47:f5:ea:81:ea:af:b7:b1:40:ae:50:82:43:74:3d:98:fa:7a:
9c:c3:11:94:f3:29:1c:a7:ed:7b:12:0c:d5:dd:bc:d9:ac:f7:
a3:f9:65:70:0f:db:af:d7:23:50:7a:89:03:07:d2:fc:2e:9f:
97:5d:2f:68:13:1e:5e:bb:c4:75:43:42:51:0e:ed:c4:98:40:
74:c4:9b:43:3d:f5:95:a5:30:bd:d7:de:db:8c:e1:ed:c2:6e:
65:6e:0c:8e:e2:da:a0:2c:23:a3:44:f0:78:a2:b8:9a:e4:30:
0f:67:bc:1e:fa:2f:b7:8f:eb:74:2f:b9:47:00:a6:c5:83:a0:
a3:f8:76:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:21:28 2024 by rpki-client on console-ams.rpki-client.org