Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/6cb72d-690a-406f-8add-80e7bbb041b2/1/cFNPvImujQO4Ipf23OGMjSHqdSM.roa
File: cFNPvImujQO4Ipf23OGMjSHqdSM.roa (raw, json)
Hash identifier: xYL9GQilyDvNvb67jrT4Q+U5vLk22d3I5FxRkH4avtc=
Subject key identifier: 70:53:4F:BC:89:AE:8D:03:B8:22:97:F6:DC:E1:8C:8D:21:EA:75:23
Certificate issuer: /CN=c3037d2e7b09a0fbd108168a44874f6bd1689b60
Certificate serial: 018570B079ABAC52DD8489FC768E914C9BB2
Authority key identifier: C3:03:7D:2E:7B:09:A0:FB:D1:08:16:8A:44:87:4F:6B:D1:68:9B:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wwN9LnsJoPvRCBaKRIdPa9Fom2A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/6cb72d-690a-406f-8add-80e7bbb041b2/1/cFNPvImujQO4Ipf23OGMjSHqdSM.roa
Signing time: Mon 02 Jan 2023 04:14:51 +0000
ROA not before: Mon 02 Jan 2023 04:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24929
IP address blocks: 195.144.9.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b0:79:ab:ac:52:dd:84:89:fc:76:8e:91:4c:9b:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3037d2e7b09a0fbd108168a44874f6bd1689b60
Validity
Not Before: Jan 2 04:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=70534fbc89ae8d03b82297f6dce18c8d21ea7523
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:69:20:2b:6a:56:3a:71:61:a4:5f:04:b5:70:
31:01:82:5c:69:32:a1:9f:61:fc:62:11:bb:4d:6f:
3e:91:35:66:11:4b:11:2f:02:ef:ca:33:76:31:9c:
2d:d8:bb:ed:84:f4:92:7b:a3:6c:61:16:62:a9:34:
75:d3:b5:0b:d2:fa:18:58:ce:87:81:9c:d5:12:55:
03:9e:5d:73:fb:2a:48:ab:55:34:fc:cf:f0:ca:d0:
23:ff:6b:4f:40:b0:65:eb:fc:4e:e9:8e:1d:0b:b0:
71:ba:64:33:0f:db:8e:25:ac:47:58:ed:68:06:36:
c1:8c:af:cd:12:9d:32:d2:1f:f1:36:f6:dc:56:c6:
97:0c:29:3c:7c:40:9d:bb:23:89:d6:ca:d6:49:ca:
46:27:36:1f:1c:34:01:05:ef:b2:f6:5b:4c:d8:60:
1f:83:08:7e:ad:e2:7f:6f:4c:9f:6c:eb:60:17:b9:
2f:e2:c4:5a:2d:c7:fd:65:54:80:c2:65:b3:04:8c:
8c:16:44:da:e4:05:86:c8:60:6e:a4:1d:1d:1e:5f:
af:da:21:7e:fd:eb:9b:f3:56:b3:d6:38:cd:41:71:
2d:3d:72:b8:00:23:1e:ab:f7:33:d2:16:f2:ad:9e:
d9:33:dc:9d:7e:71:14:31:06:dc:5a:05:8b:d3:5f:
5e:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:53:4F:BC:89:AE:8D:03:B8:22:97:F6:DC:E1:8C:8D:21:EA:75:23
X509v3 Authority Key Identifier:
keyid:C3:03:7D:2E:7B:09:A0:FB:D1:08:16:8A:44:87:4F:6B:D1:68:9B:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wwN9LnsJoPvRCBaKRIdPa9Fom2A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/6cb72d-690a-406f-8add-80e7bbb041b2/1/cFNPvImujQO4Ipf23OGMjSHqdSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/6cb72d-690a-406f-8add-80e7bbb041b2/1/wwN9LnsJoPvRCBaKRIdPa9Fom2A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.144.9.0/24
Signature Algorithm: sha256WithRSAEncryption
52:19:ee:8b:c4:f9:5b:ff:0d:89:8d:67:38:15:3b:a2:a1:f1:
c4:fd:59:ee:f5:95:f3:86:21:ec:65:c4:9b:49:aa:53:e2:fe:
5a:7a:80:43:56:6d:62:56:e3:0e:4e:e7:2a:23:3b:9e:5a:a5:
bb:a2:e4:ad:63:2c:68:c9:a5:a7:21:1e:7d:59:a7:e3:02:e4:
fd:58:4d:a3:44:cc:cd:62:85:93:24:d9:1e:7e:5b:2b:da:3d:
02:70:6b:14:62:5e:5f:77:81:b8:3e:1c:55:d9:3d:c4:81:3e:
a8:6e:59:ec:da:8a:88:d0:1d:cf:a7:9a:02:9c:cb:08:69:e4:
26:82:3d:8f:4a:4c:d0:bd:3d:e2:74:e1:db:40:b6:75:2f:7d:
e4:a4:fe:f5:96:e5:ce:80:2a:95:3d:a3:63:49:83:57:b1:eb:
f5:3e:7f:21:83:aa:16:2e:69:c3:98:ef:d2:e0:e5:d4:b5:2f:
b0:fc:92:09:60:b7:57:09:f3:ef:2f:e0:51:b0:f9:24:c9:a9:
0d:71:89:97:24:04:14:f4:46:f7:66:df:59:6a:43:d1:02:4c:
9e:b1:9c:26:cf:83:56:d4:d5:06:61:52:39:c1:1d:84:64:34:
8a:9d:cc:8e:5f:be:88:b0:fa:c1:0f:6c:11:78:bf:35:dc:4e:
ac:ae:db:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:40:55 2024 by rpki-client on console-ams.rpki-client.org