Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/40e405-a38f-4781-8d55-0c9e0cf7e9fc/1/3aaAbjeMgLL_77fdmZre078kIiU.roa
File: 3aaAbjeMgLL_77fdmZre078kIiU.roa (raw, json)
Hash identifier: cHIZML1Dmx4lVMzGDXvnPdYGZhCElYs1gUJe0coT5Vo=
Subject key identifier: DD:A6:80:6E:37:8C:80:B2:FF:EF:B7:DD:99:9A:DE:D3:BF:24:22:25
Certificate issuer: /CN=a1de456d4d405c6f4292d63688676ce150e7f07e
Certificate serial: 01856CCAF26A13F5F31326FDB56A3B3D0745
Authority key identifier: A1:DE:45:6D:4D:40:5C:6F:42:92:D6:36:88:67:6C:E1:50:E7:F0:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/od5FbU1AXG9CktY2iGds4VDn8H4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/40e405-a38f-4781-8d55-0c9e0cf7e9fc/1/3aaAbjeMgLL_77fdmZre078kIiU.roa
Signing time: Sun 01 Jan 2023 10:05:17 +0000
ROA not before: Sun 01 Jan 2023 10:05:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41513
IP address blocks: 195.3.224.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:f2:6a:13:f5:f3:13:26:fd:b5:6a:3b:3d:07:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1de456d4d405c6f4292d63688676ce150e7f07e
Validity
Not Before: Jan 1 10:05:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dda6806e378c80b2ffefb7dd999aded3bf242225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c0:34:5a:ac:e9:59:ab:38:59:39:f7:1e:29:
14:a3:74:f1:f6:ee:60:12:e6:11:ac:8c:45:cb:46:
e6:8e:3a:fb:4c:f9:70:8b:41:d8:be:43:9e:3a:81:
5c:46:10:c3:58:ac:fc:77:de:ad:30:48:e2:eb:4c:
41:70:fd:05:dc:57:7b:b3:c2:3f:f8:a9:a7:e3:46:
d8:c8:b8:92:07:3f:43:0d:e1:f9:8e:29:cc:87:5a:
fb:ba:37:5f:16:58:f6:d5:3a:69:52:41:99:c4:3f:
4e:95:b0:28:27:33:b4:94:b4:e7:2c:45:2b:bd:4a:
8d:5e:fb:04:e2:77:f6:1d:6c:05:86:30:5b:37:07:
4b:92:99:33:d9:24:66:45:b0:9a:08:13:32:70:b8:
b5:b0:da:b0:7d:1c:fc:95:7b:75:92:c7:ef:2d:ba:
96:e3:88:67:50:21:ff:68:91:75:e8:77:34:e4:c9:
fa:06:e6:bd:1c:b4:bd:7c:c6:5e:07:74:cc:e8:cf:
b5:0e:87:59:16:c6:86:c5:d3:5b:5d:86:11:1f:90:
3a:02:04:6b:6c:28:1f:c7:21:15:43:c7:6d:91:00:
74:98:cc:04:a7:4a:1a:73:2a:19:d9:5e:49:84:fe:
f9:6c:92:14:f9:37:e3:f2:79:0b:f9:6f:52:3f:c8:
cf:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:A6:80:6E:37:8C:80:B2:FF:EF:B7:DD:99:9A:DE:D3:BF:24:22:25
X509v3 Authority Key Identifier:
keyid:A1:DE:45:6D:4D:40:5C:6F:42:92:D6:36:88:67:6C:E1:50:E7:F0:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/od5FbU1AXG9CktY2iGds4VDn8H4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/40e405-a38f-4781-8d55-0c9e0cf7e9fc/1/3aaAbjeMgLL_77fdmZre078kIiU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/40e405-a38f-4781-8d55-0c9e0cf7e9fc/1/od5FbU1AXG9CktY2iGds4VDn8H4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.3.224.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:10:1f:3e:30:b7:56:7b:a9:9d:3b:4f:24:e5:c4:94:28:31:
fa:03:ca:dd:a5:1b:3a:3a:08:42:ae:09:f8:65:31:08:4f:9a:
78:a3:4d:db:e7:49:37:38:6e:5d:13:77:0b:15:52:78:a5:60:
8d:32:c0:e4:e0:b4:87:74:a5:d3:93:ca:25:a8:5c:ba:17:67:
dd:ad:d3:61:88:84:c3:9d:2a:9a:10:09:75:d2:3d:28:f6:b8:
a9:62:b2:d1:fe:55:30:65:eb:c1:81:9c:52:bf:97:ff:13:b0:
ce:e1:42:39:ec:95:99:0f:66:cd:9d:58:13:ed:88:b2:90:3d:
79:1d:e7:be:49:ef:8a:fe:52:a8:e9:bb:9f:3f:8f:32:93:72:
28:bf:95:42:b4:a2:8f:77:78:b5:e8:6d:eb:4d:1e:bc:be:b8:
ee:f8:98:2e:5b:b6:e4:c1:48:1d:e2:78:ea:8d:59:9c:51:44:
2b:f7:aa:67:fb:a7:68:43:0c:35:a3:09:92:61:40:76:b9:15:
a8:e7:26:07:72:5b:76:25:e3:62:5b:24:40:0f:ad:32:56:3e:
6b:e3:a5:3e:46:5b:5c:d2:29:75:1d:3a:5c:75:41:1b:41:f2:
42:15:0e:de:dc:5a:2a:b6:48:5b:bb:e1:ab:ba:46:d8:0d:f3:
a1:57:c1:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:24 2024 by rpki-client on console-ams.rpki-client.org