Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/62afef-70d1-4fe2-9edf-7f1e57487c1a/1/r7yAkMc7YDFNsB_UZdJ9KBf5R7s.roa
File: r7yAkMc7YDFNsB_UZdJ9KBf5R7s.roa (raw, json)
Hash identifier: sNxJgO69LcLohhhOr2CIJVOZsSyEpePR9KNjnhWklRU=
Subject key identifier: AF:BC:80:90:C7:3B:60:31:4D:B0:1F:D4:65:D2:7D:28:17:F9:47:BB
Certificate issuer: /CN=a24b48edc7a325d7f1ae0f257c0e2835171bc9ae
Certificate serial: 018570152AD19BD261FFDE70DEE437246427
Authority key identifier: A2:4B:48:ED:C7:A3:25:D7:F1:AE:0F:25:7C:0E:28:35:17:1B:C9:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oktI7cejJdfxrg8lfA4oNRcbya4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/62afef-70d1-4fe2-9edf-7f1e57487c1a/1/r7yAkMc7YDFNsB_UZdJ9KBf5R7s.roa
Signing time: Mon 02 Jan 2023 01:25:13 +0000
ROA not before: Mon 02 Jan 2023 01:25:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210882
IP address blocks: 195.216.246.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:2a:d1:9b:d2:61:ff:de:70:de:e4:37:24:64:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a24b48edc7a325d7f1ae0f257c0e2835171bc9ae
Validity
Not Before: Jan 2 01:25:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=afbc8090c73b60314db01fd465d27d2817f947bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:90:e3:a6:fc:44:77:47:b3:49:ef:7a:22:af:
03:da:3a:13:08:9b:4a:74:fc:b0:9d:a2:19:c1:9f:
84:ba:39:7d:6d:d1:dc:a3:65:7c:ff:0a:87:ff:8e:
85:d8:df:a0:b4:22:98:90:ea:a7:e4:24:0a:eb:7b:
ce:20:d6:38:6e:05:d0:f5:c5:0e:c1:37:03:95:57:
c0:d8:2f:a2:5e:2e:31:d7:7b:0f:35:33:e4:bf:56:
13:66:e0:fb:d2:a2:46:d2:fc:c4:db:d0:57:c6:45:
85:0e:e4:e2:22:3a:52:d6:7b:20:78:d1:50:70:c0:
d2:02:4d:fc:8f:4f:02:1e:56:03:a1:05:43:9e:74:
6f:fd:12:7e:ab:8e:0d:28:99:18:c0:b4:6d:c6:3b:
df:d3:b9:3e:6a:f3:8c:3c:68:00:c3:af:c7:03:98:
ff:59:f1:f2:7b:6d:37:ea:e2:8c:97:85:02:d9:6f:
51:10:b8:78:c6:e9:33:7d:a1:db:7f:74:bb:99:7d:
a3:5d:00:3f:fe:60:dc:c3:2d:f1:60:ca:da:69:07:
1b:fb:9b:07:70:1e:de:39:78:16:28:3d:19:f2:5b:
d5:50:56:92:79:79:e3:2c:db:8e:1a:76:20:78:fd:
f8:23:ac:50:84:f1:5a:11:f0:b2:01:d4:7f:b7:5d:
39:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:BC:80:90:C7:3B:60:31:4D:B0:1F:D4:65:D2:7D:28:17:F9:47:BB
X509v3 Authority Key Identifier:
keyid:A2:4B:48:ED:C7:A3:25:D7:F1:AE:0F:25:7C:0E:28:35:17:1B:C9:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oktI7cejJdfxrg8lfA4oNRcbya4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/62afef-70d1-4fe2-9edf-7f1e57487c1a/1/r7yAkMc7YDFNsB_UZdJ9KBf5R7s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/62afef-70d1-4fe2-9edf-7f1e57487c1a/1/oktI7cejJdfxrg8lfA4oNRcbya4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.216.246.0/24
Signature Algorithm: sha256WithRSAEncryption
37:b2:a2:55:c7:c5:d7:69:da:4f:79:57:1c:04:82:0b:60:9a:
2d:4e:68:ae:e1:21:34:73:7e:97:cf:81:62:f7:76:d8:e2:a1:
2d:a3:06:fb:ff:9e:45:14:16:dc:c1:02:18:74:9a:df:2f:39:
c9:7e:e2:28:51:51:66:f8:23:1b:93:7e:4a:59:11:17:0d:0a:
26:1c:2c:4f:ca:c9:bd:be:b6:88:97:a8:4e:45:2f:81:ea:00:
ac:ff:0c:88:51:4e:ff:c8:ff:e9:aa:9c:24:96:7d:01:ea:32:
bd:ec:21:85:82:b9:16:54:b1:f2:48:21:8a:18:0d:15:6a:3b:
d4:d0:2f:92:e7:e1:ae:b7:ce:c1:89:19:54:61:bc:4d:7e:80:
85:85:93:72:1a:e6:b1:3c:88:65:50:f2:43:45:55:6f:c4:ff:
d8:0b:95:27:68:b2:39:90:29:55:75:24:96:05:34:7c:d3:ca:
0a:88:62:24:89:ed:0c:6f:b7:30:07:cb:2f:9c:73:a9:1a:26:
86:4e:ad:fc:ca:2f:42:d9:34:54:f8:07:0f:40:4e:c7:b4:6e:
19:e0:a2:58:d9:7d:05:70:26:8f:05:ea:f3:61:fc:04:04:b8:
6a:31:3e:7a:d3:2d:83:70:2d:41:7e:c8:19:90:00:5f:d7:28:
49:79:8a:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:25 2024 by rpki-client on console-ams.rpki-client.org