Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/f40486-2cd9-475b-bbe1-16cd8f4fb4b9/1/ckLRRoS9WmRPTfzmjyke0VaLhNQ.roa
File: ckLRRoS9WmRPTfzmjyke0VaLhNQ.roa (raw, json)
Hash identifier: q9HYyaw/zDrTKHyaymJ4fFzlHSUVD/uELGNjkq8G2mw=
Subject key identifier: 72:42:D1:46:84:BD:5A:64:4F:4D:FC:E6:8F:29:1E:D1:56:8B:84:D4
Certificate issuer: /CN=f8f19e224c73f83c4fdd196d06608aeb3a881804
Certificate serial: 018571D7DA16853018B3B3C1AB7D40D7639A
Authority key identifier: F8:F1:9E:22:4C:73:F8:3C:4F:DD:19:6D:06:60:8A:EB:3A:88:18:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-PGeIkxz-DxP3RltBmCK6zqIGAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/f40486-2cd9-475b-bbe1-16cd8f4fb4b9/1/ckLRRoS9WmRPTfzmjyke0VaLhNQ.roa
Signing time: Mon 02 Jan 2023 09:37:29 +0000
ROA not before: Mon 02 Jan 2023 09:37:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206687
IP address blocks: 195.150.100.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:da:16:85:30:18:b3:b3:c1:ab:7d:40:d7:63:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8f19e224c73f83c4fdd196d06608aeb3a881804
Validity
Not Before: Jan 2 09:37:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7242d14684bd5a644f4dfce68f291ed1568b84d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ca:b0:5e:2c:6f:a5:4a:58:75:91:fd:b3:d6:
cd:f7:bd:72:ae:14:95:f5:3a:c6:cd:ee:b1:7b:82:
50:cd:7e:32:4a:01:b6:7d:23:ea:3b:ef:73:2f:d1:
87:f7:d9:15:45:3c:ec:16:05:b0:b2:5e:c5:f0:50:
40:e0:b3:b7:a6:30:36:d3:e7:ef:8c:d2:2b:85:4d:
9f:46:ee:fc:22:fc:ec:39:eb:5f:29:2d:b8:71:54:
75:4c:b3:ad:ad:d1:21:d1:a9:03:da:2c:b6:f6:24:
41:82:44:5c:02:67:f0:10:9e:a0:a7:94:52:63:d5:
84:90:ea:b7:7e:67:cc:e7:f8:5d:6a:ce:b1:d2:39:
2e:e8:17:3d:8c:20:a5:9a:a3:de:3d:50:22:ac:b7:
1d:74:f1:19:01:ad:c1:1d:ff:52:25:b3:1c:de:c7:
74:44:5b:c8:cd:20:2d:d9:30:a2:35:80:1c:2f:20:
8a:c8:89:e9:35:06:64:0f:22:90:35:91:b6:fa:4a:
b9:79:1d:82:15:ad:b8:0c:18:81:93:3b:52:f4:7e:
cd:0b:8e:76:08:85:bf:28:c5:c7:e6:64:50:28:de:
44:b8:c7:a8:44:86:d9:c3:bb:8a:d2:db:ff:f7:ac:
d9:58:85:0d:45:ad:c7:0a:04:e3:f7:8f:87:b2:26:
1a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:42:D1:46:84:BD:5A:64:4F:4D:FC:E6:8F:29:1E:D1:56:8B:84:D4
X509v3 Authority Key Identifier:
keyid:F8:F1:9E:22:4C:73:F8:3C:4F:DD:19:6D:06:60:8A:EB:3A:88:18:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-PGeIkxz-DxP3RltBmCK6zqIGAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/f40486-2cd9-475b-bbe1-16cd8f4fb4b9/1/ckLRRoS9WmRPTfzmjyke0VaLhNQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/f40486-2cd9-475b-bbe1-16cd8f4fb4b9/1/1-PGeIkxz-DxP3RltBmCK6zqIGAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.150.100.0/24
Signature Algorithm: sha256WithRSAEncryption
11:19:f6:11:da:11:2e:29:61:0f:3a:4a:2a:be:90:e8:6f:e0:
19:c9:c8:2d:0a:24:b1:85:e3:e0:00:4d:df:6f:11:23:50:5a:
27:e7:54:a1:75:90:4b:da:6a:79:3d:97:f6:af:c6:8e:99:5b:
58:6a:82:e6:1e:7d:0c:aa:cd:9c:c6:34:5f:71:40:d2:63:7b:
e1:67:66:93:44:b5:af:52:df:f1:59:0f:d2:fa:43:ce:79:a8:
34:07:ef:a2:75:05:ba:47:55:9a:35:5c:64:6b:00:a5:02:ba:
43:57:2e:74:c5:50:66:08:91:9f:8d:6c:69:1e:f6:8d:23:95:
99:95:1a:ae:99:10:ad:43:45:6e:69:20:9f:71:d1:ef:49:da:
cb:94:22:55:2d:79:79:a9:7e:7f:fa:71:87:a6:33:bf:59:35:
d6:ae:b6:d0:65:d8:c8:3c:d7:d6:af:6b:57:50:0e:9a:7a:a4:
af:eb:0f:ee:ab:67:db:38:fb:e8:71:00:02:59:d7:df:e8:37:
35:aa:1a:d8:4f:4b:46:e5:2e:27:d5:62:35:b9:83:e1:8e:5c:
b4:f4:1b:90:dc:df:c5:67:e9:b3:c2:99:6f:9e:ae:e8:bc:55:
32:1c:7a:7f:58:14:42:be:66:5a:f0:2c:d5:9a:5c:06:cc:ee:
41:f1:ef:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:41 2024 by rpki-client on console-ams.rpki-client.org