Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/7dd289-6cb5-4371-846c-93dec735f717/1/0YmXddCbdDoEGg7HAzfPvWNXrZY.roa
File: 0YmXddCbdDoEGg7HAzfPvWNXrZY.roa (raw, json)
Hash identifier: seoM0wt2bN+iCaoOJD26pZR45/8TJK8+jEXqAi+I6Os=
Subject key identifier: D1:89:97:75:D0:9B:74:3A:04:1A:0E:C7:03:37:CF:BD:63:57:AD:96
Certificate issuer: /CN=9907c7b89656dd339cb98fb7c2b0371c5926a641
Certificate serial: 01856D9D02780E063923FD9794D399B2DC94
Authority key identifier: 99:07:C7:B8:96:56:DD:33:9C:B9:8F:B7:C2:B0:37:1C:59:26:A6:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mQfHuJZW3TOcuY-3wrA3HFkmpkE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/7dd289-6cb5-4371-846c-93dec735f717/1/0YmXddCbdDoEGg7HAzfPvWNXrZY.roa
Signing time: Sun 01 Jan 2023 13:54:44 +0000
ROA not before: Sun 01 Jan 2023 13:54:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29092
IP address blocks: 195.47.241.0/24 maxlen: 24
193.164.151.0/24 maxlen: 24
195.66.119.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Aug 2023 07:53:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:9d:02:78:0e:06:39:23:fd:97:94:d3:99:b2:dc:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9907c7b89656dd339cb98fb7c2b0371c5926a641
Validity
Not Before: Jan 1 13:54:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d1899775d09b743a041a0ec70337cfbd6357ad96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:c2:80:10:71:83:6d:18:aa:0c:bf:0c:6a:f4:
11:9c:97:45:65:1e:be:38:a3:95:60:73:9a:9a:1e:
1a:03:aa:0b:0c:c9:90:41:b3:8f:a1:d3:f5:30:18:
1c:21:24:6d:44:cc:76:9e:9b:0f:16:c2:43:ac:2c:
33:c7:56:96:e3:49:70:8d:08:90:b0:b0:53:44:18:
60:88:9d:6e:5b:ee:e2:a7:51:70:d2:d6:ea:19:15:
89:0c:cf:bc:fc:2c:5a:3b:13:68:c1:a6:03:5c:a0:
d6:a2:8c:cb:fd:64:ba:94:ee:70:4d:15:03:ed:62:
f5:9c:b2:bb:a8:05:e3:c4:71:9e:a1:d1:2b:ef:a1:
c9:fe:c8:29:4c:4a:e4:e2:bf:39:1a:db:1b:dc:14:
a9:a5:f6:5f:e8:ae:52:2b:27:9d:c4:f1:7e:fc:23:
62:fc:1b:21:96:89:be:6c:4f:9d:fd:be:c5:9d:9a:
d2:a9:ee:b6:e4:aa:11:47:b6:a0:9a:f5:7f:03:5a:
ae:32:0d:4c:52:48:a0:d2:63:f2:17:c6:ea:d9:b8:
59:fc:17:63:da:6b:ae:d8:02:44:3f:69:aa:4d:dc:
63:57:14:48:e4:73:0e:61:5f:8a:70:70:3e:b9:32:
f2:1d:07:62:82:f5:92:9c:c9:64:79:24:4e:b0:03:
91:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:89:97:75:D0:9B:74:3A:04:1A:0E:C7:03:37:CF:BD:63:57:AD:96
X509v3 Authority Key Identifier:
keyid:99:07:C7:B8:96:56:DD:33:9C:B9:8F:B7:C2:B0:37:1C:59:26:A6:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mQfHuJZW3TOcuY-3wrA3HFkmpkE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/7dd289-6cb5-4371-846c-93dec735f717/1/0YmXddCbdDoEGg7HAzfPvWNXrZY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/7dd289-6cb5-4371-846c-93dec735f717/1/mQfHuJZW3TOcuY-3wrA3HFkmpkE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.164.151.0/24
195.47.241.0/24
195.66.119.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:6b:ea:9d:4e:79:35:08:2a:e1:fe:b3:65:b1:9d:d2:bf:e8:
8e:2b:67:4f:bc:59:0f:68:8a:80:30:f2:3b:d1:53:9e:89:e9:
cb:35:5d:cb:74:80:bc:0f:48:36:a1:bd:bd:a6:32:4c:ca:1f:
53:6e:25:b5:1e:0c:60:16:09:5d:52:e1:ea:39:18:d0:ea:69:
cb:c3:60:60:68:4a:07:7d:6c:99:ee:1a:48:36:34:6a:dd:24:
21:12:6d:61:00:59:4b:64:93:40:67:b5:53:ba:8e:58:3f:14:
e6:8c:02:87:96:ff:7f:56:cb:38:bc:5c:70:41:3a:b0:1d:f3:
8e:e2:55:ec:fc:de:47:ab:15:79:66:b6:46:e7:68:e6:87:66:
2b:8c:1d:ca:4a:9a:66:eb:6e:ea:ae:d8:9d:c9:1a:98:67:04:
c7:d8:57:47:b8:ee:ba:99:59:26:8a:da:c2:11:7e:36:e2:f0:
e1:46:44:97:ac:81:3c:29:1d:1e:3c:65:26:1c:51:3c:8f:9d:
ce:d8:a6:58:5a:2f:49:ea:34:9b:26:20:ad:b8:3f:04:a9:db:
a6:9e:d0:86:fa:37:bf:ab:61:11:c4:df:2e:e5:20:02:9f:1f:
18:ec:46:3a:59:54:ea:3a:08:f5:d6:f0:4b:94:d1:b0:08:0d:
99:d6:52:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:30 2024 by rpki-client on console-fra.rpki-client.org