Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/5996e1-2ff0-4bb7-a880-faab9cae1e81/1/vxkAab6Gi5J-kWoMZwdyTKUBN8E.roa
File: vxkAab6Gi5J-kWoMZwdyTKUBN8E.roa (raw, json)
Hash identifier: tIb/xZu6lSL7UDEwtXCKB6PvFEC8nTX7CnfU0iLne/w=
Subject key identifier: BF:19:00:69:BE:86:8B:92:7E:91:6A:0C:67:07:72:4C:A5:01:37:C1
Certificate issuer: /CN=f2d4116975d3e87bd8a28e643c69a3081de0019f
Certificate serial: 01857082C77FC0BD6156EE8E3C11B18A5F72
Authority key identifier: F2:D4:11:69:75:D3:E8:7B:D8:A2:8E:64:3C:69:A3:08:1D:E0:01:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8tQRaXXT6HvYoo5kPGmjCB3gAZ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/5996e1-2ff0-4bb7-a880-faab9cae1e81/1/vxkAab6Gi5J-kWoMZwdyTKUBN8E.roa
Signing time: Mon 02 Jan 2023 03:24:57 +0000
ROA not before: Mon 02 Jan 2023 03:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25297
IP address blocks: 195.234.167.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:c7:7f:c0:bd:61:56:ee:8e:3c:11:b1:8a:5f:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2d4116975d3e87bd8a28e643c69a3081de0019f
Validity
Not Before: Jan 2 03:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf190069be868b927e916a0c6707724ca50137c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:d3:4f:fd:e2:a4:ca:4c:6b:8d:ad:97:c0:81:
5c:a9:7a:ed:05:4b:bf:50:11:40:64:4d:44:51:56:
f6:1b:70:e6:63:f6:a8:9d:02:30:f3:f2:66:55:b5:
03:fe:2f:cc:dc:5f:b6:ec:d5:a7:94:bc:fb:70:09:
3d:5e:a9:3f:1b:8c:b3:9a:63:5c:c1:38:6a:72:1b:
76:29:70:9e:94:78:64:e2:3a:b6:19:50:6c:c8:6e:
a6:f7:ca:64:7b:95:4d:f2:57:94:fa:7d:9a:1f:3b:
2e:05:1f:23:82:32:5c:e2:72:de:1a:08:89:4b:2b:
45:7f:3a:0c:15:58:7f:33:b4:d1:87:a5:d6:1e:00:
10:3e:da:e4:02:bb:b9:c9:52:c7:75:51:50:8c:91:
89:9c:7e:da:9a:50:bb:04:f4:d7:2c:b5:de:ef:97:
89:b8:94:b9:63:82:ba:79:26:cb:25:23:98:46:a8:
d5:24:ae:8b:31:e6:64:2e:5c:d8:9c:c6:4c:28:e3:
c8:41:95:5c:2b:62:a6:0f:8c:49:43:e8:9e:d9:14:
c3:07:d6:b9:51:e3:d2:28:3e:6a:49:a9:02:c3:44:
ae:5f:05:71:cd:26:fa:ed:f4:3f:b7:4a:69:ba:8f:
06:7b:04:33:96:a1:2d:32:32:a5:fc:b9:03:70:73:
33:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:19:00:69:BE:86:8B:92:7E:91:6A:0C:67:07:72:4C:A5:01:37:C1
X509v3 Authority Key Identifier:
keyid:F2:D4:11:69:75:D3:E8:7B:D8:A2:8E:64:3C:69:A3:08:1D:E0:01:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8tQRaXXT6HvYoo5kPGmjCB3gAZ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/5996e1-2ff0-4bb7-a880-faab9cae1e81/1/vxkAab6Gi5J-kWoMZwdyTKUBN8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/5996e1-2ff0-4bb7-a880-faab9cae1e81/1/8tQRaXXT6HvYoo5kPGmjCB3gAZ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.234.167.0/24
Signature Algorithm: sha256WithRSAEncryption
13:b5:5b:98:49:66:b3:86:40:7a:61:b4:89:b0:73:c7:26:04:
1a:fb:89:bf:3c:38:ad:d7:0f:cd:4e:f7:99:8c:eb:ac:4a:b9:
0e:a5:98:51:28:84:ac:06:83:15:34:6b:c7:36:97:3e:78:61:
af:e6:4d:27:cc:27:fb:2b:12:e7:0b:51:71:1c:10:eb:7a:7e:
e3:2a:1f:92:39:fc:85:61:a4:dc:94:1b:6f:ff:15:d9:4b:c0:
e4:ea:d0:f3:5f:42:c1:e1:0c:c9:cc:3a:78:25:2b:28:ae:7e:
d8:d1:47:58:43:2a:85:c9:86:75:2b:a9:0e:2a:ed:c6:fd:01:
be:f9:f1:8a:e7:3a:29:9d:c9:98:67:4a:ba:37:e4:c2:6a:91:
58:cf:6a:d7:1c:f9:7f:e0:35:a1:25:2d:f3:ec:15:4c:b9:08:
84:28:de:e9:b5:d8:1d:ed:68:ee:cc:8c:ca:94:23:44:5f:38:
2c:0d:35:84:1f:a9:96:7c:6d:96:da:54:87:7b:54:b9:32:36:
4a:e1:83:f9:0d:3b:45:49:97:14:f7:fb:11:6b:32:1f:81:8c:
95:b7:39:34:ee:3d:58:ff:e3:5e:66:a0:9b:1a:dd:4d:6c:b3:
6c:61:52:a3:28:ce:5c:9d:a5:bc:f4:66:d7:eb:a8:c8:02:03:
69:3e:73:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:14:22 2024 by rpki-client on console-ams.rpki-client.org