Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/84d49c-0c84-456a-b640-4dc9bf642dd2/1/7nyDgSyXr2BgzaxxN7QJw6AGFXU.roa
File: 7nyDgSyXr2BgzaxxN7QJw6AGFXU.roa (raw, json)
Hash identifier: KB2Tzq5I5g1h3qe9zMhvu1Apb7Y7mMU2t6WfmPczONU=
Subject key identifier: EE:7C:83:81:2C:97:AF:60:60:CD:AC:71:37:B4:09:C3:A0:06:15:75
Certificate issuer: /CN=cc46bfff8b90e3748555ba1447fd4edecc340a13
Certificate serial: 01856E78E9FBD1BF232B6F1C2033DC0BBFD1
Authority key identifier: CC:46:BF:FF:8B:90:E3:74:85:55:BA:14:47:FD:4E:DE:CC:34:0A:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zEa__4uQ43SFVboUR_1O3sw0ChM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/84d49c-0c84-456a-b640-4dc9bf642dd2/1/7nyDgSyXr2BgzaxxN7QJw6AGFXU.roa
Signing time: Sun 01 Jan 2023 17:54:56 +0000
ROA not before: Sun 01 Jan 2023 17:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57222
IP address blocks: 195.162.5.0/24 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:78:e9:fb:d1:bf:23:2b:6f:1c:20:33:dc:0b:bf:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc46bfff8b90e3748555ba1447fd4edecc340a13
Validity
Not Before: Jan 1 17:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ee7c83812c97af6060cdac7137b409c3a0061575
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:fb:a1:75:e0:61:c2:0b:c9:80:fc:05:54:01:
02:9e:20:06:b5:a2:10:e4:59:33:92:67:8a:66:ff:
31:26:e9:89:84:19:92:b4:17:d5:d5:f8:af:94:1a:
f4:b3:b0:d0:7c:9f:24:20:49:94:db:80:d8:e7:d7:
0a:84:18:51:3c:87:ac:07:d2:71:32:e0:36:31:64:
c3:5d:35:04:c8:df:70:02:e1:3c:92:46:39:3c:76:
35:2a:a1:8a:47:50:3a:28:08:bf:61:2f:b8:d4:1e:
2b:75:da:08:c1:c9:bf:5c:66:20:b7:2c:b4:8f:e8:
43:7d:fc:d6:5f:9f:b4:e4:a0:f4:35:07:cc:1d:69:
3a:96:9d:22:0a:20:d6:59:85:a7:20:b8:22:fb:69:
29:c9:a0:be:4d:af:32:88:85:d4:a7:a6:4c:51:f4:
98:21:b9:bf:2d:4f:1e:3f:f2:18:33:c6:11:e1:ab:
ed:fa:52:94:bd:31:f5:80:06:02:0d:31:80:de:be:
20:d8:27:25:83:74:19:f7:8e:79:a6:da:a6:8a:d6:
57:5d:c2:e6:97:c1:f7:02:cf:e6:db:65:8b:85:a0:
98:4e:80:40:96:86:36:71:6c:e4:cf:63:f0:da:97:
b4:83:ee:64:91:cd:93:dd:ac:52:d8:06:1d:48:0b:
60:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:7C:83:81:2C:97:AF:60:60:CD:AC:71:37:B4:09:C3:A0:06:15:75
X509v3 Authority Key Identifier:
keyid:CC:46:BF:FF:8B:90:E3:74:85:55:BA:14:47:FD:4E:DE:CC:34:0A:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zEa__4uQ43SFVboUR_1O3sw0ChM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/84d49c-0c84-456a-b640-4dc9bf642dd2/1/7nyDgSyXr2BgzaxxN7QJw6AGFXU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/84d49c-0c84-456a-b640-4dc9bf642dd2/1/zEa__4uQ43SFVboUR_1O3sw0ChM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.162.5.0/24
Signature Algorithm: sha256WithRSAEncryption
55:9f:f6:be:52:c7:38:a1:be:18:4d:57:45:8b:4f:da:e8:7d:
a8:a5:80:03:61:ea:1e:29:16:f3:c8:bb:13:91:9f:35:8b:07:
13:38:11:20:b8:9d:b5:27:7e:20:6e:c0:be:15:96:2a:76:fe:
2d:43:1e:76:b9:6d:85:ad:3c:6c:2a:ff:34:81:5c:b3:f5:92:
4d:e4:ec:0e:a4:f6:21:c3:45:64:71:b4:d8:7e:56:b8:b9:ca:
69:41:24:86:f5:b7:6c:de:48:64:99:03:c0:9e:9b:a5:9f:55:
99:3d:8e:c9:99:98:ac:39:32:32:8a:19:d5:03:ab:b0:54:60:
f5:f1:3f:8e:0d:88:66:5d:1e:ac:b3:17:18:53:d1:9c:25:2a:
36:4c:8d:eb:c0:e0:4e:1d:ef:cd:0b:a3:ed:ff:a9:43:72:f3:
96:2b:9f:1e:2b:71:10:d7:64:dc:52:26:11:a7:00:85:ce:18:
70:69:a1:6a:40:42:65:5c:19:62:44:45:0d:39:ad:4b:94:ec:
f5:87:55:36:7e:57:d1:96:ce:86:00:e5:b9:a7:de:a2:b1:c3:
ef:5a:99:b9:19:be:38:73:0a:55:f1:49:de:e6:5d:44:c3:97:
0e:f0:5c:8e:5b:7e:fb:f2:4e:39:6d:b7:09:66:76:82:a7:8b:
a8:50:82:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:22 2024 by rpki-client on console-ams.rpki-client.org