Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/e3086c-d72f-41ea-9444-bdea63e5a7c4/1/RyuHTRIIcL_xwdZ9tBP7h6goWUQ.roa
File: RyuHTRIIcL_xwdZ9tBP7h6goWUQ.roa (raw, json)
Hash identifier: HsKInEzv4kjOyAmhf+wCOlG+cW0LiJdDBFQ0ZBtI9Go=
Subject key identifier: 47:2B:87:4D:12:08:70:BF:F1:C1:D6:7D:B4:13:FB:87:A8:28:59:44
Certificate issuer: /CN=1cbd5746e300091ded1a11a13b16807b4fd0f1fc
Certificate serial: 0185704BEB2231282FACEF785DA293C55B51
Authority key identifier: 1C:BD:57:46:E3:00:09:1D:ED:1A:11:A1:3B:16:80:7B:4F:D0:F1:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HL1XRuMACR3tGhGhOxaAe0_Q8fw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/e3086c-d72f-41ea-9444-bdea63e5a7c4/1/RyuHTRIIcL_xwdZ9tBP7h6goWUQ.roa
Signing time: Mon 02 Jan 2023 02:25:01 +0000
ROA not before: Mon 02 Jan 2023 02:25:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16278
IP address blocks: 195.95.177.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:4b:eb:22:31:28:2f:ac:ef:78:5d:a2:93:c5:5b:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cbd5746e300091ded1a11a13b16807b4fd0f1fc
Validity
Not Before: Jan 2 02:25:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=472b874d120870bff1c1d67db413fb87a8285944
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:f6:98:5b:ec:62:4c:1a:4e:c0:a9:d4:65:2f:
f4:02:09:a5:0a:71:c2:a0:64:06:66:b6:ba:ed:03:
6c:3b:66:dc:18:b8:0d:86:11:19:2d:d9:c5:e2:8e:
a7:7a:bf:61:f7:6f:68:cf:e8:30:69:af:32:5a:32:
03:62:e0:37:25:ff:6f:78:46:8c:36:81:7b:a2:74:
97:72:0c:41:d3:86:57:9b:26:6a:a7:d5:5b:cc:08:
f3:83:a1:02:16:c9:3d:3d:ac:5d:b8:5f:07:53:65:
8c:66:4e:d9:53:2e:63:df:28:74:38:bc:3f:dc:18:
c6:c4:4e:f0:4b:64:88:24:83:ee:ba:9c:3e:16:c2:
58:ad:ac:3d:9c:c3:db:39:94:b3:3a:29:9f:72:9e:
f2:3f:49:ed:a0:3c:13:d1:3d:45:f1:a1:8b:d1:38:
0f:cb:9f:6a:96:3b:59:40:bb:94:a1:67:da:b7:d4:
f5:28:50:46:b7:5d:e2:05:62:f0:47:c1:1f:ae:dd:
8d:ef:5e:80:3e:a9:22:2f:b1:02:4a:6e:12:63:01:
49:0c:00:8e:63:08:c2:94:8b:7c:87:a8:74:38:50:
d7:ab:82:18:5b:37:33:0e:09:51:1d:e6:12:12:d6:
a7:13:75:c3:59:f7:c3:76:0f:84:f2:be:44:fd:46:
a0:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:2B:87:4D:12:08:70:BF:F1:C1:D6:7D:B4:13:FB:87:A8:28:59:44
X509v3 Authority Key Identifier:
keyid:1C:BD:57:46:E3:00:09:1D:ED:1A:11:A1:3B:16:80:7B:4F:D0:F1:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HL1XRuMACR3tGhGhOxaAe0_Q8fw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/e3086c-d72f-41ea-9444-bdea63e5a7c4/1/RyuHTRIIcL_xwdZ9tBP7h6goWUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/e3086c-d72f-41ea-9444-bdea63e5a7c4/1/HL1XRuMACR3tGhGhOxaAe0_Q8fw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.177.0/24
Signature Algorithm: sha256WithRSAEncryption
17:e3:cf:13:f8:f6:dd:9a:42:e1:f8:35:e9:b6:4a:f8:04:bb:
36:45:86:33:37:f9:a8:fe:39:b3:74:db:f1:6d:81:7e:b0:df:
1e:09:d5:1b:9a:76:1c:7e:9d:e3:91:64:88:61:9c:62:0d:3b:
ec:09:06:63:97:0c:f2:a1:88:3e:10:4b:99:b2:83:cc:c8:df:
a4:7a:4f:c9:c7:e8:3d:5e:74:11:f2:33:66:73:30:44:bb:1f:
5f:99:fc:b4:ee:bf:33:d1:ae:40:0a:e3:74:6b:7b:21:3e:73:
b3:e7:75:fa:2a:79:2c:b3:90:e8:22:af:d1:b6:68:01:b5:14:
f2:de:af:0d:66:64:4d:d8:ed:aa:3d:dc:2c:c7:85:4c:8a:9a:
28:07:50:37:53:5c:66:9e:96:4e:ab:2f:f3:74:d6:9e:6d:8b:
97:11:84:81:ea:b1:b5:c3:c3:e2:27:a2:4e:4b:b1:ae:95:5a:
ea:30:a7:23:54:45:49:17:e0:cc:8b:7e:94:9f:0d:4a:25:10:
a1:2a:9d:77:b6:97:b4:3e:1b:c3:22:c5:79:17:72:46:a8:f8:
38:c3:3d:2e:70:1e:b9:79:62:a7:f7:c5:66:49:2f:04:53:4f:
f4:9d:e9:14:84:77:77:27:43:22:0c:67:f2:e3:bc:06:10:73:
06:34:c3:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:56:44 2024 by rpki-client on console-fra.rpki-client.org