Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/e3086c-d72f-41ea-9444-bdea63e5a7c4/1/c9ypYH-3vh0Ue1aoy7jnMVjpAa0.roa
File: c9ypYH-3vh0Ue1aoy7jnMVjpAa0.roa (raw, json)
Hash identifier: 0tn66wzkWG43pDFkNGtnpUTGT6TpLZW0bQyKb71ZoIg=
Subject key identifier: 73:DC:A9:60:7F:B7:BE:1D:14:7B:56:A8:CB:B8:E7:31:58:E9:01:AD
Certificate issuer: /CN=1cbd5746e300091ded1a11a13b16807b4fd0f1fc
Certificate serial: 018CC2DAC43C8DA7206FDB2021815E5D7EDB
Authority key identifier: 1C:BD:57:46:E3:00:09:1D:ED:1A:11:A1:3B:16:80:7B:4F:D0:F1:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HL1XRuMACR3tGhGhOxaAe0_Q8fw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/e3086c-d72f-41ea-9444-bdea63e5a7c4/1/c9ypYH-3vh0Ue1aoy7jnMVjpAa0.roa
Signing time: Mon 01 Jan 2024 02:29:26 +0000
ROA not before: Mon 01 Jan 2024 02:29:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200132
IP address blocks: 195.95.177.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Feb 2024 14:02:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:c4:3c:8d:a7:20:6f:db:20:21:81:5e:5d:7e:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cbd5746e300091ded1a11a13b16807b4fd0f1fc
Validity
Not Before: Jan 1 02:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=73dca9607fb7be1d147b56a8cbb8e73158e901ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:45:9a:84:af:b8:9c:24:2f:71:a2:fd:9a:c3:
d8:da:1f:6a:66:ee:4f:ab:90:d0:54:48:9e:3b:51:
3d:08:bc:cd:92:2c:8a:03:a3:63:1b:38:36:60:6a:
47:f0:be:cd:29:49:94:d5:5b:ee:7f:07:48:7c:70:
d4:fe:d7:c1:45:b9:a1:95:f2:5d:ff:50:72:cb:7c:
de:12:7a:3c:03:3b:54:51:12:ea:44:cb:68:19:c7:
30:30:8c:70:e2:90:30:e9:e2:b3:f8:87:cd:22:1e:
33:90:36:5c:cf:f2:73:6e:e5:1b:a3:5d:4e:15:26:
8a:b5:6d:e2:82:3a:b3:9f:81:e8:9b:d0:ec:21:cb:
86:ea:2e:f8:49:c1:6c:be:97:eb:d9:9e:42:38:5e:
fe:67:6e:00:cf:20:3e:30:ee:10:1d:3d:01:59:12:
20:e3:62:f3:f0:a6:00:c9:b2:e3:f9:5f:3d:d7:b4:
9c:d2:c9:b0:e8:64:50:fd:f1:77:81:15:8e:bf:90:
5e:12:ce:e4:25:9b:e5:b0:81:d7:4b:17:e0:72:e7:
b5:e6:7c:2e:dd:f4:a0:46:c4:50:d7:00:57:8f:4c:
7f:75:72:5f:2f:6d:21:bd:a0:58:8a:0c:3d:17:ed:
d5:d9:98:f0:8d:0d:60:5d:ca:68:de:f2:82:0f:13:
b8:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:DC:A9:60:7F:B7:BE:1D:14:7B:56:A8:CB:B8:E7:31:58:E9:01:AD
X509v3 Authority Key Identifier:
keyid:1C:BD:57:46:E3:00:09:1D:ED:1A:11:A1:3B:16:80:7B:4F:D0:F1:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HL1XRuMACR3tGhGhOxaAe0_Q8fw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/e3086c-d72f-41ea-9444-bdea63e5a7c4/1/c9ypYH-3vh0Ue1aoy7jnMVjpAa0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/e3086c-d72f-41ea-9444-bdea63e5a7c4/1/HL1XRuMACR3tGhGhOxaAe0_Q8fw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.177.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:c3:59:64:a1:d3:b5:e4:47:8a:3e:f3:4c:40:3f:52:f6:af:
5e:31:e9:08:43:85:04:a0:4d:af:5f:3e:2a:2e:9f:6b:e2:d2:
a9:01:c4:2b:e8:f0:e4:80:a6:0c:82:7e:98:67:92:cd:3c:f5:
8b:b9:b0:df:43:a7:ba:cc:f8:d0:c6:2a:4c:09:8a:89:91:9f:
66:c2:cc:9d:a9:4a:f4:3a:0e:c6:0f:7b:7a:38:83:47:24:fa:
79:a6:4a:cc:8e:43:1e:4f:2e:4f:0b:99:9c:ce:e2:fb:4d:c9:
57:d5:f4:c2:7b:a1:3a:f9:02:31:86:b0:a0:4e:17:55:5a:5b:
78:a5:4d:01:fc:1d:88:8e:78:f2:aa:25:e8:a3:f1:db:0f:c2:
8b:a2:24:50:c8:a9:92:d2:6b:ea:97:24:26:b4:c9:89:2c:5a:
77:af:6b:34:c0:6b:aa:0d:d9:2a:25:2a:4e:56:68:81:1f:51:
f8:4c:88:36:83:e1:09:db:d5:93:f1:12:93:ed:78:5d:3e:25:
85:de:62:13:0c:9d:23:ee:42:2d:bc:57:ff:3c:08:2f:f1:b4:
2b:a4:32:07:46:c8:b8:0d:c1:d9:7f:48:3a:f8:41:3c:79:3b:
f9:d3:ed:34:9a:bd:e0:42:51:f8:2c:d8:1c:29:1b:c6:74:64:
b0:d2:c0:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 14 18:19:22 2024 by rpki-client on console-fra.rpki-client.org