Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/74d7cd-04e1-49d8-aad9-82043b9e4f71/1/9jWLBo9aWn5FjmnBt31eIEf1DH0.roa
File: 9jWLBo9aWn5FjmnBt31eIEf1DH0.roa (raw, json)
Hash identifier: lTzhVkNTbOTZgCw/6kPOooI5O/S5S6ouzG4bQG+fxMQ=
Subject key identifier: F6:35:8B:06:8F:5A:5A:7E:45:8E:69:C1:B7:7D:5E:20:47:F5:0C:7D
Certificate issuer: /CN=710068d5bf1bffd79174e37501bfa17f917b313d
Certificate serial: 01891BC82B9AE0A35CCD6BF8D48C98C2EA06
Authority key identifier: 71:00:68:D5:BF:1B:FF:D7:91:74:E3:75:01:BF:A1:7F:91:7B:31:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cQBo1b8b_9eRdON1Ab-hf5F7MT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/74d7cd-04e1-49d8-aad9-82043b9e4f71/1/9jWLBo9aWn5FjmnBt31eIEf1DH0.roa
Signing time: Mon 03 Jul 2023 12:44:10 +0000
ROA not before: Mon 03 Jul 2023 12:44:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199116
IP address blocks: 195.14.28.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:29:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1b:c8:2b:9a:e0:a3:5c:cd:6b:f8:d4:8c:98:c2:ea:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=710068d5bf1bffd79174e37501bfa17f917b313d
Validity
Not Before: Jul 3 12:44:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f6358b068f5a5a7e458e69c1b77d5e2047f50c7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:7d:4c:54:73:d3:e9:83:3c:2f:5b:b5:f7:a7:
16:e8:96:4a:43:93:6f:65:9b:b1:44:fb:cd:54:f5:
aa:69:f5:5a:e9:92:cd:70:9b:e2:86:ad:97:22:7d:
c3:be:ab:88:1a:3d:08:5b:6f:6e:15:74:b7:88:97:
5c:da:e1:d7:7d:a0:ed:5c:0d:08:f9:59:a6:78:68:
13:ec:58:2e:cd:9e:6f:8c:90:f4:b8:98:6b:f2:3d:
bf:60:70:b4:44:24:30:6c:01:26:70:e4:0d:b2:76:
7a:cd:f5:ff:99:49:d8:54:a1:1e:a6:ab:d4:53:28:
e3:62:84:5d:4d:c2:b1:9e:f2:9e:e7:c4:e8:04:f7:
40:c9:0c:a1:fb:c9:cd:8f:44:c6:50:b8:9b:44:c2:
e8:b4:e5:85:4d:46:0f:86:92:2b:7c:89:c8:bb:e0:
61:82:83:5e:b7:c4:92:17:57:70:30:9f:68:7d:bf:
50:8d:a1:5d:b5:22:d4:23:40:78:23:55:9f:d6:54:
8a:88:02:c1:6f:10:d3:cc:72:31:72:36:5c:3e:5b:
79:e8:bf:25:07:ea:f6:9e:25:cb:58:04:a9:a6:6c:
b2:db:5d:fa:a7:6e:85:96:f0:11:3c:8e:44:4d:7a:
32:da:bc:47:f3:93:71:01:4b:d8:9f:a4:f5:74:9b:
40:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:35:8B:06:8F:5A:5A:7E:45:8E:69:C1:B7:7D:5E:20:47:F5:0C:7D
X509v3 Authority Key Identifier:
keyid:71:00:68:D5:BF:1B:FF:D7:91:74:E3:75:01:BF:A1:7F:91:7B:31:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cQBo1b8b_9eRdON1Ab-hf5F7MT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/74d7cd-04e1-49d8-aad9-82043b9e4f71/1/9jWLBo9aWn5FjmnBt31eIEf1DH0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/74d7cd-04e1-49d8-aad9-82043b9e4f71/1/cQBo1b8b_9eRdON1Ab-hf5F7MT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.14.28.0/24
Signature Algorithm: sha256WithRSAEncryption
14:5f:00:01:23:65:af:a1:dd:9d:9f:16:b6:ae:bf:2a:f6:48:
e3:12:c5:f8:4a:af:2d:33:12:5a:6c:0c:0d:d6:d9:83:2f:c3:
91:bb:0e:13:45:50:fd:fa:7a:2b:e4:8f:91:a5:11:1f:e2:57:
9a:ba:19:02:35:e1:71:0e:6c:0f:c2:51:0c:4d:27:c5:ff:38:
4b:58:8c:82:5a:74:a2:43:4d:39:1d:2a:90:b1:ff:20:00:4e:
3a:bd:ff:8f:0e:ff:f1:83:8f:c1:36:2f:d5:41:6f:c2:f4:69:
5c:4f:44:7b:3e:b5:5d:e9:49:9e:bf:00:ef:2d:5e:35:00:13:
27:c5:19:3d:ae:88:71:4d:2d:73:58:64:ac:95:65:4e:7c:50:
03:03:a1:c0:53:60:13:c1:35:ed:b3:95:15:8a:e7:ae:16:19:
aa:fa:88:70:99:0c:3f:01:62:92:4d:cf:06:b2:6a:ba:13:3c:
da:19:41:1b:67:0a:1d:d9:3b:32:28:88:d6:bc:d1:7b:22:95:
10:98:3d:b1:05:a1:8a:2a:1c:a0:88:7a:c4:20:e5:66:63:39:
f3:f6:63:b5:c4:da:04:fa:e7:d2:bf:ba:7d:5c:79:7d:5d:6d:
b2:44:75:c9:18:03:47:55:e7:2d:cc:6e:f0:2c:7a:fd:09:bc:
d6:7d:9a:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:46 2024 by rpki-client on console-fra.rpki-client.org