Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/4DUX3Tn9qGS1qvrKUwPjyhf9bE0.roa
File: 4DUX3Tn9qGS1qvrKUwPjyhf9bE0.roa (raw, json)
Hash identifier: MZtV1MkjUzr+AQrQuVZj2GhU71XTHauTtjbG/BKVBKg=
Subject key identifier: E0:35:17:DD:39:FD:A8:64:B5:AA:FA:CA:53:03:E3:CA:17:FD:6C:4D
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 01857030687A14F93CFBA43F1339B34F9368
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/4DUX3Tn9qGS1qvrKUwPjyhf9bE0.roa
Signing time: Mon 02 Jan 2023 01:54:58 +0000
ROA not before: Mon 02 Jan 2023 01:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44277
IP address blocks: 195.228.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:68:7a:14:f9:3c:fb:a4:3f:13:39:b3:4f:93:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 2 01:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e03517dd39fda864b5aafaca5303e3ca17fd6c4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:d8:c3:55:19:81:78:3e:78:b3:10:1a:48:2c:
cc:be:5c:04:64:de:7f:f0:d6:b3:b8:ea:82:41:f6:
11:8a:39:33:3c:ab:6f:cc:f4:65:ba:12:36:bd:81:
95:73:b1:d8:2e:21:91:92:43:c0:b1:1c:9b:c6:56:
a2:4e:17:49:ee:bc:ef:c8:be:d3:fb:28:b6:64:06:
be:32:89:01:e6:f1:9b:c9:20:c5:9d:df:54:34:42:
a5:4e:8e:bb:bd:78:cc:c2:8e:06:9f:cc:43:da:60:
8b:aa:c3:89:9b:22:9f:e0:23:25:34:41:98:4c:12:
ba:81:01:31:4b:61:18:6f:d8:ac:bb:4a:01:f4:00:
5b:c5:6c:c8:0f:e8:ea:43:07:e8:b6:58:4e:20:05:
94:12:0e:53:05:37:45:54:33:f2:fa:86:94:90:ad:
97:b3:4e:b2:bf:71:8b:f5:95:ed:ec:d0:46:14:5e:
fb:0f:80:95:2f:ac:7f:c9:a4:8c:67:a4:59:66:a2:
25:db:ac:57:a3:83:1f:9d:70:01:b4:34:cc:c9:7d:
97:60:b7:3e:b6:a8:a2:1c:99:d9:0f:c7:be:2a:4c:
b1:0a:f3:c2:8c:9d:3a:81:6f:1c:e7:84:a3:73:01:
7c:90:c2:8b:dc:43:49:2e:d8:fe:87:76:f0:83:1c:
a2:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:35:17:DD:39:FD:A8:64:B5:AA:FA:CA:53:03:E3:CA:17:FD:6C:4D
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/4DUX3Tn9qGS1qvrKUwPjyhf9bE0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.228.59.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:6e:05:ce:69:cb:ed:ff:e7:14:e8:64:79:3c:c8:27:8e:e8:
58:1d:91:96:73:a4:95:bf:08:38:0f:cd:d9:50:e1:ad:57:f0:
fb:c0:aa:c0:5d:ed:fa:5f:10:b5:05:23:55:73:d6:09:11:af:
93:fb:43:47:fc:e8:ec:ab:e1:4c:f2:59:15:9d:63:8a:79:4c:
e0:00:93:20:41:39:c4:30:9a:00:06:e0:2c:76:bd:08:7c:52:
71:b6:2b:1e:78:c6:82:c8:0c:f7:7a:7a:52:ea:2f:a5:28:fd:
9a:b2:80:30:b5:00:5f:43:09:f2:0f:46:dd:ee:06:49:2c:dd:
31:85:4d:95:5a:2e:d0:d2:d4:83:44:a5:ad:d3:b3:f8:c6:50:
a6:9b:5c:64:f6:8d:ba:f8:ac:76:c5:d0:77:81:17:90:42:09:
0c:50:45:1c:52:1f:67:27:43:53:67:3d:73:d0:8e:e0:cf:5b:
f2:f0:2f:3e:52:16:c1:f5:e7:d8:e9:42:63:f3:bc:5c:98:4e:
60:71:f2:c2:2b:82:97:66:ab:0d:2e:db:d5:dc:30:f0:19:87:
23:54:f1:1d:ed:71:74:16:84:a7:d3:29:32:ba:97:31:fb:1a:
7b:45:4d:8b:47:52:a8:58:e3:64:ba:21:e9:61:84:dc:9b:2a:
54:b7:3c:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:13 2024 by rpki-client on console-ams.rpki-client.org