Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/cNG8KbaHCtZ9PK1zyt-ZCBMtP4E.roa
File: cNG8KbaHCtZ9PK1zyt-ZCBMtP4E.roa (raw, json)
Hash identifier: X4bGy44cHEBrUZVW3GIPcX2fXiX0PN7L8UMMCjoMShQ=
Subject key identifier: 70:D1:BC:29:B6:87:0A:D6:7D:3C:AD:73:CA:DF:99:08:13:2D:3F:81
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 018570306412BB46FAEA336A9DF916398E4F
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/cNG8KbaHCtZ9PK1zyt-ZCBMtP4E.roa
Signing time: Mon 02 Jan 2023 01:54:57 +0000
ROA not before: Mon 02 Jan 2023 01:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30917
IP address blocks: 195.56.141.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:64:12:bb:46:fa:ea:33:6a:9d:f9:16:39:8e:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 2 01:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=70d1bc29b6870ad67d3cad73cadf9908132d3f81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:78:ad:3c:11:fe:54:84:d2:61:6a:28:71:2d:
d8:20:60:b1:a6:c6:98:77:0d:b9:2d:4e:eb:e6:7d:
e9:39:c0:10:63:aa:ac:8e:58:61:09:39:d5:5b:be:
f5:b4:ce:65:0f:70:28:63:37:01:e3:65:7a:eb:f3:
a6:73:e7:de:ab:b4:d5:02:d9:36:42:71:b9:54:52:
e1:a5:b9:b2:03:62:65:1f:e7:0f:45:c5:67:a5:fd:
d9:9f:60:3d:78:39:f6:3f:21:22:b0:b1:36:a3:5a:
ce:47:a5:47:9f:ff:74:30:71:56:54:2f:78:e8:01:
7b:e7:40:dc:d8:a1:70:36:e5:f7:ae:ea:99:4c:21:
f2:6a:16:b7:4a:24:ca:1e:91:fe:20:d7:25:51:14:
e6:4f:04:2c:2e:4e:83:c4:63:1c:00:f1:f5:cf:6f:
aa:f5:b7:d5:5b:40:bf:95:7f:91:7f:fd:d5:41:a4:
4c:8d:3d:0a:c9:b3:31:c3:c4:b6:99:56:b8:46:c8:
f4:d1:96:30:45:2e:97:42:d9:c6:ab:46:50:80:14:
27:1a:23:ce:b9:1b:db:f9:13:18:35:af:bb:2a:e5:
34:e9:92:3e:96:64:e1:f3:5c:87:68:1c:3a:7e:fb:
3f:88:65:1e:8e:a7:02:62:8d:b0:5f:ec:f1:c4:9a:
88:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:D1:BC:29:B6:87:0A:D6:7D:3C:AD:73:CA:DF:99:08:13:2D:3F:81
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/cNG8KbaHCtZ9PK1zyt-ZCBMtP4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.56.141.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:03:2b:67:7f:03:9b:db:b1:52:67:bd:be:68:bd:b7:d4:f4:
b3:12:09:34:9a:01:89:42:5f:a8:2b:05:55:b3:7c:28:c2:39:
70:c1:66:89:23:7b:d8:93:d5:5d:26:5f:ee:d5:6a:6e:a9:13:
86:27:2c:c6:7c:13:b1:2a:e1:02:d5:5e:6c:fa:53:32:ca:ed:
c8:57:6e:bb:96:bc:36:b3:c5:a1:bf:3f:a6:15:aa:39:bc:1c:
23:77:89:3f:20:a4:d6:7c:c0:d7:e0:e4:be:d8:c3:1a:9f:0d:
5e:12:b2:01:09:20:5c:53:3d:8a:9e:51:55:c1:c2:b2:e2:6f:
02:ac:8e:6c:63:43:3a:ff:f1:95:a3:de:35:6b:cc:90:1e:3e:
76:93:07:5f:cc:54:ca:8e:5d:26:1d:99:92:8a:a0:0c:1a:e0:
db:63:93:c9:4e:31:9b:8b:90:a5:0a:bd:c3:40:b1:a1:da:ee:
ce:f6:2d:62:59:e9:31:65:3d:6b:f0:32:11:8d:b9:eb:12:2e:
7a:6d:d3:89:84:d4:e0:65:6c:e3:76:d3:84:b3:8d:a9:61:c7:
d8:1d:fe:6b:7b:f2:13:40:a8:aa:83:6d:0f:19:ec:69:61:10:
a9:06:84:b9:1b:c5:ce:22:46:d3:1a:ed:a7:8e:61:c3:e1:da:
54:56:51:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:47 2024 by rpki-client on console-fra.rpki-client.org