Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/iAUXBXuvyxLyhZrGVu_xFjzwnvU.roa
File: iAUXBXuvyxLyhZrGVu_xFjzwnvU.roa (raw, json)
Hash identifier: bowP/3GqFwQfbSOS9H9wemytNJEEjMubqF3tuVoaf10=
Subject key identifier: 88:05:17:05:7B:AF:CB:12:F2:85:9A:C6:56:EF:F1:16:3C:F0:9E:F5
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 0185703064CF9AB2187D803DAA0FFE0FC0CD
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/iAUXBXuvyxLyhZrGVu_xFjzwnvU.roa
Signing time: Mon 02 Jan 2023 01:54:57 +0000
ROA not before: Mon 02 Jan 2023 01:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 33954
IP address blocks: 195.228.53.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:64:cf:9a:b2:18:7d:80:3d:aa:0f:fe:0f:c0:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 2 01:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=880517057bafcb12f2859ac656eff1163cf09ef5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:83:3b:e5:bb:13:63:ea:9e:59:50:d1:70:88:
58:df:4b:35:92:b2:bf:88:59:77:87:5d:27:f6:23:
18:8e:60:9c:d6:a4:e7:96:f9:10:55:09:fe:8c:56:
57:4d:23:3e:83:03:d3:f9:17:a8:c6:b2:91:c5:2e:
e4:10:cc:01:84:93:70:5e:e6:7c:16:82:19:08:40:
8f:9e:00:4a:66:5a:df:17:b8:9d:7a:20:c6:4f:86:
4f:32:3a:3d:b6:e9:b3:c9:4b:87:0d:e9:ca:ea:35:
9d:0a:37:8c:05:bc:c4:9d:1b:0f:be:1d:08:95:37:
5e:e7:6b:8a:3e:45:72:db:44:d1:24:52:1a:dd:f4:
0e:cd:3b:c1:d0:e9:f0:a2:63:86:c3:4e:23:ed:ac:
91:02:86:9c:19:40:8c:23:a6:2e:01:71:50:50:0a:
d0:68:1e:d7:61:ed:7d:d3:0d:3a:3b:92:5a:c6:dd:
b2:10:e9:68:91:2b:06:10:cd:54:8c:cc:57:93:98:
d8:0b:ce:49:66:22:37:f9:4d:f1:5a:5a:74:34:9d:
35:e7:34:e3:92:87:c5:5f:25:13:2d:d6:da:71:42:
26:ed:41:9b:5f:d9:8a:20:5a:d7:82:62:9b:a7:6e:
36:a4:9d:c9:f5:06:ea:7a:e9:8d:20:fb:47:02:c2:
34:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:05:17:05:7B:AF:CB:12:F2:85:9A:C6:56:EF:F1:16:3C:F0:9E:F5
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/iAUXBXuvyxLyhZrGVu_xFjzwnvU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.228.53.0/24
Signature Algorithm: sha256WithRSAEncryption
62:17:23:fa:6a:31:35:66:a3:37:0e:50:99:52:b7:1f:27:5a:
39:a0:6b:96:9d:dd:c1:41:89:12:aa:1b:84:26:44:07:a2:72:
f6:a9:c0:bf:08:b4:33:e3:0a:2e:41:d8:4b:63:98:70:ba:9b:
92:2d:9b:64:eb:86:f2:d8:e0:e9:61:e6:ee:53:d9:bc:d1:78:
88:aa:6c:b8:c9:e9:0c:4e:25:25:b7:d8:8e:79:d9:46:ff:2c:
b2:b0:98:2e:7f:6a:c5:f4:fa:65:0e:eb:d0:a4:47:7a:5a:d2:
25:ab:f1:fd:54:06:74:4b:8b:60:c5:e4:3b:ae:3a:31:c7:da:
30:14:17:ce:a4:a6:e9:28:aa:61:91:6e:82:ef:cf:b0:37:7e:
10:64:b4:d4:bd:4c:69:21:52:7a:5c:61:26:06:09:f1:d8:62:
7c:cd:93:77:c5:29:41:80:81:46:b1:8d:c7:1d:6c:3d:9e:d9:
c5:79:bc:0e:ee:b3:bf:95:5f:e5:7a:38:00:d2:f2:83:40:67:
03:27:de:38:20:69:22:91:d1:6b:c8:8e:49:29:35:a5:95:ad:
6e:1f:c1:28:98:d7:43:cc:b5:06:a4:d7:88:ec:f7:33:2d:5b:
93:02:c2:d8:08:79:09:cf:49:6c:e6:85:03:27:ce:37:98:6e:
d9:3e:bc:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:21:51 2024 by rpki-client on console-ams.rpki-client.org