Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/ccf3a5-030d-4b54-8079-8a5f169a5ae7/1/iWi0jslrnE3800gQ8N9Lf1UwpCI.roa
File: iWi0jslrnE3800gQ8N9Lf1UwpCI.roa (raw, json)
Hash identifier: p8ZBHF7zDvKTHtp/XY+4YEqiozD1o+JptI5u/amTae0=
Subject key identifier: 89:68:B4:8E:C9:6B:9C:4D:FC:D3:48:10:F0:DF:4B:7F:55:30:A4:22
Certificate issuer: /CN=4f3573cd7d561cd37e0f331f6ca38de9202042b2
Certificate serial: 01856BDC84918A6641A25C273A9C6E093AE7
Authority key identifier: 4F:35:73:CD:7D:56:1C:D3:7E:0F:33:1F:6C:A3:8D:E9:20:20:42:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TzVzzX1WHNN-DzMfbKON6SAgQrI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/ccf3a5-030d-4b54-8079-8a5f169a5ae7/1/iWi0jslrnE3800gQ8N9Lf1UwpCI.roa
Signing time: Sun 01 Jan 2023 05:44:51 +0000
ROA not before: Sun 01 Jan 2023 05:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2860
IP address blocks: 195.246.238.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:dc:84:91:8a:66:41:a2:5c:27:3a:9c:6e:09:3a:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f3573cd7d561cd37e0f331f6ca38de9202042b2
Validity
Not Before: Jan 1 05:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8968b48ec96b9c4dfcd34810f0df4b7f5530a422
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:c5:41:7f:d7:b2:f1:a1:2d:98:1c:54:b2:93:
c1:d1:7f:c2:2c:97:96:61:15:d5:7b:45:0e:ef:5f:
5c:c1:eb:1b:9d:0a:cc:c5:ba:77:2a:0b:52:d8:8f:
37:0e:0b:66:e5:c9:01:47:c8:d6:70:94:19:bb:f4:
d1:77:69:c0:16:59:78:37:80:fb:a1:3a:1c:be:72:
01:8f:d0:93:be:6f:b8:2b:39:1a:9a:83:ea:c8:39:
49:ff:cb:23:4f:f4:92:e3:42:e1:9a:01:c0:04:58:
e2:0e:c9:33:3c:e4:79:ec:f8:8c:7c:3a:80:b7:3f:
64:8b:7d:ba:a4:4d:66:9b:62:c4:8a:05:7e:27:f5:
20:f0:d0:ca:c9:01:96:90:6c:5b:34:a0:9b:a6:4c:
3b:52:99:3d:c3:80:37:a8:55:4f:63:2b:df:f5:fd:
45:e0:ed:d4:e2:0b:8c:d8:78:a6:09:72:4a:f7:82:
25:98:32:d7:94:6b:aa:29:bb:18:3a:ef:c8:68:fd:
89:6f:1b:9f:8b:11:f7:5b:d5:fc:4e:98:24:d3:fb:
04:f2:d5:0c:81:26:68:d4:5f:b2:54:fa:c3:b4:60:
ea:0a:6d:7d:91:fd:5d:4f:ad:53:43:94:b1:b1:da:
2f:03:f3:eb:5a:c3:4b:99:d0:40:2e:cc:43:ca:52:
5a:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:68:B4:8E:C9:6B:9C:4D:FC:D3:48:10:F0:DF:4B:7F:55:30:A4:22
X509v3 Authority Key Identifier:
keyid:4F:35:73:CD:7D:56:1C:D3:7E:0F:33:1F:6C:A3:8D:E9:20:20:42:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TzVzzX1WHNN-DzMfbKON6SAgQrI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/ccf3a5-030d-4b54-8079-8a5f169a5ae7/1/iWi0jslrnE3800gQ8N9Lf1UwpCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/ccf3a5-030d-4b54-8079-8a5f169a5ae7/1/TzVzzX1WHNN-DzMfbKON6SAgQrI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.246.238.0/23
Signature Algorithm: sha256WithRSAEncryption
9e:0a:54:59:47:2e:0d:f4:5a:64:ec:0a:e6:81:4d:83:8b:54:
c2:bb:39:56:38:87:92:2c:38:b2:7d:f5:94:ba:a6:6e:08:3f:
1b:62:97:32:9a:3a:bb:c8:fc:15:74:60:31:aa:a3:27:ed:14:
89:4c:83:8d:39:87:bb:61:83:a0:d2:ee:aa:b0:b3:58:06:61:
86:82:d8:eb:f4:16:b5:5f:63:f4:01:91:e4:99:7d:b5:fb:f0:
12:12:a8:0f:4e:3e:37:cd:42:d1:e6:8f:2f:2c:0a:68:0f:e0:
48:fa:cb:6b:2a:d3:67:cf:a7:50:6e:26:a6:ed:d0:50:8b:2b:
9b:ba:03:63:3f:98:a0:82:e4:14:cb:4c:79:76:e4:5d:b9:c5:
f3:eb:6e:9e:49:e6:db:e1:63:79:e5:0c:0b:c5:5e:5f:7e:cc:
e9:cb:f7:f9:70:2e:e6:5a:57:87:f1:5e:43:ea:22:25:32:f2:
07:94:bc:a9:a6:f7:32:9c:64:eb:cc:de:a2:d8:13:de:08:89:
8c:c8:e8:a5:21:11:48:70:05:ad:85:6b:57:58:c0:79:3b:71:
8c:2d:c0:0b:19:09:c6:23:2a:b9:72:4c:48:82:ed:34:27:6f:
43:0b:d3:ad:8b:e4:3c:2b:c9:9e:0e:b2:a3:e6:95:69:3d:17:
ad:21:85:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:33 2024 by rpki-client on console-ams.rpki-client.org