Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/iZV9kTHckbVRIlbZ8jOeG7WoVo4.roa
File: iZV9kTHckbVRIlbZ8jOeG7WoVo4.roa (raw, json)
Hash identifier: R5oxQsIqxvCb127k7bncvCEUxWD3a1Ud71fDMFogvMU=
Subject key identifier: 89:95:7D:91:31:DC:91:B5:51:22:56:D9:F2:33:9E:1B:B5:A8:56:8E
Certificate issuer: /CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Certificate serial: 0191A911CFFABAB54729BEE620DAFBD5FD5B
Authority key identifier: 65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/iZV9kTHckbVRIlbZ8jOeG7WoVo4.roa
Signing time: Sat 31 Aug 2024 15:33:22 +0000
ROA not before: Sat 31 Aug 2024 15:33:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214304
IP address blocks: 195.216.161.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 10 Sep 2024 17:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:a9:11:cf:fa:ba:b5:47:29:be:e6:20:da:fb:d5:fd:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Validity
Not Before: Aug 31 15:33:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=89957d9131dc91b5512256d9f2339e1bb5a8568e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:2c:12:fe:09:1c:0c:b3:f8:7c:d0:f6:a6:97:
19:4f:d3:24:09:75:62:7d:e7:28:ba:dd:cf:33:50:
e1:52:a8:94:81:69:f6:40:31:c2:44:ae:53:7b:1a:
bf:9c:e4:f9:95:03:c6:ec:44:8b:8a:7b:31:14:b2:
eb:41:a1:d9:06:62:ed:9e:25:3a:f1:8b:43:61:a3:
a2:79:60:b8:56:58:97:98:f3:de:ee:d6:31:81:68:
2d:ac:33:7b:4c:6b:2f:74:91:cd:93:74:d4:02:46:
d1:b7:3f:9e:27:6a:e5:da:b1:c5:dc:a2:ca:1d:9f:
c1:1a:da:2e:71:7e:40:d4:4d:68:1e:8a:af:18:cc:
b5:0a:80:05:37:c7:75:ca:a1:34:00:94:ae:94:0c:
6f:9b:48:5d:da:7a:17:bd:d0:6a:97:9a:29:ff:07:
8c:f7:ea:82:21:6e:5a:1b:0c:47:06:bc:35:3e:00:
45:14:bd:22:2f:26:f6:8d:b1:e3:78:45:29:7f:cc:
fe:fc:b3:21:1c:70:a6:e1:01:50:01:a4:f0:3e:7e:
0f:8e:38:ab:18:4c:5c:a7:a5:fb:ac:1d:58:ae:34:
04:c1:e7:1b:c7:03:d1:6c:ed:64:34:b4:0b:88:8b:
dc:1d:0a:97:83:02:e1:54:00:e8:da:57:9c:72:7a:
96:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:95:7D:91:31:DC:91:B5:51:22:56:D9:F2:33:9E:1B:B5:A8:56:8E
X509v3 Authority Key Identifier:
keyid:65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/iZV9kTHckbVRIlbZ8jOeG7WoVo4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.216.161.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:d3:a3:38:de:02:e9:d9:1d:4b:6a:a0:f0:4f:41:d2:37:c5:
a6:6d:27:f8:e9:3f:09:8c:b8:20:f4:05:6b:69:de:08:f9:17:
2e:a0:ee:b7:d4:d2:ed:97:c7:28:8d:45:86:c9:b2:5b:19:b5:
f1:4a:ba:1e:d6:56:6d:fb:dd:2a:31:3e:9d:03:5d:09:3e:91:
88:bd:50:60:ef:52:46:77:12:a8:ec:55:ef:34:48:71:23:ed:
43:8b:ab:72:a8:c7:61:7e:33:24:2c:d3:9e:bb:11:ff:c6:94:
46:3e:0f:75:dd:f5:44:df:53:a1:26:7b:fb:2b:1e:0b:02:fb:
34:8e:58:79:69:82:1a:89:8f:99:08:ea:6a:d8:77:5d:a2:5a:
17:b4:c5:28:34:77:de:60:c2:16:34:c0:5e:8f:f1:20:b9:e0:
44:3c:22:54:9e:02:91:1d:2f:91:96:5a:b2:e2:c9:0c:5d:3a:
6e:99:ba:46:ae:63:23:f1:c3:ca:e3:f4:1a:54:68:0a:c7:54:
bf:02:3e:b2:f4:30:a0:01:13:5c:e9:67:1b:84:6a:c4:b0:b8:
a3:6e:f3:5b:a5:77:b3:a6:27:bb:7f:1e:7c:6d:48:2a:70:d8:
44:b7:37:c1:02:6c:eb:45:d2:24:5c:ea:ef:56:e6:ea:25:ac:
15:5f:22:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 10 18:33:31 2024 by rpki-client on console-fra.rpki-client.org