Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/b681e4-fcf8-40af-aba3-cf3bdb32fd64/1/1vKlQz5r03kPYpqMf7923DddMqg.roa
File: 1vKlQz5r03kPYpqMf7923DddMqg.roa (raw, json)
Hash identifier: kUpZ4kWDam+VJoVCLvIpEgQdTMWuuZWhYNIJhBq+qlY=
Subject key identifier: D6:F2:A5:43:3E:6B:D3:79:0F:62:9A:8C:7F:BF:76:DC:37:5D:32:A8
Certificate issuer: /CN=f7f4cb8c5202cc535edafd20acb6a80502e4fd29
Certificate serial: 018570CBE3212CB1F6B1756FEDF53F21D79E
Authority key identifier: F7:F4:CB:8C:52:02:CC:53:5E:DA:FD:20:AC:B6:A8:05:02:E4:FD:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9_TLjFICzFNe2v0grLaoBQLk_Sk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/b681e4-fcf8-40af-aba3-cf3bdb32fd64/1/1vKlQz5r03kPYpqMf7923DddMqg.roa
Signing time: Mon 02 Jan 2023 04:44:48 +0000
ROA not before: Mon 02 Jan 2023 04:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213402
IP address blocks: 195.216.230.0/24 maxlen: 24
2a02:e3c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cb:e3:21:2c:b1:f6:b1:75:6f:ed:f5:3f:21:d7:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7f4cb8c5202cc535edafd20acb6a80502e4fd29
Validity
Not Before: Jan 2 04:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d6f2a5433e6bd3790f629a8c7fbf76dc375d32a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:39:1a:1b:ec:11:53:fb:64:39:a9:73:ea:1b:
ea:ed:a1:2f:00:ec:fe:12:06:43:df:a5:8a:7e:d7:
94:3b:fb:6d:cf:ba:d1:69:95:c9:6e:b7:8e:b5:ed:
db:0d:5a:a7:14:47:27:ab:e7:cd:f5:40:31:12:2e:
e2:a5:a2:03:11:9a:50:6f:53:c9:14:60:71:15:b7:
f2:42:95:12:5e:49:b0:92:13:a5:ed:f4:39:09:5c:
b0:31:fd:ca:61:15:6e:80:bd:85:1c:86:1a:59:d5:
1a:98:72:e4:ec:3c:48:75:93:2e:fa:be:05:9c:87:
bd:8b:81:fd:32:e8:9c:9f:58:86:ee:78:18:ee:8f:
b3:dd:fb:7a:22:35:60:f0:b0:8c:80:ed:b3:ae:9a:
71:3e:4f:73:c5:5c:7b:13:77:ed:94:17:bc:a2:e3:
bf:ed:99:5a:07:f3:ef:6d:bf:12:45:97:ae:7e:b6:
d8:a8:3b:2f:b3:f8:1b:98:68:75:f2:9e:23:a5:9e:
f0:36:dc:d5:d1:63:ea:29:d3:0f:be:c5:9a:e8:36:
18:53:ff:a2:37:fb:c4:35:2c:8d:19:3a:3b:c8:94:
93:6d:94:c7:6b:14:fb:24:14:94:86:b5:a3:53:5e:
f3:d6:20:21:a1:f1:e6:96:0c:3b:f0:16:e1:80:71:
2c:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:F2:A5:43:3E:6B:D3:79:0F:62:9A:8C:7F:BF:76:DC:37:5D:32:A8
X509v3 Authority Key Identifier:
keyid:F7:F4:CB:8C:52:02:CC:53:5E:DA:FD:20:AC:B6:A8:05:02:E4:FD:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9_TLjFICzFNe2v0grLaoBQLk_Sk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/b681e4-fcf8-40af-aba3-cf3bdb32fd64/1/1vKlQz5r03kPYpqMf7923DddMqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/b681e4-fcf8-40af-aba3-cf3bdb32fd64/1/9_TLjFICzFNe2v0grLaoBQLk_Sk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.216.230.0/24
IPv6:
2a02:e3c0::/29
Signature Algorithm: sha256WithRSAEncryption
86:7d:63:e6:10:89:81:2e:ab:15:4c:71:59:c1:bc:22:2d:d6:
a8:c6:0f:2f:c8:fc:8e:7d:81:03:ce:6f:7b:ea:a8:75:40:65:
aa:49:c9:ca:61:60:20:0c:33:37:04:ff:e0:29:f5:e0:4e:45:
89:6b:91:36:e1:7a:ce:78:b5:7a:81:5d:b7:68:97:26:1d:6e:
27:4c:58:bc:54:03:f7:a0:4e:9e:15:2c:f2:b8:d4:93:9b:38:
5b:c1:d4:87:90:5f:94:ae:7f:9f:79:cb:60:f8:78:83:30:94:
eb:24:15:b4:05:9a:51:cf:01:08:cc:99:4c:3f:b6:c6:a3:40:
21:c5:d6:e7:4e:eb:a6:0f:06:68:4f:7e:1a:ca:a7:f9:da:6e:
c7:49:82:2d:5c:18:0b:4a:75:ad:07:75:32:c8:f8:2a:92:00:
4a:f3:2f:2c:09:c6:f4:55:4c:92:51:41:7a:6c:7a:5c:e6:72:
00:cf:98:42:b6:0a:05:ca:db:54:23:cd:76:03:45:45:65:83:
29:66:55:f8:67:ad:e5:7c:bc:c5:15:bf:13:fc:aa:74:72:ea:
6a:76:19:ed:07:76:b0:73:21:c2:f8:0b:0a:72:6e:23:2b:e2:
b6:88:0f:38:8e:6f:db:32:d7:4f:ad:14:da:84:6e:5d:63:4b:
62:bd:bb:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:37 2024 by rpki-client on console-fra.rpki-client.org