Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/7f1649-0c9d-405d-a134-66d253432f5f/1/V64EWUo3aXs-wciZOG3mf4ivlyQ.roa
File: V64EWUo3aXs-wciZOG3mf4ivlyQ.roa (raw, json)
Hash identifier: VRTD0dfHTRrZgwWFEfOkRdH3iKVWdnhI8h8NT/B0KDA=
Subject key identifier: 57:AE:04:59:4A:37:69:7B:3E:C1:C8:99:38:6D:E6:7F:88:AF:97:24
Certificate issuer: /CN=942f565ed16d8c337a8c8ab3cdc572ef1150f5a9
Certificate serial: 0185715E7FB55E3AC40E6F2782CABB07A07D
Authority key identifier: 94:2F:56:5E:D1:6D:8C:33:7A:8C:8A:B3:CD:C5:72:EF:11:50:F5:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lC9WXtFtjDN6jIqzzcVy7xFQ9ak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/7f1649-0c9d-405d-a134-66d253432f5f/1/V64EWUo3aXs-wciZOG3mf4ivlyQ.roa
Signing time: Mon 02 Jan 2023 07:24:56 +0000
ROA not before: Mon 02 Jan 2023 07:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47382
IP address blocks: 195.43.150.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:5e:7f:b5:5e:3a:c4:0e:6f:27:82:ca:bb:07:a0:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=942f565ed16d8c337a8c8ab3cdc572ef1150f5a9
Validity
Not Before: Jan 2 07:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=57ae04594a37697b3ec1c899386de67f88af9724
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:1a:17:d7:15:4f:8a:f0:98:57:3b:4d:ee:7f:
48:c8:c8:1f:0f:fa:75:5c:d8:ad:06:8d:86:55:ae:
60:58:c6:67:2e:fa:d2:36:7f:2a:de:ed:b1:d8:ad:
01:0c:32:db:a6:40:7f:c6:28:f4:00:07:a3:24:dd:
d9:0a:2b:0a:e3:0b:ae:d6:c7:14:00:4f:43:f7:2d:
15:e1:b3:97:25:e1:f7:35:a8:79:9d:cb:20:9e:3b:
3b:9b:64:7e:22:ed:31:d7:3a:5c:5b:04:47:02:de:
6f:a4:71:5c:5c:eb:d6:3a:6a:06:ee:93:62:98:4b:
57:52:b2:4e:ad:8e:db:3d:ef:da:c9:ea:39:a7:7f:
02:3f:93:4d:5d:2c:36:78:21:e6:d1:52:29:d5:c4:
9a:8e:ac:e0:72:35:6d:d0:cb:eb:ad:94:4d:56:61:
6e:ef:8b:eb:ea:29:35:46:f3:f3:9a:93:16:1b:77:
69:bd:b8:83:d1:da:e4:2d:80:03:ed:35:aa:de:75:
21:72:5c:b9:02:8d:7f:a1:41:33:07:28:5f:4c:52:
18:2f:43:13:31:ab:37:31:c4:47:3d:0c:55:57:27:
71:b9:a1:53:8b:c3:16:71:dd:18:4d:be:f0:7d:11:
52:13:94:32:91:9f:01:e6:18:9c:92:93:03:e0:4c:
24:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:AE:04:59:4A:37:69:7B:3E:C1:C8:99:38:6D:E6:7F:88:AF:97:24
X509v3 Authority Key Identifier:
keyid:94:2F:56:5E:D1:6D:8C:33:7A:8C:8A:B3:CD:C5:72:EF:11:50:F5:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lC9WXtFtjDN6jIqzzcVy7xFQ9ak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/7f1649-0c9d-405d-a134-66d253432f5f/1/V64EWUo3aXs-wciZOG3mf4ivlyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/7f1649-0c9d-405d-a134-66d253432f5f/1/lC9WXtFtjDN6jIqzzcVy7xFQ9ak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.43.150.0/24
Signature Algorithm: sha256WithRSAEncryption
02:dd:8a:55:b9:90:f4:4f:91:c3:f1:ad:17:ad:bb:2f:e9:73:
8e:a4:63:37:f8:bc:be:b7:88:85:0d:83:11:aa:6a:55:6f:41:
36:84:bf:d2:11:13:38:f3:9d:f9:64:70:89:9f:77:ec:91:10:
96:a8:31:cd:a6:d3:b4:7c:6d:9d:f6:82:7d:b0:76:30:02:8b:
55:14:ef:46:58:b5:e4:05:51:36:e6:21:5c:0a:9d:23:c2:a8:
bf:79:d9:21:ba:e3:78:0e:be:e3:2d:15:5c:88:80:af:ed:b3:
2d:52:9c:38:4f:38:12:34:68:ed:db:49:1f:2b:c8:75:88:7e:
b9:36:6b:77:05:19:69:6a:3c:e4:5b:d9:67:66:55:e4:f8:2a:
cc:f8:36:cc:51:83:6e:32:22:11:ed:7e:40:3d:5e:30:b4:5d:
82:13:5f:7d:63:66:df:62:b4:5b:ce:46:e3:10:db:a4:a0:ef:
73:cb:50:f4:f2:53:ce:56:54:10:96:38:bf:93:55:ea:36:f8:
c6:96:40:1b:9e:3e:2e:f4:9a:19:9f:23:a4:81:c2:25:75:79:
25:20:98:3f:ff:65:19:cd:5d:0f:7f:de:12:de:a9:95:78:26:
ec:21:c7:a2:44:32:51:68:38:c3:56:33:52:cb:71:fd:7d:30:
63:9c:0a:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:05 2024 by rpki-client on console-ams.rpki-client.org