Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/4eK4YWmBRVDuqThUpptHNgLC0u4.roa
File: 4eK4YWmBRVDuqThUpptHNgLC0u4.roa (raw, json)
Hash identifier: /JAhYePD86Lu+5WLUrcBiYl2w4Is+OGTLYd0VOp9k1Q=
Subject key identifier: E1:E2:B8:61:69:81:45:50:EE:A9:38:54:A6:9B:47:36:02:C2:D2:EE
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0185719E873AAD0122ED4AE90260FFBCADB6
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/4eK4YWmBRVDuqThUpptHNgLC0u4.roa
Signing time: Mon 02 Jan 2023 08:34:52 +0000
ROA not before: Mon 02 Jan 2023 08:34:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57503
IP address blocks: 195.209.116.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:87:3a:ad:01:22:ed:4a:e9:02:60:ff:bc:ad:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jan 2 08:34:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e1e2b86169814550eea93854a69b473602c2d2ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:a4:9b:f9:d7:8b:f3:dd:80:70:14:79:2a:60:
02:37:56:48:8f:01:a5:01:84:37:02:74:a8:5c:96:
5d:23:9d:16:c2:5c:b6:22:4f:c5:32:d3:98:fd:77:
54:55:ce:3b:bd:7b:c5:ba:2e:84:41:2d:18:7f:50:
9f:77:da:c6:75:ef:84:03:a1:cd:c1:55:c4:b7:e3:
cd:43:2d:c6:47:95:10:4c:66:32:13:90:18:5c:cc:
81:2e:e8:7a:d0:37:af:17:a6:8f:41:7b:1f:bf:db:
7b:6f:1a:54:78:c0:ac:9e:ea:e8:db:38:8c:9b:8d:
ca:67:64:92:83:61:5d:6c:14:c7:e8:86:69:95:c8:
84:2a:5a:5b:91:9a:ff:1d:ec:fb:7b:2c:0b:0b:a8:
5b:96:f7:62:b2:01:d3:47:43:14:aa:b7:cc:1f:38:
c7:b6:d2:40:fe:58:0f:b9:04:4e:e6:e0:9a:0a:64:
52:50:a0:bf:41:fc:4c:1e:3f:2e:e2:04:43:67:a7:
9a:d7:f3:63:1f:23:72:ae:9d:b6:c0:76:6c:c7:55:
7d:52:19:7c:01:36:76:27:67:4a:a8:ad:82:d7:f1:
67:3f:79:fe:e7:60:a4:c2:52:e2:37:27:a3:b5:f1:
b6:2a:5a:73:70:01:01:a1:02:1a:40:e4:d6:d1:2c:
ef:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:E2:B8:61:69:81:45:50:EE:A9:38:54:A6:9B:47:36:02:C2:D2:EE
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/4eK4YWmBRVDuqThUpptHNgLC0u4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.209.116.0/23
Signature Algorithm: sha256WithRSAEncryption
70:ab:3c:4e:1c:10:31:52:63:8c:ed:b8:7f:23:ed:08:16:44:
a4:29:26:a0:21:cc:ce:2c:5f:e3:0a:26:3c:24:5e:61:f3:a0:
44:eb:da:12:95:1f:3e:67:ea:5d:2b:51:8f:b7:11:64:8b:66:
3b:36:d3:b8:9e:9f:46:2d:57:92:a2:4e:26:4c:ee:91:35:85:
25:6d:71:76:d8:ef:ab:02:ec:fd:7a:08:ff:b4:59:16:2a:66:
32:60:d3:33:f3:cd:04:2e:29:ae:41:b3:f7:41:27:0d:a3:fe:
1f:4b:e7:41:3f:d6:d8:f6:13:60:ab:eb:08:9a:d0:49:11:54:
5c:67:a5:bb:ee:d7:33:51:fb:59:a9:10:35:5f:fb:bb:8d:04:
2b:01:96:e5:67:7f:ae:d9:a8:5f:42:36:83:82:2e:3a:7f:be:
31:8d:e7:3a:1e:3c:0f:73:45:f8:da:28:89:59:87:30:8f:fc:
58:6a:3c:ae:f9:13:da:4e:4a:26:2d:5a:37:ce:5a:b1:ec:15:
d4:0b:35:05:2a:a8:1b:98:d2:c9:f0:53:0b:db:87:a8:5a:c7:
c3:ba:21:05:9d:0a:6a:49:85:e7:da:97:32:8f:09:0d:ba:74:
92:48:3c:d9:b8:7f:f4:fb:25:eb:3a:e2:f3:aa:4d:54:4a:8b:
db:89:6f:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:58 2024 by rpki-client on console-ams.rpki-client.org