Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/a4dH43q1OCIbVM6cuDlwRmsTywI.roa
File: a4dH43q1OCIbVM6cuDlwRmsTywI.roa (raw, json)
Hash identifier: uZh2iNbHU/8xTbiAz3nMiJ5UeqZ0BrIU0rNHFcJs9Y8=
Subject key identifier: 6B:87:47:E3:7A:B5:38:22:1B:54:CE:9C:B8:39:70:46:6B:13:CB:02
Certificate issuer: /CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Certificate serial: 018A4151A5B5890047D2B1859B59E3C23632
Authority key identifier: 2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/a4dH43q1OCIbVM6cuDlwRmsTywI.roa
Signing time: Tue 29 Aug 2023 12:43:04 +0000
ROA not before: Tue 29 Aug 2023 12:43:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5065
IP address blocks: 195.95.201.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:41:51:a5:b5:89:00:47:d2:b1:85:9b:59:e3:c2:36:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Validity
Not Before: Aug 29 12:43:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6b8747e37ab538221b54ce9cb83970466b13cb02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:21:2f:21:ac:6f:58:d8:79:4b:81:a1:fc:b7:
db:16:b1:c6:ec:bb:ca:ad:7c:48:b2:9c:b7:ba:ee:
ec:ed:16:78:c3:7f:e2:42:9e:7c:69:70:7c:3e:fd:
e3:4a:ea:69:a4:6f:2a:82:a1:44:57:a4:63:f0:dc:
ba:80:b9:3b:a4:48:86:10:6a:c4:13:0a:03:8d:37:
d5:91:59:a4:4d:f6:7d:fd:fd:9b:63:d2:b3:8d:ee:
b3:73:f2:54:99:7b:b4:40:94:68:2d:87:cf:ea:dc:
a8:cc:46:c3:36:f1:4b:5e:34:08:a1:62:78:95:f4:
03:ba:a0:8e:6d:1b:eb:a4:f2:bf:a8:86:d4:0c:ee:
3b:a1:b6:f0:27:42:07:3c:ee:22:dd:dc:f9:e5:50:
fd:7a:70:56:0f:66:00:8a:11:27:34:f6:47:9f:e8:
6c:a3:83:df:3b:e1:26:01:79:f4:ee:5b:70:60:6a:
50:e6:a5:62:20:87:2f:40:3f:20:d9:6d:d2:04:83:
30:58:15:e1:72:40:51:7b:47:df:b2:41:07:4d:58:
53:ea:a4:c0:49:46:ea:f8:13:8c:7d:3f:b8:48:48:
a9:27:02:c1:10:b1:4b:82:cd:0a:9f:26:39:c2:7f:
cf:e8:ce:ec:c9:11:5c:08:3e:0d:f8:9f:bb:36:29:
9e:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:87:47:E3:7A:B5:38:22:1B:54:CE:9C:B8:39:70:46:6B:13:CB:02
X509v3 Authority Key Identifier:
keyid:2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/a4dH43q1OCIbVM6cuDlwRmsTywI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.201.0/24
Signature Algorithm: sha256WithRSAEncryption
24:ff:bf:72:15:30:32:d5:52:0d:00:5d:79:cf:9f:e4:25:a2:
1e:f5:1d:31:eb:e2:14:56:79:d6:61:c4:22:0d:38:b7:dd:80:
d7:c2:f2:e6:0a:a2:17:f7:6c:56:d4:66:8f:1a:fd:7d:83:71:
9c:61:0a:f5:12:62:cb:86:ed:48:e2:4d:ad:14:1c:c7:c8:5f:
09:e7:49:8d:6c:ba:a1:7e:6c:1c:4e:8f:b3:19:88:a9:3e:12:
f5:30:85:ba:1b:78:4a:d9:2d:e5:6f:78:fe:a1:f1:5c:eb:45:
b7:7e:b6:d3:7e:a7:18:27:b8:1b:e0:e6:cc:95:66:50:4f:98:
3d:ed:50:e8:59:4b:2a:95:30:f4:d5:ee:b8:f8:5e:64:ea:8b:
a6:2e:94:48:a2:a3:fb:7c:10:73:8e:99:9a:c2:2c:ae:ea:84:
bb:53:8c:e5:6b:e2:6c:df:e9:82:46:62:d8:3e:f3:31:3f:f1:
f4:f6:db:e4:09:29:88:25:d3:05:81:63:aa:67:7e:16:73:e1:
95:8d:d1:3b:bb:fa:fb:cc:89:c2:e4:ba:d3:f2:38:68:d7:4b:
9e:67:2c:74:6d:cc:17:05:6d:06:78:5d:e5:1c:6f:88:e5:1a:
05:8e:63:e3:d2:e4:4b:eb:60:76:39:67:3c:bb:25:f3:63:a3:
8c:7e:0a:25
-----BEGIN CERTIFICATE-----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Generated at Tue Oct 3 13:25:25 2023 by rpki-client on console-fra.rpki-client.org