Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/l6yrc9jNAxNEmB5b1pEl6BpUaf4.roa
File: l6yrc9jNAxNEmB5b1pEl6BpUaf4.roa (raw, json)
Hash identifier: EjdBbhsKEmzOTkhBwcC+CfS/wjUZ50UQFQZU+0kOYAs=
Subject key identifier: 97:AC:AB:73:D8:CD:03:13:44:98:1E:5B:D6:91:25:E8:1A:54:69:FE
Certificate issuer: /CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Certificate serial: 018CC56EB58358855C7CC6DBB48BC93428A6
Authority key identifier: 2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/l6yrc9jNAxNEmB5b1pEl6BpUaf4.roa
Signing time: Mon 01 Jan 2024 14:30:16 +0000
ROA not before: Mon 01 Jan 2024 14:30:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 147186
IP address blocks: 195.95.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 29 Mar 2024 17:31:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:b5:83:58:85:5c:7c:c6:db:b4:8b:c9:34:28:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Validity
Not Before: Jan 1 14:30:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=97acab73d8cd031344981e5bd69125e81a5469fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:a7:ea:87:27:5c:9d:c4:cb:a3:ed:cf:8e:5c:
47:b9:92:72:5b:6e:1f:3e:e5:aa:ab:37:4e:5a:89:
e0:b5:63:49:7b:af:58:4c:28:b8:20:15:17:b9:fd:
87:43:37:e3:c2:d8:c4:14:a6:76:94:ab:72:4a:8f:
67:f8:5d:c3:db:ef:a1:c5:35:2e:05:84:69:4f:fc:
f3:75:e2:f4:bb:42:10:05:cd:00:9b:f4:14:1f:9d:
2a:b8:7b:39:fc:14:59:3f:8f:57:70:b7:5b:ce:6b:
ef:e2:75:f0:ff:79:e1:c9:63:39:01:be:d8:90:8c:
ba:a1:a8:f9:88:08:9a:d6:07:be:bf:df:f7:80:b1:
31:06:08:d1:10:1e:ed:23:7f:52:28:81:7d:6c:c6:
81:4e:6f:3f:81:1b:31:5c:eb:3b:52:eb:53:7f:47:
6a:5e:74:36:ee:8b:80:23:3f:a5:95:3d:07:47:6f:
39:7e:c2:d7:cf:b2:8f:18:b8:03:a6:f5:ec:77:f6:
26:45:a6:f5:69:82:0e:9e:03:c1:28:a4:f0:13:20:
23:32:aa:2c:65:57:95:ff:fa:24:95:bd:ec:d6:b0:
04:df:95:84:d3:da:3e:43:c6:06:92:38:d9:4b:93:
1c:59:24:ef:56:3f:f6:92:77:4a:c6:61:01:a3:7e:
6f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:AC:AB:73:D8:CD:03:13:44:98:1E:5B:D6:91:25:E8:1A:54:69:FE
X509v3 Authority Key Identifier:
keyid:2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/l6yrc9jNAxNEmB5b1pEl6BpUaf4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.200.0/24
Signature Algorithm: sha256WithRSAEncryption
91:2b:00:84:10:3a:43:69:3a:18:5a:bd:b3:8c:55:82:54:19:
81:92:3b:7a:28:56:00:94:c3:4f:e8:3d:07:91:d1:c8:ea:a3:
35:b9:3c:61:4e:c8:00:fd:be:c6:7d:26:33:0e:7d:63:08:60:
b9:ac:9f:87:22:80:f8:c0:0e:3a:61:a8:a7:41:5b:13:04:eb:
77:52:cc:57:04:bf:90:bc:c5:43:01:e5:01:52:66:65:12:b0:
a1:ea:b6:ed:ae:86:b4:90:b1:be:44:7f:ca:d5:a2:81:52:ca:
0e:7b:50:99:0e:f0:a4:26:8b:67:39:19:64:3d:0a:cc:03:9c:
6a:5d:c6:43:97:55:26:5b:3e:42:56:92:ec:0c:f4:84:03:a6:
55:2c:67:f6:86:ec:d8:90:7c:40:82:d4:bd:66:95:d8:55:80:
9b:09:25:e6:d3:94:32:a9:1c:27:ea:00:5b:9e:08:f6:a0:07:
ff:40:ec:79:39:67:dd:37:44:1a:2c:cf:71:d7:43:49:e4:32:
d7:02:d2:24:4e:bb:49:ac:2d:10:0f:cd:99:e5:83:e0:f5:f6:
fc:0e:5e:80:d6:13:ec:84:c5:c0:18:f0:1c:b3:68:2c:ee:11:
be:38:21:36:54:7c:a0:52:2c:8d:97:8c:0b:68:69:7b:76:c7:
6d:08:aa:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 29 20:57:05 2024 by rpki-client on console-ams.rpki-client.org