Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/CnKhSFUt2Lc17O1Ds6d3mkyiwPw.roa
File: CnKhSFUt2Lc17O1Ds6d3mkyiwPw.roa (raw, json)
Hash identifier: UQkTh5vkt/aKpepKPLsz8K8DVLr1z13PZAEiljlkHNE=
Subject key identifier: 0A:72:A1:48:55:2D:D8:B7:35:EC:ED:43:B3:A7:77:9A:4C:A2:C0:FC
Certificate issuer: /CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Certificate serial: 01856D664B82AB7EFAC06B6467ACE504CF8E
Authority key identifier: 1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/CnKhSFUt2Lc17O1Ds6d3mkyiwPw.roa
Signing time: Sun 01 Jan 2023 12:54:58 +0000
ROA not before: Sun 01 Jan 2023 12:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209637
IP address blocks: 195.74.65.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:66:4b:82:ab:7e:fa:c0:6b:64:67:ac:e5:04:cf:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Validity
Not Before: Jan 1 12:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0a72a148552dd8b735eced43b3a7779a4ca2c0fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:f6:a2:c9:9a:36:38:76:8b:3d:3e:8c:13:84:
63:33:24:1e:c8:8d:55:95:13:fa:f6:87:ee:a1:c5:
a0:06:2f:30:55:97:ac:8d:0e:2c:01:b2:cb:6b:c8:
d8:46:6d:61:48:d6:65:1f:bf:d0:6a:fb:34:5d:ac:
40:e9:e2:87:3c:e9:f2:67:3f:b3:c4:d1:7f:71:fa:
6b:2e:e9:cd:39:bb:c8:9d:f9:88:78:d2:58:e2:bd:
f0:3e:86:07:d5:06:3f:e9:98:4b:91:69:3b:1f:60:
1c:ae:78:aa:f1:7b:5a:80:0e:7b:17:74:19:c7:e4:
44:30:d7:9b:03:03:aa:86:f3:a6:a6:0f:63:c5:34:
46:76:ad:65:2d:49:dc:15:4d:87:a1:57:c0:5c:6b:
ba:8d:28:6c:cc:e8:de:d7:90:9e:0d:af:d5:35:64:
b9:9e:d8:10:85:4c:b0:8b:c7:5f:26:5d:a0:cb:b0:
48:0a:92:3a:bc:02:21:2b:fc:db:42:6e:53:b3:48:
b1:80:50:d5:e7:37:26:4c:26:ed:cf:fc:64:96:88:
0c:06:2d:1d:a6:16:7f:6a:50:6f:93:c5:17:67:22:
11:df:7c:04:7f:77:a2:f1:f4:c2:68:c0:2d:7a:8b:
6b:f9:75:56:87:b8:d0:ce:09:22:6d:93:41:40:85:
9b:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:72:A1:48:55:2D:D8:B7:35:EC:ED:43:B3:A7:77:9A:4C:A2:C0:FC
X509v3 Authority Key Identifier:
keyid:1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/CnKhSFUt2Lc17O1Ds6d3mkyiwPw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.74.65.0/24
Signature Algorithm: sha256WithRSAEncryption
92:ce:af:69:6f:78:a0:c5:47:40:c8:7b:75:77:b9:7f:be:38:
26:3f:31:fd:8a:52:80:73:af:2e:56:d3:d5:4b:34:18:ed:d5:
af:97:b6:b6:49:dc:d0:36:12:6a:f8:27:65:64:3a:a5:e1:f4:
20:00:62:e5:0f:e1:d0:3c:4d:a4:77:43:bc:a0:f3:08:96:c6:
de:12:93:73:88:60:e4:9d:b1:54:8b:71:01:8a:34:94:ab:e8:
b5:4d:f5:8e:4c:c6:f6:14:73:d6:cd:3f:02:61:00:e0:1b:4b:
62:55:a1:e8:05:0a:d2:1a:06:dd:5d:b1:cd:55:6f:11:f0:2c:
cb:94:6f:38:5f:31:3e:67:38:49:cc:33:8a:c1:c7:71:bb:b9:
c4:67:42:b3:a1:1c:02:ed:f7:b6:c7:26:9c:49:b3:a9:15:7b:
3c:8d:26:bb:6f:b2:73:d8:d3:46:30:18:49:89:a8:84:82:54:
47:47:4d:e8:ab:72:8f:d1:8f:2a:e5:4f:97:f9:33:2d:c0:5b:
4b:79:90:2c:89:e0:68:47:b2:0c:29:be:5d:58:6a:97:c5:41:
cd:8d:a4:55:de:36:3e:86:b8:43:a8:52:d8:d8:f3:14:07:5d:
1a:78:a6:fa:58:f7:4b:f9:c3:9a:f2:e7:c9:4e:65:91:7f:b8:
2a:47:d9:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:14:34 2024 by rpki-client on console-ams.rpki-client.org