Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/IyWMM3QFXnd85rGUG1Q-PfvXziw.roa
File: IyWMM3QFXnd85rGUG1Q-PfvXziw.roa (raw, json)
Hash identifier: Dcp+GdQi0duFPB1KJUrfij57bjfwoskaufkwM2UDC58=
Subject key identifier: 23:25:8C:33:74:05:5E:77:7C:E6:B1:94:1B:54:3E:3D:FB:D7:CE:2C
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 019034DCA8296DD4B43522475E5ECBFD754D
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/IyWMM3QFXnd85rGUG1Q-PfvXziw.roa
Signing time: Thu 20 Jun 2024 08:56:34 +0000
ROA not before: Thu 20 Jun 2024 08:56:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21859
IP address blocks: 195.88.213.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Aug 2024 03:49:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:34:dc:a8:29:6d:d4:b4:35:22:47:5e:5e:cb:fd:75:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Jun 20 08:56:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=23258c3374055e777ce6b1941b543e3dfbd7ce2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:58:d6:d3:31:e8:2d:9b:00:98:a0:bd:5a:c7:
41:6a:a0:ec:72:20:97:9d:1c:53:42:a7:73:ed:a3:
60:20:ef:ca:0f:99:a4:6a:9c:32:15:18:f9:88:9a:
0f:2e:e1:01:45:ae:bb:aa:f1:e7:a1:c0:6d:34:71:
c3:6e:e9:0e:d4:43:fa:09:61:2c:59:2f:0b:7d:2a:
67:b1:f2:8d:3e:d9:35:e5:52:36:8f:53:86:81:a7:
b7:07:c7:96:b6:1a:7f:3d:32:13:ae:66:95:65:75:
30:90:34:f4:3c:e7:2b:b7:af:95:e5:65:aa:dd:ee:
29:f7:86:ac:ee:59:dc:86:a8:be:3c:b9:ce:a1:fc:
28:36:2c:3a:e0:a6:5a:3f:cc:45:2a:e7:10:74:6b:
49:b4:7e:96:9c:f5:a4:7d:fe:15:18:de:5b:30:09:
3b:2e:28:69:1f:dd:e2:22:3d:5f:bc:73:44:19:cd:
03:19:c5:7e:41:69:50:2c:c6:e8:23:b8:b3:39:9b:
04:e4:22:ef:0b:96:27:33:bf:a7:d1:7b:15:13:07:
74:78:a9:34:73:75:bc:5b:60:e9:8e:c7:7b:e8:db:
90:c9:62:3d:11:17:59:24:0d:d0:ab:64:50:55:a4:
ff:bf:d2:21:b5:e4:78:8c:08:51:fc:63:0c:5e:f1:
ca:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:25:8C:33:74:05:5E:77:7C:E6:B1:94:1B:54:3E:3D:FB:D7:CE:2C
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/IyWMM3QFXnd85rGUG1Q-PfvXziw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.88.213.0/24
Signature Algorithm: sha256WithRSAEncryption
67:f3:87:de:56:72:6e:a9:91:df:3a:94:58:e7:e6:41:1b:d1:
bb:59:f0:94:57:3f:8e:c8:64:d1:49:52:f1:04:5b:43:d9:58:
b4:4f:c9:13:03:8f:73:f1:c8:61:6f:e7:35:03:cc:ef:28:18:
9a:8f:ae:25:c0:ab:f7:97:ac:d8:4d:6b:05:88:a0:98:a3:a3:
48:55:4c:55:d0:5b:68:e9:5d:78:d2:ee:4c:43:95:d3:69:fb:
5c:94:9d:a1:bd:7b:8f:a3:58:65:c0:1b:a9:5e:ca:16:d0:5c:
26:75:d0:40:6c:07:44:04:90:0e:40:3b:9a:f6:a7:a2:26:bd:
00:d8:00:78:3e:16:e3:68:8e:04:48:fe:4e:2c:62:65:76:55:
e6:af:4f:12:ef:8f:b7:5f:cf:c5:55:17:67:aa:76:fb:dd:c4:
8b:ae:e3:34:4c:b3:60:7d:f3:7b:c1:3c:c0:5e:7c:84:5a:ae:
09:44:52:5c:a1:43:17:6a:1d:8f:dc:95:21:14:b8:de:13:a6:
64:8d:c1:82:b7:7a:8f:0d:ed:32:0c:a0:eb:63:49:de:32:e3:
7a:7d:e8:ab:cd:b6:63:00:da:0b:b9:a3:c7:42:df:b3:8a:a7:
f6:b0:65:7f:15:03:81:fb:0b:f8:74:76:2e:08:db:30:c8:0a:
77:3d:56:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 19 07:18:34 2024 by rpki-client on console-fra.rpki-client.org