Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/t0HLGJIwrgDGQSNr0q3ijrZ52FE.roa
File: t0HLGJIwrgDGQSNr0q3ijrZ52FE.roa (raw, json)
Hash identifier: ukN/OeCClmoZ2NVsC4mykPUed9FrOOo0YTOlyVEzyw8=
Subject key identifier: B7:41:CB:18:92:30:AE:00:C6:41:23:6B:D2:AD:E2:8E:B6:79:D8:51
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 018D5F2AD7B46636EEF8B3EE5DB70503E6A8
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/t0HLGJIwrgDGQSNr0q3ijrZ52FE.roa
Signing time: Wed 31 Jan 2024 10:57:39 +0000
ROA not before: Wed 31 Jan 2024 10:57:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 23470
IP address blocks: 195.88.213.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 15:20:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5f:2a:d7:b4:66:36:ee:f8:b3:ee:5d:b7:05:03:e6:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Jan 31 10:57:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b741cb189230ae00c641236bd2ade28eb679d851
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ff:2f:01:87:1a:e9:8b:7e:13:3f:29:9d:f7:
8a:32:cf:ff:95:35:e8:bd:5c:f6:2e:41:c2:c1:f0:
73:b3:1f:52:66:e7:d2:d9:aa:68:af:75:8d:8b:1f:
75:73:61:85:72:64:2c:99:32:73:a9:26:44:4a:75:
cf:ba:fe:bb:b4:ff:b7:4b:1f:f5:a3:a4:70:83:96:
10:d3:f1:b7:97:c4:df:9a:f6:d2:6c:78:b3:c9:36:
5b:f8:b2:f2:5e:ef:8e:82:d6:ba:e8:53:84:a3:29:
b5:5a:f1:11:29:48:f0:f3:b5:1a:1b:4a:21:08:56:
29:60:54:fa:2d:2f:6d:ee:bb:c6:a8:be:04:4c:4e:
7c:b4:36:b3:74:34:6c:aa:cc:4f:ba:5f:34:f0:2c:
21:e9:fc:41:50:77:ec:5f:62:8b:d9:e7:31:58:6b:
9f:6e:15:7e:e1:e7:14:13:20:27:59:5a:a0:61:92:
ef:1a:7f:5b:48:92:e8:dc:a7:2a:fb:5a:67:c8:0c:
3b:d8:9a:83:f6:7a:e1:e2:ad:45:63:27:c0:47:65:
d1:32:f0:3f:35:98:4e:ca:31:1d:40:31:bb:cc:03:
4f:39:46:1d:c6:b7:22:61:fc:24:55:57:5d:06:47:
4b:00:c1:28:a0:11:4f:5e:a3:8e:71:99:9f:52:ed:
2f:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:41:CB:18:92:30:AE:00:C6:41:23:6B:D2:AD:E2:8E:B6:79:D8:51
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/t0HLGJIwrgDGQSNr0q3ijrZ52FE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.88.213.0/24
Signature Algorithm: sha256WithRSAEncryption
12:53:75:3b:a0:5a:cb:bf:9c:b1:b1:b3:79:d6:a0:49:3e:29:
fe:99:2c:0c:fd:0c:ed:1c:f6:e7:8c:f9:05:61:bc:12:f4:85:
cc:8e:f3:11:a9:63:fb:34:e1:5c:37:87:54:64:c6:6e:b4:06:
4b:27:a0:de:2a:d9:c9:53:b8:93:70:96:01:28:82:cf:5e:f7:
8f:2a:73:04:c3:1d:2f:f6:cc:b9:a1:d2:2f:59:a1:8f:78:4b:
cc:cf:d6:54:5f:22:23:98:03:75:84:bd:c7:ad:53:9b:81:db:
39:40:dc:b9:e0:84:f5:19:0b:7f:95:a3:26:cc:c1:f9:88:0c:
ca:c1:aa:1d:44:ae:30:7c:58:f8:8f:b5:21:f1:cc:92:02:4b:
fd:4a:a7:d8:c1:44:08:77:cf:4e:88:bb:62:7d:76:e1:e9:f9:
cc:ea:41:27:81:57:ee:9b:70:d0:ee:21:50:ec:29:85:53:10:
a6:1b:21:68:cf:1d:53:b5:7b:de:05:d8:20:d3:1f:90:dc:01:
f3:5e:59:77:b6:c5:6f:ce:a6:5e:0b:55:40:b6:44:c5:ea:5f:
00:4f:43:0d:c5:21:1e:93:7f:6a:3d:94:53:34:00:75:64:37:
7f:6f:1d:c3:2a:49:e7:c6:53:c5:93:9b:44:7d:6d:0c:48:f8:
06:a0:e1:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:36 2024 by rpki-client on console-ams.rpki-client.org