Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/6afd60-83e8-423d-878b-909b6ab85ee9/1/1-hZqzddVp0m9Chnm1ZPqK3NjjYI.roa
File: 1-hZqzddVp0m9Chnm1ZPqK3NjjYI.roa (raw, json)
Hash identifier: kyi4boI2FlkFFE4IRnl6IfkBDTo8YSTnatqYJ5WzgRo=
Subject key identifier: FA:16:6A:CD:D7:55:A7:49:BD:0A:19:E6:D5:93:EA:2B:73:63:8D:82
Certificate issuer: /CN=bd2a6a2232c439f04620c82b4d7e14e9df721143
Certificate serial: 0189A1DE4BE0C66C9B6A21E86814B7E2BE7C
Authority key identifier: BD:2A:6A:22:32:C4:39:F0:46:20:C8:2B:4D:7E:14:E9:DF:72:11:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vSpqIjLEOfBGIMgrTX4U6d9yEUM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/6afd60-83e8-423d-878b-909b6ab85ee9/1/1-hZqzddVp0m9Chnm1ZPqK3NjjYI.roa
Signing time: Sat 29 Jul 2023 13:37:27 +0000
ROA not before: Sat 29 Jul 2023 13:37:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57043
IP address blocks: 195.206.242.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:a1:de:4b:e0:c6:6c:9b:6a:21:e8:68:14:b7:e2:be:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd2a6a2232c439f04620c82b4d7e14e9df721143
Validity
Not Before: Jul 29 13:37:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fa166acdd755a749bd0a19e6d593ea2b73638d82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:57:79:fe:20:55:a5:1d:2b:38:21:ce:db:57:
34:f3:16:08:2c:f8:8a:85:dd:50:7d:97:45:ff:18:
d8:6c:9e:66:1b:bd:d3:2c:75:5e:69:d4:88:e4:3d:
ea:9f:9d:56:cf:da:4e:42:6f:97:02:05:62:85:90:
61:1a:aa:37:a9:63:78:c9:36:2e:2e:e2:9a:5f:3f:
ea:ad:8c:3a:91:ff:59:ba:01:61:6d:41:46:7a:8e:
7a:56:5d:e2:fc:21:9f:f2:a3:e5:e8:3e:b0:a2:b7:
61:d3:f0:42:7e:06:82:6b:0b:d8:2b:99:b6:52:c3:
7e:9a:fe:d4:f6:1b:36:4f:81:d2:ed:42:52:c6:4d:
10:c1:08:fe:ac:f1:d8:ed:b7:1d:27:5f:3f:3b:15:
1b:9c:c1:65:f3:17:f1:fc:9f:c2:2b:5a:89:d3:8a:
07:f2:9b:ab:e2:7a:54:88:3c:a1:b0:6e:42:a4:cd:
10:81:d5:d7:cf:e3:75:05:71:cc:34:1a:eb:d0:d3:
59:2e:bd:1a:30:d5:ab:ed:08:e7:64:55:65:44:7c:
a1:66:cc:e1:09:38:46:9e:e9:55:5a:a9:9e:c5:c3:
f8:1e:31:a0:f3:78:8d:c4:26:a3:b4:c0:37:b4:06:
c8:c2:66:4a:c0:58:56:62:6e:76:5a:b3:fa:d6:d2:
c1:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:16:6A:CD:D7:55:A7:49:BD:0A:19:E6:D5:93:EA:2B:73:63:8D:82
X509v3 Authority Key Identifier:
keyid:BD:2A:6A:22:32:C4:39:F0:46:20:C8:2B:4D:7E:14:E9:DF:72:11:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vSpqIjLEOfBGIMgrTX4U6d9yEUM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/6afd60-83e8-423d-878b-909b6ab85ee9/1/1-hZqzddVp0m9Chnm1ZPqK3NjjYI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/6afd60-83e8-423d-878b-909b6ab85ee9/1/vSpqIjLEOfBGIMgrTX4U6d9yEUM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.206.242.0/24
Signature Algorithm: sha256WithRSAEncryption
91:7e:f1:00:6b:d1:f9:ac:eb:9a:18:3b:f7:ca:94:90:f2:70:
84:69:8b:b6:02:bd:99:cd:de:5d:5a:41:47:cc:c1:ee:57:22:
8e:f3:91:95:86:96:d0:45:9f:52:11:03:82:01:54:e0:b2:89:
d9:c0:a1:dd:59:ee:11:aa:49:41:8f:22:02:e3:75:6c:9d:cc:
b7:0e:2e:97:18:a1:21:29:02:be:7f:84:6d:d2:f4:85:cb:fe:
37:d0:ca:14:69:25:7b:2b:b9:6b:32:2d:7e:7d:72:74:e9:b3:
30:d8:c2:f7:a0:57:a2:45:82:0f:12:3e:8a:db:7e:f9:0a:1f:
3a:95:b3:f3:b4:c5:d8:8e:de:24:a7:a6:72:34:b9:88:97:44:
a8:2e:8c:99:c5:cb:61:a7:73:83:aa:65:99:0e:bd:aa:83:70:
02:b5:78:79:40:df:f9:69:b6:49:86:37:a7:60:97:a2:7a:dd:
5d:74:b5:73:2b:a3:c3:ff:8b:b9:13:a5:b9:95:23:7d:5d:42:
98:0c:5b:da:9c:a8:dd:a3:d0:31:ba:9a:9a:fc:4b:06:a6:80:
48:7d:b2:7c:81:9c:12:e9:7b:4b:2b:7c:59:77:fd:07:37:a2:
22:d6:7e:88:ee:5e:a4:88:2f:09:51:d7:62:f4:1b:4f:f9:48:
36:be:ab:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:48 2024 by rpki-client on console-ams.rpki-client.org