Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/9ee980-67a2-4d3c-b6ca-fde073588f0f/1/fTu-dv_QAV6ojTmb-pFTlZL6PDs.roa
File: fTu-dv_QAV6ojTmb-pFTlZL6PDs.roa (raw, json)
Hash identifier: UTmwMi08uue/10qRrFHPp5KmfTsKLqn5afn/beKS0is=
Subject key identifier: 7D:3B:BE:76:FF:D0:01:5E:A8:8D:39:9B:FA:91:53:95:92:FA:3C:3B
Certificate issuer: /CN=b59909ed171b38c1fdc4362229e78d69851de11c
Certificate serial: 018CC6B7837979AB7E3B5F76BFF46F8A84B8
Authority key identifier: B5:99:09:ED:17:1B:38:C1:FD:C4:36:22:29:E7:8D:69:85:1D:E1:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tZkJ7RcbOMH9xDYiKeeNaYUd4Rw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/9ee980-67a2-4d3c-b6ca-fde073588f0f/1/fTu-dv_QAV6ojTmb-pFTlZL6PDs.roa
Signing time: Mon 01 Jan 2024 20:29:24 +0000
ROA not before: Mon 01 Jan 2024 20:29:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39833
IP address blocks: 195.170.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 07 Jul 2024 17:17:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b7:83:79:79:ab:7e:3b:5f:76:bf:f4:6f:8a:84:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b59909ed171b38c1fdc4362229e78d69851de11c
Validity
Not Before: Jan 1 20:29:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7d3bbe76ffd0015ea88d399bfa91539592fa3c3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:6f:44:9c:85:fd:bd:8e:a3:03:05:51:18:fe:
75:18:26:50:da:f9:e9:b9:b3:b8:d0:02:a5:81:78:
42:2b:fb:39:b9:a9:ef:c0:b0:b3:0b:ef:52:a4:7e:
20:fc:e1:11:05:4a:31:3d:57:d1:ab:4e:fa:e8:a3:
8e:87:8d:3f:7d:14:74:08:a9:b7:8e:2d:7c:80:a3:
55:b1:b5:6a:76:3f:d2:ed:cc:f1:0a:40:52:6d:9f:
ec:bc:96:78:1a:66:cb:35:1a:6a:fa:62:59:bf:9c:
ad:36:0d:68:05:f9:dc:01:33:a7:e7:b7:98:c0:b1:
f4:dc:2b:bd:57:26:fe:22:3b:7f:78:4a:bc:86:9e:
4d:76:65:e0:8b:8a:0f:d2:92:b4:88:49:4e:a4:bb:
fd:68:31:0a:78:16:ef:c9:58:69:76:bf:6f:6c:7c:
28:64:cd:cf:c3:08:61:95:6f:7e:6a:64:31:79:70:
87:e2:83:f1:82:e1:8b:1b:9b:fa:77:b2:45:e8:b2:
be:a1:52:50:6b:49:2d:ea:dc:9b:a0:94:2a:35:0e:
45:37:9d:98:77:07:8e:ef:67:cf:f9:23:7a:b3:10:
6e:3b:92:c1:31:86:b7:ba:72:a2:59:52:35:c0:3f:
51:31:f2:73:13:b1:fa:d4:2f:56:60:e7:fa:b6:ea:
4b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:3B:BE:76:FF:D0:01:5E:A8:8D:39:9B:FA:91:53:95:92:FA:3C:3B
X509v3 Authority Key Identifier:
keyid:B5:99:09:ED:17:1B:38:C1:FD:C4:36:22:29:E7:8D:69:85:1D:E1:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tZkJ7RcbOMH9xDYiKeeNaYUd4Rw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9ee980-67a2-4d3c-b6ca-fde073588f0f/1/fTu-dv_QAV6ojTmb-pFTlZL6PDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9ee980-67a2-4d3c-b6ca-fde073588f0f/1/tZkJ7RcbOMH9xDYiKeeNaYUd4Rw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.170.166.0/24
Signature Algorithm: sha256WithRSAEncryption
63:e7:4e:5f:81:13:75:34:e4:ec:c1:d9:64:8d:ed:c8:67:22:
07:87:b8:0d:98:85:0b:72:db:dd:06:47:f6:4f:d6:63:cf:33:
c1:17:2f:9f:4b:14:e1:25:c0:3f:a7:97:9f:31:7b:9f:bf:64:
fc:49:b3:2b:60:df:b6:ff:70:cc:19:55:9c:72:0d:c2:d0:b6:
b8:df:e4:c4:8f:e6:26:fb:1a:40:10:94:9f:ff:c2:59:c7:c6:
25:3b:f1:50:36:bc:79:94:da:b2:a4:36:31:00:c4:7b:96:45:
49:94:45:bb:8a:9c:8d:e6:c3:8e:49:a3:10:93:d5:21:05:e8:
c4:d9:c6:7f:8f:c8:24:6f:b4:42:16:0a:3e:a5:ed:62:6a:b6:
a6:d3:d9:46:2a:d5:02:bb:e6:f4:9d:f3:96:76:fc:f4:03:02:
71:c8:87:6a:03:97:ea:90:36:61:00:db:8b:46:9b:ce:71:f3:
3c:4a:26:e0:31:79:91:e1:c2:59:2d:2a:9f:5c:b7:9b:d1:49:
fc:fe:55:77:5e:63:3d:97:5d:5c:23:af:f0:5d:d4:eb:61:d0:
37:5d:98:20:c8:95:36:93:c4:02:ca:b8:cc:94:d4:63:f1:f9:
a0:db:33:96:5c:97:1d:2d:64:fc:09:59:a9:ac:da:8c:c1:19:
8e:7d:75:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 7 20:10:42 2024 by rpki-client on console-ams.rpki-client.org