Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/465556-70d1-4152-a65a-6c63e152242d/1/P6Lpq240li2TDxsKAJqC1eeJD1c.roa
File: P6Lpq240li2TDxsKAJqC1eeJD1c.roa (raw, json)
Hash identifier: AXBoP1Cm9DEORM97DQoyFqTY2oytbkkF+vm6AJT/sw8=
Subject key identifier: 3F:A2:E9:AB:6E:34:96:2D:93:0F:1B:0A:00:9A:82:D5:E7:89:0F:57
Certificate issuer: /CN=d0d6e65505b4f4e4f4f31d90b8b21a3a7cfb0ebf
Certificate serial: 018570DE56DB12619A52315B733D7A822E33
Authority key identifier: D0:D6:E6:55:05:B4:F4:E4:F4:F3:1D:90:B8:B2:1A:3A:7C:FB:0E:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0NbmVQW09OT08x2QuLIaOnz7Dr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/465556-70d1-4152-a65a-6c63e152242d/1/P6Lpq240li2TDxsKAJqC1eeJD1c.roa
Signing time: Mon 02 Jan 2023 05:04:57 +0000
ROA not before: Mon 02 Jan 2023 05:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197511
IP address blocks: 195.20.142.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:de:56:db:12:61:9a:52:31:5b:73:3d:7a:82:2e:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0d6e65505b4f4e4f4f31d90b8b21a3a7cfb0ebf
Validity
Not Before: Jan 2 05:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3fa2e9ab6e34962d930f1b0a009a82d5e7890f57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:83:af:2d:71:06:bb:3a:e1:4e:97:f6:55:a3:
93:8e:cb:e7:e8:1b:81:de:e9:8c:aa:38:59:6d:ab:
92:65:f3:cd:a5:1d:8c:c3:9d:16:e6:e0:ea:aa:e5:
5b:01:c8:55:65:33:39:d8:43:3d:5b:da:07:36:6f:
de:ed:13:b3:f2:95:f8:6f:e5:36:03:b7:fe:82:d5:
6c:b0:ff:98:c8:52:8d:67:a1:74:f3:0b:98:0f:36:
86:ad:90:ae:6b:74:f7:f9:dd:d4:46:83:9a:a9:1b:
d1:ac:9e:51:58:f6:ba:82:7e:6d:8c:d7:3a:09:46:
5e:a0:81:fe:5a:c2:e3:46:b0:10:84:90:70:b5:18:
5b:c1:ee:ef:44:f8:0f:55:a0:db:e3:de:ff:1b:cd:
1a:13:24:91:ec:4a:de:69:75:76:db:f3:58:cf:e8:
e2:8b:ba:a0:dd:bb:d9:8c:88:82:d9:61:73:2d:fb:
79:89:b3:03:b5:d9:fb:20:a3:f0:cf:76:58:cb:18:
48:c3:89:7a:3a:41:82:b8:57:d6:0c:19:ec:65:93:
27:3b:6b:20:fc:56:09:f6:13:8a:3e:de:86:7c:fd:
16:ae:4f:ed:52:d7:af:f5:15:01:c6:eb:5c:24:7e:
ae:d0:07:fb:06:9b:44:26:f1:c7:d0:b6:da:4d:f9:
13:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:A2:E9:AB:6E:34:96:2D:93:0F:1B:0A:00:9A:82:D5:E7:89:0F:57
X509v3 Authority Key Identifier:
keyid:D0:D6:E6:55:05:B4:F4:E4:F4:F3:1D:90:B8:B2:1A:3A:7C:FB:0E:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0NbmVQW09OT08x2QuLIaOnz7Dr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/465556-70d1-4152-a65a-6c63e152242d/1/P6Lpq240li2TDxsKAJqC1eeJD1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/465556-70d1-4152-a65a-6c63e152242d/1/0NbmVQW09OT08x2QuLIaOnz7Dr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.20.142.0/24
Signature Algorithm: sha256WithRSAEncryption
75:00:76:fc:ac:c3:ce:9a:36:66:7f:a6:da:61:eb:26:cd:c8:
8e:ec:c1:6a:50:95:45:a0:7c:7f:03:05:90:b7:d4:12:9a:e9:
f3:7f:21:c8:84:bc:5f:2e:da:c6:2c:9d:35:2d:ee:14:cb:16:
8e:0d:06:29:66:b2:95:62:75:6b:05:55:f5:c4:0f:0f:10:15:
e9:e4:e6:3d:8b:e7:2c:30:f6:48:6d:72:46:6e:31:3a:af:82:
df:03:f0:02:32:32:64:3b:0d:ee:30:82:4a:67:0c:9f:3e:bc:
25:50:ab:34:ea:b8:39:e9:4f:6c:f7:da:6b:11:70:e3:94:1b:
0d:00:44:1c:4e:82:e2:6f:ee:65:ee:b2:19:9c:02:16:ad:0d:
97:87:45:5a:d3:cc:a9:51:c7:35:ac:f1:a7:cf:e9:34:c0:80:
2a:bb:11:b4:fb:0f:1a:2e:9b:39:47:ef:e6:47:03:f6:4e:4b:
de:77:aa:87:a0:bc:c2:e5:90:a7:21:16:b2:c2:2e:59:ee:1c:
fd:68:3d:da:e8:a1:ea:ee:31:c1:b7:d4:52:f6:4e:af:95:d6:
4e:d1:42:23:8b:80:50:1e:93:92:26:f4:bc:12:e9:43:c4:91:
03:fe:01:e3:ad:dc:b6:98:cc:d3:94:0d:4a:c4:67:4b:0b:5e:
a7:e1:8f:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:34 2024 by rpki-client on console-fra.rpki-client.org