Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/74cf3b-9f5c-4f5e-96c4-2926d281b514/1/jiJ5WB4tjdg7maregXg7Go03n2Q.roa
File: jiJ5WB4tjdg7maregXg7Go03n2Q.roa (raw, json)
Hash identifier: lFpshkB8Yak1fnr4yT3QGxmDNyRYjyp/HDawgsK+p70=
Subject key identifier: 8E:22:79:58:1E:2D:8D:D8:3B:99:AA:DE:81:78:3B:1A:8D:37:9F:64
Certificate issuer: /CN=653f55629121b60fb19c97f99c75dd6f015dd6e8
Certificate serial: 018573BA8A5F8C9436A0D2952B41C966EFC3
Authority key identifier: 65:3F:55:62:91:21:B6:0F:B1:9C:97:F9:9C:75:DD:6F:01:5D:D6:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZT9VYpEhtg-xnJf5nHXdbwFd1ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/74cf3b-9f5c-4f5e-96c4-2926d281b514/1/jiJ5WB4tjdg7maregXg7Go03n2Q.roa
Signing time: Mon 02 Jan 2023 18:24:43 +0000
ROA not before: Mon 02 Jan 2023 18:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31712
IP address blocks: 195.153.19.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:ba:8a:5f:8c:94:36:a0:d2:95:2b:41:c9:66:ef:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=653f55629121b60fb19c97f99c75dd6f015dd6e8
Validity
Not Before: Jan 2 18:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8e2279581e2d8dd83b99aade81783b1a8d379f64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:b3:a6:1c:c1:67:28:f5:74:19:cc:cf:59:0e:
a4:88:ab:b7:a3:1c:e1:06:8c:a7:d5:92:c9:ee:bf:
85:a7:58:d8:22:7a:22:25:ce:64:1c:b7:88:88:4e:
09:18:91:ea:d2:da:60:97:2e:75:1c:6b:04:f1:04:
17:15:cf:e3:cb:45:7f:e6:3a:ff:8f:de:2a:55:c1:
b4:d0:99:fa:35:be:9c:b9:f1:a5:a7:23:4b:f9:9f:
d3:b3:7a:87:09:2d:57:fe:1a:4f:84:9a:41:5f:1e:
05:32:80:46:2b:f9:35:c8:c1:f2:98:3b:d5:e0:19:
9e:1a:79:bf:96:c9:2c:27:50:c4:70:30:24:ff:2c:
11:d0:71:2f:08:e8:f1:0d:f8:d0:8c:0d:09:76:76:
8a:9f:00:66:3c:8e:e2:59:3c:5a:7c:f7:fa:c0:1b:
a3:34:ad:34:d5:42:70:2f:a6:45:f5:a2:15:1b:35:
35:5d:83:45:06:cf:fe:5d:ca:90:f4:94:5f:c1:00:
5b:ca:0a:20:0e:3e:9b:d5:40:ad:9b:bf:39:49:78:
81:c7:16:e0:b1:79:26:90:12:8f:fb:34:3f:f4:c2:
9c:19:d7:8a:50:fe:cc:00:de:a2:95:19:aa:18:77:
ce:1d:15:df:f9:8d:78:4f:b8:a4:6f:86:26:2e:a8:
02:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:22:79:58:1E:2D:8D:D8:3B:99:AA:DE:81:78:3B:1A:8D:37:9F:64
X509v3 Authority Key Identifier:
keyid:65:3F:55:62:91:21:B6:0F:B1:9C:97:F9:9C:75:DD:6F:01:5D:D6:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZT9VYpEhtg-xnJf5nHXdbwFd1ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/74cf3b-9f5c-4f5e-96c4-2926d281b514/1/jiJ5WB4tjdg7maregXg7Go03n2Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/74cf3b-9f5c-4f5e-96c4-2926d281b514/1/ZT9VYpEhtg-xnJf5nHXdbwFd1ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.153.19.0/24
Signature Algorithm: sha256WithRSAEncryption
38:2b:50:3a:ac:57:c2:25:62:dc:5a:7e:47:62:78:f9:0b:6b:
ff:94:07:34:53:16:33:a6:8c:a4:8a:2c:78:b4:05:57:b4:cd:
fd:a8:c6:0a:e0:79:11:11:5a:3d:7d:74:13:cb:97:ff:d8:f8:
26:e6:39:2b:17:4e:5d:62:f0:e9:fe:ec:68:bf:1b:17:49:b0:
c6:89:a9:51:5b:26:a2:bd:89:de:1b:6c:9a:6e:44:60:c1:76:
9a:41:f3:15:65:48:43:9d:e1:98:24:a2:4c:49:39:d6:13:2c:
71:85:08:db:96:22:dc:6b:c6:61:dd:9f:c0:f8:4b:8d:f5:9f:
b8:89:dc:71:09:06:86:07:5d:94:78:ac:20:50:19:95:a3:40:
3d:45:ba:5f:89:35:7c:ef:ce:00:06:7a:31:aa:b2:cc:8a:6c:
a5:cc:df:ff:db:70:fa:98:7d:e9:9a:83:b4:73:a2:d1:4d:c6:
38:d0:c8:4d:04:bf:bc:3b:83:03:90:b5:c9:d3:02:ea:da:2c:
b3:a7:83:66:7b:56:e7:c4:99:08:68:df:b1:f2:a5:df:3f:22:
4a:62:15:ee:c7:05:4b:7e:02:cd:a4:1a:47:44:59:a9:6c:03:
65:2b:dc:76:34:d4:55:4e:ac:37:c1:62:ad:64:2c:73:76:1a:
69:ee:63:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:07 2024 by rpki-client on console-ams.rpki-client.org