Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/7a4b48-a719-454e-8c98-b3e8595d1cee/1/EdRrjJpo_fJd5bXdxymA591WCgQ.roa
File: EdRrjJpo_fJd5bXdxymA591WCgQ.roa (raw, json)
Hash identifier: V+zSEGTWHiV2rcJ1FT8mdGzhsQ3Ze3OaEU7Q9NCpHKM=
Subject key identifier: 11:D4:6B:8C:9A:68:FD:F2:5D:E5:B5:DD:C7:29:80:E7:DD:56:0A:04
Certificate issuer: /CN=065c4bff9a0ee9f987951f480f8157b91a8983f8
Certificate serial: 018AD064BBB97572DA936E173E1334681DE2
Authority key identifier: 06:5C:4B:FF:9A:0E:E9:F9:87:95:1F:48:0F:81:57:B9:1A:89:83:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BlxL_5oO6fmHlR9ID4FXuRqJg_g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/7a4b48-a719-454e-8c98-b3e8595d1cee/1/EdRrjJpo_fJd5bXdxymA591WCgQ.roa
Signing time: Tue 26 Sep 2023 07:29:37 +0000
ROA not before: Tue 26 Sep 2023 07:29:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51073
IP address blocks: 195.254.168.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d0:64:bb:b9:75:72:da:93:6e:17:3e:13:34:68:1d:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=065c4bff9a0ee9f987951f480f8157b91a8983f8
Validity
Not Before: Sep 26 07:29:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=11d46b8c9a68fdf25de5b5ddc72980e7dd560a04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:7c:a2:b0:2d:16:ba:a1:3e:b3:71:30:10:b8:
b1:96:66:14:5c:35:52:bc:e0:92:ec:a6:ec:1a:5e:
54:3b:41:23:19:63:2a:c5:d8:f6:af:0c:29:95:13:
82:1e:5e:0e:91:49:84:7c:76:46:9d:f5:d7:b0:00:
94:89:fc:db:65:0b:24:8d:30:d4:ba:a2:ca:e0:e5:
ab:15:0b:db:7d:a8:61:99:d4:69:12:63:df:bd:be:
33:e4:07:e3:a4:0b:03:7d:76:2f:5e:1a:d3:b1:b9:
38:6f:22:7f:f0:b0:fd:e8:7b:6c:bf:bd:6f:da:fd:
b0:b3:9b:57:b4:be:19:b2:49:d7:9f:52:fb:ac:04:
da:25:31:16:a3:bc:6b:0c:45:17:3a:69:1b:6a:35:
a4:68:1c:ba:ec:05:21:bf:fa:5c:8d:79:2e:b4:f1:
25:bc:2a:8a:4a:91:00:38:d5:b6:d1:41:92:0b:29:
dd:d4:7b:f3:e6:62:2d:28:66:b4:cc:f3:d3:12:0d:
b2:86:26:52:a9:de:5a:d2:a6:99:51:d8:fb:88:ce:
fe:8e:7a:a2:04:1f:24:8c:02:d3:4f:37:ab:eb:b9:
7b:6f:e6:cd:e4:4c:4d:8d:fa:c6:68:49:df:c8:43:
a8:93:ec:bf:ba:65:62:7c:3c:12:12:c4:03:14:10:
ac:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:D4:6B:8C:9A:68:FD:F2:5D:E5:B5:DD:C7:29:80:E7:DD:56:0A:04
X509v3 Authority Key Identifier:
keyid:06:5C:4B:FF:9A:0E:E9:F9:87:95:1F:48:0F:81:57:B9:1A:89:83:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BlxL_5oO6fmHlR9ID4FXuRqJg_g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7a4b48-a719-454e-8c98-b3e8595d1cee/1/EdRrjJpo_fJd5bXdxymA591WCgQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7a4b48-a719-454e-8c98-b3e8595d1cee/1/BlxL_5oO6fmHlR9ID4FXuRqJg_g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.254.168.0/23
Signature Algorithm: sha256WithRSAEncryption
97:9f:d1:70:7e:02:17:fb:44:9b:95:02:25:fb:31:96:99:b1:
b7:cf:fd:12:b0:bd:da:4d:85:85:93:25:81:c1:49:db:95:27:
cd:16:8c:4f:8f:60:01:8b:05:bb:35:f4:93:c7:ee:87:f0:91:
5c:95:76:9e:48:0e:24:6f:1f:d5:da:4b:1d:85:27:ce:02:1c:
77:2c:3d:9d:73:6b:de:cd:df:d8:03:09:f7:7c:a1:26:73:ad:
ca:fa:45:5b:33:51:3a:eb:d8:f2:12:74:2e:a0:3d:e2:49:32:
a2:8d:54:81:1c:97:18:cd:16:09:2d:30:45:94:0b:ff:52:49:
b9:b3:d1:dd:60:8c:9e:0b:10:53:7a:02:35:aa:9e:0c:ae:92:
7a:5c:5f:7a:a4:85:70:be:41:47:df:eb:f4:2a:87:76:fc:f8:
52:58:57:1f:8a:d8:10:7c:4f:9a:35:ca:ae:38:17:18:bd:c5:
35:d0:ea:1a:f4:96:17:7e:c6:b3:10:fe:65:93:01:50:00:26:
52:07:c9:e6:7d:33:9d:aa:39:9c:10:0a:50:ec:d5:34:fa:85:
0b:0b:05:ea:78:21:22:00:9f:5c:18:b8:93:6d:b6:ec:98:dd:
08:8c:b8:f9:2b:cc:aa:c6:4a:a9:84:67:4b:4d:08:ab:95:dc:
0b:6b:3e:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:08 2024 by rpki-client on console-ams.rpki-client.org