Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a5c3dd-9f98-4c7f-af43-4cec71210734/1/y5L3RU4lYKNb_hrCAHY4qU9xQ4I.roa
File: y5L3RU4lYKNb_hrCAHY4qU9xQ4I.roa (raw, json)
Hash identifier: 6t+7q9X7VtOsoBeM+cGiM8+07SG8ClY1eSZKpoLAe24=
Subject key identifier: CB:92:F7:45:4E:25:60:A3:5B:FE:1A:C2:00:76:38:A9:4F:71:43:82
Certificate issuer: /CN=b6b726f0592b504e723305f67bab5147d4ea696d
Certificate serial: 0186CB1148D08057EFBE09C0375CF37BDC17
Authority key identifier: B6:B7:26:F0:59:2B:50:4E:72:33:05:F6:7B:AB:51:47:D4:EA:69:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/trcm8FkrUE5yMwX2e6tRR9TqaW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a5c3dd-9f98-4c7f-af43-4cec71210734/1/y5L3RU4lYKNb_hrCAHY4qU9xQ4I.roa
Signing time: Fri 10 Mar 2023 10:29:12 +0000
ROA not before: Fri 10 Mar 2023 10:29:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50506
IP address blocks: 195.191.94.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:cb:11:48:d0:80:57:ef:be:09:c0:37:5c:f3:7b:dc:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6b726f0592b504e723305f67bab5147d4ea696d
Validity
Not Before: Mar 10 10:29:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb92f7454e2560a35bfe1ac2007638a94f714382
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:55:50:6d:76:29:44:29:f6:e7:af:c5:29:1d:
61:e8:d8:4e:79:4c:5c:f5:77:d1:53:2c:7f:f5:db:
02:a0:54:12:fa:3f:1a:8a:4f:60:c9:0e:8a:31:00:
62:ba:6e:e1:f7:fc:7d:c2:69:f8:5d:cf:99:a3:8a:
c0:7f:ba:39:39:73:aa:d1:05:a2:3e:41:20:02:95:
c5:92:52:86:61:b8:5c:5c:02:bf:27:c2:db:73:15:
f0:b6:8a:a4:9e:97:53:ff:41:3d:63:b5:a6:62:7c:
08:64:9b:3c:69:4c:84:06:3f:f2:46:a2:94:78:f2:
79:e3:4b:ea:4a:ff:ae:e0:c4:93:fc:5c:04:df:22:
fb:52:03:93:f5:5c:b8:04:ed:8a:74:7e:6c:e4:53:
76:70:f9:08:13:cd:31:33:a5:71:73:94:89:8d:73:
c8:40:64:47:45:df:97:ef:5b:76:81:f8:90:f5:e5:
54:16:4b:2f:7a:29:eb:1f:2b:3d:de:19:06:23:d1:
8c:81:a2:bc:04:57:9d:0f:48:3f:f7:25:c2:d0:e1:
4f:3e:f2:73:70:22:3b:1b:36:45:ca:a1:7f:aa:22:
56:8a:4a:5f:f6:7e:a8:32:c7:23:ee:7e:56:de:21:
65:10:c8:90:71:6a:da:e3:e6:21:76:a0:26:c8:7a:
cf:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:92:F7:45:4E:25:60:A3:5B:FE:1A:C2:00:76:38:A9:4F:71:43:82
X509v3 Authority Key Identifier:
keyid:B6:B7:26:F0:59:2B:50:4E:72:33:05:F6:7B:AB:51:47:D4:EA:69:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/trcm8FkrUE5yMwX2e6tRR9TqaW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5c3dd-9f98-4c7f-af43-4cec71210734/1/y5L3RU4lYKNb_hrCAHY4qU9xQ4I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5c3dd-9f98-4c7f-af43-4cec71210734/1/trcm8FkrUE5yMwX2e6tRR9TqaW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.191.94.0/23
Signature Algorithm: sha256WithRSAEncryption
75:2d:99:4a:ba:8f:c4:de:76:68:1b:11:22:0c:f9:c3:0c:ea:
7f:c9:f4:84:e1:ae:b6:e7:1a:c1:f6:64:cc:42:b7:1d:a9:8a:
f2:34:91:9e:87:7b:36:4c:ed:bf:06:74:62:07:09:c1:16:28:
66:b0:6d:27:db:cb:4b:52:5d:15:ca:c7:26:fc:33:b9:79:8d:
42:81:06:4c:52:15:4e:67:d2:2a:8d:4e:21:83:a6:f4:21:19:
3d:2d:18:27:6a:2b:8c:83:b9:84:19:24:9b:39:e8:06:cf:1a:
be:e6:20:8f:58:75:7f:22:19:f6:25:86:ce:0b:81:6d:45:a7:
47:19:2a:c1:1b:76:67:40:58:5a:7e:9c:59:bd:3c:bc:99:71:
cb:ed:6f:2e:c8:a7:5f:00:62:a3:59:17:25:28:6f:00:0f:69:
37:e1:f5:60:06:2e:d3:6b:ed:d9:5c:d0:79:52:9e:dd:44:c3:
af:b1:e1:fb:04:ac:81:59:9e:5e:7b:03:e2:5d:5c:27:2c:ab:
32:94:6c:0c:d6:71:a5:75:88:a9:84:4e:ce:5d:8e:58:18:97:
69:30:3e:a9:f7:30:5c:a8:5a:56:ea:ab:07:13:70:78:b9:c9:
7a:5e:26:00:c4:b6:f6:ce:8e:d9:19:29:19:5b:54:3b:0d:74:
02:ed:2d:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:43 2024 by rpki-client on console-fra.rpki-client.org