Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/8GOkqE9yHJ4uRsCo0Aft6VLdLCw.roa
File: 8GOkqE9yHJ4uRsCo0Aft6VLdLCw.roa (raw, json)
Hash identifier: uUTCkceZWORTThjxggNmn4GXpq65Bq+Nt5e4UHKhGWo=
Subject key identifier: F0:63:A4:A8:4F:72:1C:9E:2E:46:C0:A8:D0:07:ED:E9:52:DD:2C:2C
Certificate issuer: /CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Certificate serial: 018571BA300823984246BFAE70C51D582380
Authority key identifier: EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/8GOkqE9yHJ4uRsCo0Aft6VLdLCw.roa
Signing time: Mon 02 Jan 2023 09:05:05 +0000
ROA not before: Mon 02 Jan 2023 09:05:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52073
IP address blocks: 195.14.105.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:ba:30:08:23:98:42:46:bf:ae:70:c5:1d:58:23:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Validity
Not Before: Jan 2 09:05:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f063a4a84f721c9e2e46c0a8d007ede952dd2c2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:9f:28:bd:52:22:a0:15:9d:da:5f:3c:1a:a2:
48:21:4e:65:b8:8c:26:2f:1c:24:93:2a:8b:80:6a:
10:19:e2:1e:4f:a9:8c:30:07:03:9a:e1:c8:25:ac:
c2:c3:24:d4:cc:bb:d8:ea:71:c8:79:29:8b:b3:d5:
b9:5b:cf:19:05:5c:da:09:da:06:0c:ee:1a:fb:69:
f4:d0:d7:c3:fc:24:84:31:7c:f6:14:d7:08:40:eb:
06:2b:9d:52:7b:d1:5e:31:a5:c1:b3:5e:a5:52:1e:
ae:b9:3d:1b:61:df:49:fa:dd:83:1f:ef:57:a7:21:
79:2e:12:b2:58:ff:4d:26:91:c4:01:3b:db:63:4b:
7a:3c:4f:c5:dd:1a:1a:5f:85:6c:6b:61:16:73:18:
46:28:40:49:12:26:66:a7:22:35:2b:b3:1b:37:60:
59:32:2c:6f:7c:f4:cb:06:d8:14:08:fc:67:29:72:
23:73:8f:07:0b:17:8c:32:63:37:12:aa:08:89:68:
ec:6b:d5:67:6a:23:e8:7e:18:e5:32:8f:21:e1:84:
ce:cd:ca:8b:04:ac:97:60:81:7e:95:ca:e4:fe:f8:
fa:0a:c5:44:0c:c3:4d:25:de:f5:e3:37:a3:d0:dc:
ce:39:6b:68:92:a0:ed:f6:75:80:e9:de:39:84:26:
00:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:63:A4:A8:4F:72:1C:9E:2E:46:C0:A8:D0:07:ED:E9:52:DD:2C:2C
X509v3 Authority Key Identifier:
keyid:EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/8GOkqE9yHJ4uRsCo0Aft6VLdLCw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/6sLBr9S97JgFBvoH33yGYtVU-kY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.14.105.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:54:9b:2c:95:95:41:17:8b:ee:de:96:74:52:42:fe:86:15:
68:13:97:d2:a5:a0:d7:45:75:87:d7:e2:90:eb:44:69:02:73:
c3:b5:72:7d:68:67:fb:a2:3d:13:0d:6c:ad:1d:71:cd:e5:80:
e1:27:11:bd:a8:b6:7f:20:d2:84:62:4d:ef:04:da:b3:48:9d:
6c:1d:98:44:8b:eb:1d:46:5c:1b:52:51:62:11:ed:ed:b7:80:
5a:86:03:31:17:49:25:4e:aa:a5:07:14:96:b1:1d:ee:a7:3e:
a0:2e:53:64:f5:c2:28:c8:aa:02:9c:19:6c:8b:42:09:9c:7c:
3f:46:bf:ca:4a:b8:21:4d:36:ea:05:ae:d0:4c:0d:b4:1c:ef:
23:76:dc:92:2a:d8:59:63:f0:f9:46:3d:12:bc:db:e9:0e:92:
5f:9b:b5:4f:b2:85:13:97:5e:ee:c6:a7:fa:41:a1:70:74:5d:
b0:d5:45:65:d6:ee:cc:a6:7e:57:08:0e:3b:5a:40:b9:24:fd:
52:c7:68:82:11:de:cd:98:21:d8:d4:ee:74:02:62:23:53:9d:
3e:9a:42:8d:ea:4c:d4:59:ea:e9:fb:35:1e:d4:1d:ef:ca:cf:
49:a9:68:c3:8b:04:6d:d5:84:45:37:25:bc:bf:e8:54:6b:15:
be:c7:c6:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 1 18:34:52 2023 by rpki-client on console-fra.rpki-client.org