Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/wGEUOkRCOqQ55bzF8vOZ8hX8Fzk.roa
File: wGEUOkRCOqQ55bzF8vOZ8hX8Fzk.roa (raw, json)
Hash identifier: 7CZaYf2yYAFo/34j9rQMAN5RzFGgZzHG2qO9tdAQj/8=
Subject key identifier: C0:61:14:3A:44:42:3A:A4:39:E5:BC:C5:F2:F3:99:F2:15:FC:17:39
Certificate issuer: /CN=7190f5d5f92a486362177a42b3d5efda20e220e1
Certificate serial: 01857169BA6DEF9CD8516E0BD3679F0993A6
Authority key identifier: 71:90:F5:D5:F9:2A:48:63:62:17:7A:42:B3:D5:EF:DA:20:E2:20:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/wGEUOkRCOqQ55bzF8vOZ8hX8Fzk.roa
Signing time: Mon 02 Jan 2023 07:37:12 +0000
ROA not before: Mon 02 Jan 2023 07:37:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211742
IP address blocks: 195.245.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:69:ba:6d:ef:9c:d8:51:6e:0b:d3:67:9f:09:93:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7190f5d5f92a486362177a42b3d5efda20e220e1
Validity
Not Before: Jan 2 07:37:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c061143a44423aa439e5bcc5f2f399f215fc1739
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:6e:b7:c9:2b:22:dd:71:48:56:36:86:6e:9a:
fd:08:36:48:07:de:4d:81:27:6a:fa:e5:fb:f0:bc:
fa:3d:71:94:c2:e2:9a:9d:13:b8:a0:30:2e:cd:90:
41:ca:62:35:18:3b:33:68:2a:fa:d2:17:98:87:05:
47:5f:33:e6:62:cf:b8:f9:16:0a:c4:20:3f:c5:98:
ec:c1:27:1f:26:09:af:e6:83:87:31:53:2d:3b:ca:
a9:aa:53:b3:4b:56:00:f2:ed:3c:a0:d0:65:d5:ff:
13:d5:dc:09:cd:06:fd:9a:c2:65:06:1e:b0:77:0c:
4d:00:ae:b8:d3:97:1b:08:fc:24:4e:90:fb:3c:f2:
0b:ce:04:ef:3d:f4:f6:21:2a:46:7a:1f:81:80:b9:
f9:c7:ef:2d:c1:13:a5:47:12:4f:6d:5f:16:f5:32:
4c:34:fe:23:77:56:03:1c:4f:e4:44:5f:81:9c:f0:
6a:ac:ac:9c:a8:6e:09:4e:4d:27:e5:a4:c9:ff:67:
28:7b:32:3e:87:4a:a3:6e:a5:cf:20:5e:30:5d:bd:
f9:76:0f:b1:ca:40:7f:a7:3b:38:f3:3f:ef:23:1f:
2e:37:bc:80:2f:72:79:84:78:b7:52:d2:de:3b:cc:
6f:be:dc:8f:e3:5e:0d:a2:7b:55:c4:fc:a5:0d:38:
98:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:61:14:3A:44:42:3A:A4:39:E5:BC:C5:F2:F3:99:F2:15:FC:17:39
X509v3 Authority Key Identifier:
keyid:71:90:F5:D5:F9:2A:48:63:62:17:7A:42:B3:D5:EF:DA:20:E2:20:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/wGEUOkRCOqQ55bzF8vOZ8hX8Fzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.245.203.0/24
Signature Algorithm: sha256WithRSAEncryption
91:02:3b:02:86:6f:8d:5d:f6:00:35:22:c6:a7:b1:21:7c:55:
e5:8c:58:ed:2b:13:3a:06:67:66:70:18:20:a1:92:d0:a1:9f:
7c:50:d0:ee:53:93:bc:cf:a8:15:78:1b:f8:8a:b2:c4:8d:ce:
d0:12:0f:85:47:a9:fe:86:1c:f7:99:ad:05:bf:a5:f1:22:6d:
5f:47:37:e3:f9:c4:8a:08:3f:82:22:e4:d1:38:cb:e7:03:1f:
db:03:9c:72:73:4e:55:3c:7d:73:96:9f:e7:64:cd:70:a9:e1:
83:2c:c4:fb:5d:44:9e:41:e4:10:f5:f8:7d:df:c2:fa:ea:91:
26:80:90:b3:4a:0b:a4:17:42:ff:c7:35:70:7a:85:35:23:d4:
74:0b:b8:be:ed:64:7e:23:ff:6f:ac:0d:10:24:cf:72:3f:c7:
c7:51:89:fc:ef:ab:b4:a2:7f:f4:93:ec:ce:7a:a8:ba:52:ee:
78:3c:55:56:c6:90:65:bf:7e:19:bb:95:c2:ff:92:36:0d:eb:
15:66:c8:1d:6b:fb:d8:6d:be:86:5e:5f:c7:8f:54:99:67:6e:
fb:c2:8a:b4:b7:f6:45:43:82:df:b2:c6:5e:cb:26:62:dd:66:
e1:30:45:2e:fd:7a:8e:1b:80:9d:d7:0b:45:2e:b6:70:31:24:
3d:65:07:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:49 2024 by rpki-client on console-fra.rpki-client.org