Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/07badd-ff3f-4886-abf1-552e51542d4d/1/yVsxdqs7IoINODt4Ilj1LqLZcxM.roa
File: yVsxdqs7IoINODt4Ilj1LqLZcxM.roa (raw, json)
Hash identifier: Nr5Db84AQOHJ6RtzHxs7CfbjTV1WbVKJuVD9Dkz5TwM=
Subject key identifier: C9:5B:31:76:AB:3B:22:82:0D:38:3B:78:22:58:F5:2E:A2:D9:73:13
Certificate issuer: /CN=af21dd2f772a5bb47925c28bb5d16cd930f206b1
Certificate serial: 018570427F1574953D980EB1C2A1AB079939
Authority key identifier: AF:21:DD:2F:77:2A:5B:B4:79:25:C2:8B:B5:D1:6C:D9:30:F2:06:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryHdL3cqW7R5JcKLtdFs2TDyBrE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/07badd-ff3f-4886-abf1-552e51542d4d/1/yVsxdqs7IoINODt4Ilj1LqLZcxM.roa
Signing time: Mon 02 Jan 2023 02:14:43 +0000
ROA not before: Mon 02 Jan 2023 02:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28935
IP address blocks: 195.47.206.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:7f:15:74:95:3d:98:0e:b1:c2:a1:ab:07:99:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af21dd2f772a5bb47925c28bb5d16cd930f206b1
Validity
Not Before: Jan 2 02:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c95b3176ab3b22820d383b782258f52ea2d97313
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:3b:71:be:f2:b0:63:f1:19:65:4a:0f:70:bd:
bd:bc:14:3b:fd:f8:bc:05:79:2c:45:62:bb:a6:46:
3d:24:fa:89:b0:8c:58:5d:5d:f5:b6:ad:29:67:82:
90:8f:2e:f0:23:0f:ae:0a:69:89:16:5a:4b:ec:43:
d3:74:85:10:1b:74:59:37:83:df:4c:d7:69:1e:21:
d2:e8:1b:07:35:83:5e:a6:53:9c:9a:2f:e1:b4:64:
ca:01:ad:87:1c:b2:83:39:d5:07:24:8f:b4:c7:83:
91:04:4a:05:09:2d:d5:99:a1:6b:dd:06:99:3d:29:
8e:94:f2:ec:77:61:91:6a:ac:d3:c4:9f:a0:91:24:
05:94:e7:92:35:44:ae:04:12:f1:26:96:e2:f0:86:
bb:3b:15:f2:68:7d:4a:7e:aa:f7:8f:8f:12:4a:2c:
90:88:f5:20:68:62:e4:bb:08:78:63:c0:d5:f4:ce:
3e:32:df:06:cd:90:52:0a:ae:9a:2a:88:5c:8f:27:
23:58:fb:83:5a:41:79:a2:b0:5d:db:9d:62:17:50:
a0:d9:56:3a:6f:7f:cf:35:29:7e:2f:70:e4:49:97:
4d:0e:0b:58:dd:78:27:86:b4:ce:10:63:ef:b1:4c:
30:c1:a2:d1:4a:7a:a3:4f:d7:b1:93:f4:0b:ce:87:
2d:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:5B:31:76:AB:3B:22:82:0D:38:3B:78:22:58:F5:2E:A2:D9:73:13
X509v3 Authority Key Identifier:
keyid:AF:21:DD:2F:77:2A:5B:B4:79:25:C2:8B:B5:D1:6C:D9:30:F2:06:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryHdL3cqW7R5JcKLtdFs2TDyBrE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/07badd-ff3f-4886-abf1-552e51542d4d/1/yVsxdqs7IoINODt4Ilj1LqLZcxM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/07badd-ff3f-4886-abf1-552e51542d4d/1/ryHdL3cqW7R5JcKLtdFs2TDyBrE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.47.206.0/24
Signature Algorithm: sha256WithRSAEncryption
d9:76:c9:e6:7a:42:a2:7d:66:20:4b:6e:10:0a:cb:5d:16:df:
6d:81:14:b7:1c:79:b8:dd:5f:49:c1:42:e3:9d:77:9f:c4:5d:
7b:63:69:e9:a9:ed:9f:88:61:0d:ee:93:3f:99:f3:ec:bd:d0:
4b:0b:19:85:bd:e7:0a:99:ba:99:4c:1b:3e:5c:71:a0:99:4d:
76:42:51:c3:d3:cc:60:06:21:ce:4e:4c:c3:65:c4:57:b1:c3:
4e:d9:34:4a:59:c0:20:64:4a:47:99:b5:68:2e:45:82:86:61:
d1:a0:a3:26:e3:ca:16:1e:aa:75:3a:69:ca:d0:5a:d1:86:7f:
3f:73:92:c5:fc:7f:a7:56:d2:ae:86:5f:06:37:b8:c4:4c:d4:
d7:10:b3:0c:c3:20:50:38:1c:42:00:ea:83:56:f3:ca:32:54:
da:2b:3a:dc:7e:79:93:af:16:c6:5d:14:0e:56:d9:04:bc:19:
27:d7:f4:bb:3b:66:0e:d6:ca:2d:b3:ec:d3:6f:de:5b:d3:ba:
04:c4:23:b0:5e:25:f9:f0:85:41:73:28:86:ab:51:bf:f0:a1:
fa:d1:83:a6:89:20:26:51:16:8f:df:c9:18:14:c8:48:88:50:
a9:03:01:13:7a:05:c6:88:f1:c5:f3:17:fe:5c:2d:c0:c9:c2:
6f:7d:af:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:53 2024 by rpki-client on console-fra.rpki-client.org