Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/EfNyXdwTDRMcbeKyFWI_TXsX4uU.roa
File: EfNyXdwTDRMcbeKyFWI_TXsX4uU.roa (raw, json)
Hash identifier: QI7zU2tPUjsmUHf2BGpkgCiQz2gpbb9DjOg7eHjZl50=
Subject key identifier: 11:F3:72:5D:DC:13:0D:13:1C:6D:E2:B2:15:62:3F:4D:7B:17:E2:E5
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 0188528F1FB5EBEEED80AEB6714D0819F970
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/EfNyXdwTDRMcbeKyFWI_TXsX4uU.roa
Signing time: Thu 25 May 2023 10:58:11 +0000
ROA not before: Thu 25 May 2023 10:58:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200165
IP address blocks: 195.235.164.0/24 maxlen: 24
213.99.28.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:52:8f:1f:b5:eb:ee:ed:80:ae:b6:71:4d:08:19:f9:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: May 25 10:58:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=11f3725ddc130d131c6de2b215623f4d7b17e2e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:30:e5:48:53:1a:0d:c3:82:e2:2b:15:03:83:
c2:be:f6:4a:50:e3:8b:4e:cd:96:54:71:95:64:c1:
01:6b:e1:d5:bd:0a:f5:3a:4c:77:72:71:61:ba:7e:
e7:19:9a:68:88:19:61:49:39:bd:89:84:91:54:f2:
51:55:57:a5:a0:98:16:97:2f:1f:c4:d5:8a:ce:3b:
1e:bd:2c:72:11:b5:00:b0:e9:62:23:af:d6:04:cd:
ed:77:1a:08:5f:f5:4f:2e:87:aa:a1:54:03:19:37:
24:d6:a6:72:c3:6b:0c:ef:47:34:4f:5f:67:3d:8d:
82:12:63:e9:95:ba:27:87:f9:fd:ad:49:99:02:35:
3c:56:60:2c:54:15:77:99:4e:ea:2f:82:c4:bf:16:
a0:3b:5a:61:10:24:a6:2c:d3:84:40:a5:ad:1d:84:
87:09:72:00:5c:cf:db:dd:e3:24:1e:28:fc:00:2d:
98:13:05:82:27:92:42:e7:a6:fc:98:68:da:16:e1:
35:68:d5:95:69:0e:cf:54:e3:37:63:e9:4d:40:ce:
3b:67:f9:b7:83:4a:9b:4e:dd:ec:cd:b7:01:23:d1:
ee:3f:36:cb:24:b8:c0:a5:7d:f3:50:b3:1b:71:93:
fb:0a:e2:9b:05:ac:dd:e2:a2:88:54:1f:7e:19:76:
67:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:F3:72:5D:DC:13:0D:13:1C:6D:E2:B2:15:62:3F:4D:7B:17:E2:E5
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/EfNyXdwTDRMcbeKyFWI_TXsX4uU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.235.164.0/24
213.99.28.0/24
Signature Algorithm: sha256WithRSAEncryption
88:a8:f3:0d:41:44:8c:32:91:0b:d9:61:ff:62:31:c0:63:84:
6c:70:54:31:52:5f:c1:9e:41:7c:24:5a:0b:d3:3c:51:86:ea:
28:fe:da:e8:56:f9:4e:45:1f:cc:f0:d2:03:6f:e0:60:3e:d6:
a0:33:49:f3:47:5c:82:4f:97:11:da:6d:9c:75:8f:75:0f:15:
ad:23:fa:b0:89:e2:75:5e:5a:d1:c2:7e:bf:f8:7e:e1:2d:85:
c3:72:b4:9b:90:4b:f0:76:77:ec:9f:48:64:87:04:56:82:60:
bd:1d:a7:bf:6a:8d:de:86:49:ea:03:ac:dd:40:d2:0e:ee:d7:
92:6c:02:bc:82:0e:70:4d:82:3a:2c:f9:92:4b:49:cf:5c:44:
16:4b:b2:0e:53:30:3f:7b:12:c9:a9:d8:e4:3b:e2:49:11:63:
09:58:5e:c0:26:fc:0d:99:03:89:75:3e:3e:98:8b:06:da:00:
8f:ff:17:4e:02:b0:17:ab:9e:1b:ed:26:fe:64:8a:f1:8a:87:
fd:f3:34:61:2d:ec:5b:f2:ef:8c:56:45:3b:5a:2c:48:ed:c8:
8b:e3:f1:c8:18:82:a3:0f:d4:1e:db:3e:b1:f4:cd:12:af:5c:
a9:a1:ee:42:84:c9:71:e9:8e:7a:ad:37:cf:09:3c:69:8f:9a:
0e:5c:8b:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:05 2024 by rpki-client on console-fra.rpki-client.org