Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/_4L_Po4bRqLGGrLD9-Mql2JmvSs.roa
File: _4L_Po4bRqLGGrLD9-Mql2JmvSs.roa (raw, json)
Hash identifier: NUQUsVwnKgOULmhkTbdDLuMeApTOCb7GOwu3JAb3bEM=
Subject key identifier: FF:82:FF:3E:8E:1B:46:A2:C6:1A:B2:C3:F7:E3:2A:97:62:66:BD:2B
Certificate issuer: /CN=58ad60da52671e9083cf39864eca2aa23241be9e
Certificate serial: 019194B6A1CA8D09B0997A366ACC80B8EA5C
Authority key identifier: 58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/_4L_Po4bRqLGGrLD9-Mql2JmvSs.roa
Signing time: Tue 27 Aug 2024 16:41:22 +0000
ROA not before: Tue 27 Aug 2024 16:41:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215133
IP address blocks: 195.96.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Aug 2024 16:56:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:94:b6:a1:ca:8d:09:b0:99:7a:36:6a:cc:80:b8:ea:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58ad60da52671e9083cf39864eca2aa23241be9e
Validity
Not Before: Aug 27 16:41:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ff82ff3e8e1b46a2c61ab2c3f7e32a976266bd2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:24:8c:36:9a:31:bb:f4:d5:d5:37:94:50:c5:
d0:c8:ff:65:3c:b0:30:3f:c8:94:0f:d0:4d:94:3e:
5e:e9:da:89:5f:5a:7c:33:f6:e8:c1:41:a6:a7:00:
3e:2c:93:40:ac:63:f7:df:49:f1:98:32:46:4b:28:
df:ab:2c:29:cd:0d:93:02:9a:ef:06:21:02:0f:ff:
a5:ff:86:32:91:c6:f2:d9:51:d9:5e:ff:71:ac:e6:
37:01:ab:90:db:96:17:58:1e:89:82:e2:ab:d2:39:
4a:7e:3a:4c:a7:1d:c9:35:95:02:09:c6:1b:20:34:
22:16:b8:db:ea:c3:ef:11:8f:d7:fb:6b:62:3f:3a:
27:73:c0:5f:ad:1d:bb:a1:92:6e:94:c5:f9:71:65:
69:48:a1:9c:c4:53:5d:ba:a8:82:6d:f7:70:8b:f5:
71:23:18:86:ad:77:65:7e:ce:5b:e0:89:17:2c:17:
93:0c:c8:c0:d6:0a:c1:27:9e:c2:31:d5:21:f1:ec:
b1:b2:00:51:ff:45:d2:42:40:93:0a:0c:a5:cb:a5:
7d:8a:01:9f:5d:8f:cd:fe:e4:bb:a6:2f:d7:38:70:
0b:0d:1c:49:81:53:77:a7:c8:09:d1:ee:e1:23:8c:
eb:93:c2:30:d9:9f:db:05:a1:83:d3:13:4e:50:b7:
2d:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:82:FF:3E:8E:1B:46:A2:C6:1A:B2:C3:F7:E3:2A:97:62:66:BD:2B
X509v3 Authority Key Identifier:
keyid:58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/_4L_Po4bRqLGGrLD9-Mql2JmvSs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.129.0/24
Signature Algorithm: sha256WithRSAEncryption
23:56:29:d9:30:65:29:fc:c2:28:06:4b:bc:47:c6:70:f8:f6:
83:4b:a9:20:7c:5a:d0:d7:24:1f:59:77:37:46:48:d2:54:5f:
2c:e9:27:9d:95:a9:0f:00:97:24:b1:87:ab:97:9a:03:48:32:
e1:4c:be:18:48:44:4e:07:d8:38:8c:05:19:cf:55:5a:ef:b7:
61:15:b9:ab:37:58:26:75:cd:66:ee:1c:0b:45:32:77:60:8d:
cf:57:91:f1:a1:81:69:bb:0f:0b:ab:1a:53:04:71:e9:cb:12:
3e:3c:72:eb:bc:97:ac:b0:fc:13:cc:32:0e:51:4a:3e:bb:83:
78:f1:c0:f1:e4:bf:c1:34:ee:c8:66:63:22:e2:a5:d1:7e:8e:
5f:f8:08:74:4e:a1:e1:5b:cd:87:bc:24:b8:4a:df:41:09:68:
2f:78:b0:56:43:12:54:44:c8:f9:02:56:a5:42:eb:ec:41:5f:
03:b1:4b:0d:ec:09:ab:40:8f:47:aa:7b:09:14:2d:a7:ce:94:
c4:a0:c7:88:a4:fe:54:9c:ea:df:d1:6c:6b:ef:fe:ce:e7:01:
ae:f9:d6:ef:4f:07:21:09:6b:d4:c5:82:ff:b4:ac:8e:40:4d:
80:fa:0d:c9:ea:b5:00:a6:a9:74:39:63:60:5e:64:85:5a:78:
6a:58:40:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 29 18:06:28 2024 by rpki-client on console-fra.rpki-client.org