Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/1-4jiIc12kM9UtNewdwmUWF6lQm4.roa
File: 1-4jiIc12kM9UtNewdwmUWF6lQm4.roa (raw, json)
Hash identifier: 9WFSqoOSn8OaK9N3ngy7VGqE80CaXRe0uqEiP0/swKs=
Subject key identifier: FB:88:E2:21:CD:76:90:CF:54:B4:D7:B0:77:09:94:58:5E:A5:42:6E
Certificate issuer: /CN=403f08bbaffa4161843203a8a757ab6e9546b0ce
Certificate serial: 018E84BF7AFB99E2FBBFB2BE1A2A571E4E6B
Authority key identifier: 40:3F:08:BB:AF:FA:41:61:84:32:03:A8:A7:57:AB:6E:95:46:B0:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/1-4jiIc12kM9UtNewdwmUWF6lQm4.roa
Signing time: Thu 28 Mar 2024 11:08:45 +0000
ROA not before: Thu 28 Mar 2024 11:08:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213295
IP address blocks: 195.200.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Apr 2024 09:25:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:84:bf:7a:fb:99:e2:fb:bf:b2:be:1a:2a:57:1e:4e:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=403f08bbaffa4161843203a8a757ab6e9546b0ce
Validity
Not Before: Mar 28 11:08:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fb88e221cd7690cf54b4d7b0770994585ea5426e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:9b:cb:4f:c0:c5:9f:99:92:5f:78:95:c8:59:
c8:b5:2b:6e:46:a9:d2:02:a4:31:ee:c2:c5:01:c0:
0c:30:28:a9:c8:f5:81:34:0f:2c:97:e2:f7:cf:f0:
1d:90:ea:5e:73:88:a1:63:f0:3d:4e:46:c9:3b:36:
b1:f5:70:d0:11:92:2e:83:d8:cd:7f:f3:27:c6:81:
9b:67:11:ce:9f:f4:e7:97:7a:89:f0:f3:f1:ae:6c:
5d:ea:39:13:b9:a2:2d:04:48:c6:a8:2b:e5:cd:52:
d7:62:7d:38:8c:8a:ee:c3:56:8b:40:78:c9:51:fe:
1b:02:22:21:69:58:ac:bd:13:77:8f:7e:a1:6c:9a:
e5:14:84:f2:d2:e7:69:45:d2:e5:d0:48:c6:40:4c:
4e:a1:cf:d6:f4:9f:18:7f:ec:28:df:e6:aa:70:a4:
dc:76:d4:06:5a:a9:03:bc:81:ad:8b:a2:e7:50:b2:
cf:df:3f:eb:5a:6e:30:2d:9d:8b:4c:61:b3:f5:a2:
03:74:0d:af:8b:6c:7e:de:21:18:a0:19:20:46:c6:
af:5d:a5:f6:82:21:af:9c:92:ee:22:c1:a8:19:99:
04:1d:8e:3e:13:19:87:74:1c:d1:3b:a6:4f:01:10:
e3:28:3d:34:8b:b5:d1:22:34:09:b4:b6:a0:ba:46:
02:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:88:E2:21:CD:76:90:CF:54:B4:D7:B0:77:09:94:58:5E:A5:42:6E
X509v3 Authority Key Identifier:
keyid:40:3F:08:BB:AF:FA:41:61:84:32:03:A8:A7:57:AB:6E:95:46:B0:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/1-4jiIc12kM9UtNewdwmUWF6lQm4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.200.234.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:ea:d7:33:07:36:b4:b5:68:47:e5:1a:21:a4:e3:e9:4c:41:
b8:69:30:cb:5b:74:f7:10:9a:3c:e1:03:29:ea:6a:fc:a1:d3:
95:76:a7:a1:30:a6:31:de:d6:c4:fd:eb:8c:4d:be:45:83:05:
25:10:c1:a6:70:b5:12:98:d5:26:1a:6c:6e:63:25:2c:82:4a:
27:d3:a5:b8:e7:52:af:d8:2e:ff:b8:4d:aa:00:20:32:d9:bd:
8f:a4:ff:06:37:c3:00:34:2b:a1:77:c7:50:a1:de:29:78:66:
b7:8c:01:43:4c:6e:08:3f:1c:72:89:99:cd:46:39:ce:c2:09:
1b:3f:6c:a9:f5:8c:3a:ae:87:32:f9:48:91:13:79:ae:ca:20:
fd:3b:1c:bc:0a:17:6e:05:04:a6:4d:18:76:ce:75:0e:1f:8f:
83:55:de:e7:d6:48:4c:b3:90:0c:02:37:a9:68:de:c0:57:63:
61:96:82:c1:8a:e6:f3:ce:7e:ae:44:9d:27:9b:8f:61:80:c4:
40:ea:65:c3:59:fa:07:96:eb:d9:f5:8c:13:f3:a4:7e:36:d7:
da:6b:44:1c:0c:d7:40:a5:ff:d5:da:d2:94:48:ae:dc:d5:54:
3b:2a:70:10:e6:c2:0e:ff:d6:4a:39:28:bb:dd:8d:65:95:c5:
99:55:a1:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:16 2024 by rpki-client on console-fra.rpki-client.org