Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/dc5a62-064b-45b0-b89d-c01f80a1c805/1/6bkN4tDqp0bcNiilcFXrawdnIp8.roa
File: 6bkN4tDqp0bcNiilcFXrawdnIp8.roa (raw, json)
Hash identifier: aP8uloXSjCoj9IPuMIdUS2cWvf/92vO5upWlGFoQImA=
Subject key identifier: E9:B9:0D:E2:D0:EA:A7:46:DC:36:28:A5:70:55:EB:6B:07:67:22:9F
Certificate issuer: /CN=0e0f4872ad1c1f4fcb213b6b2edb388a2d9c9a23
Certificate serial: 018BD768956C22D9891EFC3050821E62E7BA
Authority key identifier: 0E:0F:48:72:AD:1C:1F:4F:CB:21:3B:6B:2E:DB:38:8A:2D:9C:9A:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dg9Icq0cH0_LITtrLts4ii2cmiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/dc5a62-064b-45b0-b89d-c01f80a1c805/1/6bkN4tDqp0bcNiilcFXrawdnIp8.roa
Signing time: Thu 16 Nov 2023 09:13:57 +0000
ROA not before: Thu 16 Nov 2023 09:13:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21323
IP address blocks: 195.29.91.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d7:68:95:6c:22:d9:89:1e:fc:30:50:82:1e:62:e7:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e0f4872ad1c1f4fcb213b6b2edb388a2d9c9a23
Validity
Not Before: Nov 16 09:13:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e9b90de2d0eaa746dc3628a57055eb6b0767229f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:19:e3:07:a1:f3:f1:94:5d:1d:55:4a:24:32:
7e:f0:b8:5a:dc:53:52:5d:e4:54:1a:68:c2:9e:57:
ba:1b:88:ca:48:92:82:5c:91:a3:5b:9e:b4:0d:63:
db:c0:60:df:6a:37:12:12:d1:89:66:a8:aa:8e:9c:
36:cc:ed:5a:6d:09:b7:ee:62:c0:75:58:5e:55:12:
6e:71:7b:50:a0:e3:f3:b2:81:d9:60:a8:0b:a1:1f:
4c:a6:a4:5f:05:93:3a:73:ca:e6:27:0c:b0:a1:15:
e1:05:61:ce:04:3c:e8:86:e5:9b:55:8e:d0:0d:b0:
93:8e:73:aa:67:de:77:8d:4f:a9:83:3e:64:4b:92:
b5:05:aa:e7:e1:8a:c4:a4:26:f6:8d:c1:b4:3b:53:
2f:fe:f2:95:14:b8:f8:5c:96:c9:96:93:51:a9:44:
3a:c1:6e:aa:cf:f2:ac:d4:52:ac:7e:07:8b:2f:c1:
d8:ca:1e:7c:2b:24:ee:6f:51:3f:87:8d:cc:d1:2a:
9b:f3:ce:bf:b9:d8:53:58:11:c4:4f:57:66:51:af:
c6:5d:8e:8e:c4:c5:29:5e:ca:a3:ed:29:e2:6b:76:
9b:fd:e9:03:5e:53:da:8a:17:6c:7c:b9:f2:45:26:
bb:7a:87:8f:f4:3b:b4:8d:e5:42:ef:7c:d7:bb:d7:
b5:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:B9:0D:E2:D0:EA:A7:46:DC:36:28:A5:70:55:EB:6B:07:67:22:9F
X509v3 Authority Key Identifier:
keyid:0E:0F:48:72:AD:1C:1F:4F:CB:21:3B:6B:2E:DB:38:8A:2D:9C:9A:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dg9Icq0cH0_LITtrLts4ii2cmiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/dc5a62-064b-45b0-b89d-c01f80a1c805/1/6bkN4tDqp0bcNiilcFXrawdnIp8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/dc5a62-064b-45b0-b89d-c01f80a1c805/1/Dg9Icq0cH0_LITtrLts4ii2cmiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.29.91.0/24
Signature Algorithm: sha256WithRSAEncryption
24:20:69:cc:8d:3c:51:67:f0:59:15:7a:93:34:a7:3c:8b:e3:
04:ff:8a:be:38:72:d7:8d:5f:27:35:0a:4d:6f:de:ac:68:38:
ca:fc:d4:b2:8b:67:54:b0:b7:7c:93:d7:20:84:65:23:c1:32:
94:da:fe:7a:21:12:ef:d1:14:82:bf:88:dd:42:8d:54:23:76:
ff:a7:ca:8c:95:22:ea:d6:41:0b:36:0d:a5:21:78:4a:bb:53:
c2:04:34:c0:5a:c2:ab:19:88:e0:f4:26:65:c9:4b:1b:b1:2f:
49:b4:e1:a7:7a:a1:5e:6c:a1:bf:58:b9:65:9a:a5:b6:72:29:
6e:ab:3d:f0:ed:ac:90:4c:92:7b:11:46:9a:b6:f5:7c:39:71:
6f:7a:94:90:e6:3d:09:d3:b2:fb:ea:2b:df:a0:19:db:6c:25:
c5:2e:68:2e:d5:f1:7b:33:64:54:33:f4:1a:91:a8:d0:99:f4:
1d:55:c9:18:8d:e9:ea:24:c5:2a:2a:a7:a8:f9:9d:c1:b2:df:
a4:2b:2d:10:2d:4f:95:46:ab:5f:6d:65:13:c1:c8:8e:0c:c1:
18:b9:f1:81:8b:0e:03:1c:53:6b:a9:15:bf:d0:2c:05:4a:89:
40:f3:e2:bf:ae:13:ef:11:06:d7:7d:d6:9e:12:6a:a9:f2:78:
19:cc:4d:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 08:10:16 2024 by rpki-client on console-fra.rpki-client.org