Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/dc5a62-064b-45b0-b89d-c01f80a1c805/1/yqLDLvG8liGPZhYkPLSncy7hTyA.roa
File: yqLDLvG8liGPZhYkPLSncy7hTyA.roa (raw, json)
Hash identifier: dHnU4JPZghET3HoYpY439lIMyu0NHKmU7J+PdFjrxQA=
Subject key identifier: CA:A2:C3:2E:F1:BC:96:21:8F:66:16:24:3C:B4:A7:73:2E:E1:4F:20
Certificate issuer: /CN=0e0f4872ad1c1f4fcb213b6b2edb388a2d9c9a23
Certificate serial: 018BD7689516821ABC59A699FB9B3B70EDDB
Authority key identifier: 0E:0F:48:72:AD:1C:1F:4F:CB:21:3B:6B:2E:DB:38:8A:2D:9C:9A:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dg9Icq0cH0_LITtrLts4ii2cmiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/dc5a62-064b-45b0-b89d-c01f80a1c805/1/yqLDLvG8liGPZhYkPLSncy7hTyA.roa
Signing time: Thu 16 Nov 2023 09:13:57 +0000
ROA not before: Thu 16 Nov 2023 09:13:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15719
IP address blocks: 195.29.139.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 Nov 2023 12:08:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d7:68:95:16:82:1a:bc:59:a6:99:fb:9b:3b:70:ed:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e0f4872ad1c1f4fcb213b6b2edb388a2d9c9a23
Validity
Not Before: Nov 16 09:13:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=caa2c32ef1bc96218f6616243cb4a7732ee14f20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:35:33:a0:77:39:08:84:4c:85:b3:1f:cc:d1:
96:6a:6b:48:2d:a7:94:c8:18:de:a8:7f:73:f9:90:
ce:5b:8b:05:eb:f5:c5:fc:ef:83:c1:4a:b2:fc:d0:
32:e4:4f:ae:32:20:f5:2a:70:47:13:00:00:a1:66:
c3:e2:5a:9d:42:44:ff:58:68:64:42:d5:b7:98:e0:
87:51:a2:88:98:9e:cf:4a:d4:7e:91:22:60:9c:5b:
4d:13:f5:78:15:6c:e5:e4:a6:6c:3d:b8:d4:86:2a:
b1:34:26:b6:e7:2a:dd:59:e9:96:04:93:99:0e:ec:
9b:86:4f:9a:e2:47:39:20:f0:7f:fb:7e:18:bc:0a:
6d:10:86:a9:06:8f:f5:f8:37:8b:93:5a:b3:c7:3c:
8d:7b:64:33:fb:59:af:fe:f9:f6:e2:c7:4d:a9:b5:
56:10:40:f9:2c:11:6e:cc:5f:88:2a:dd:ea:7d:fa:
4e:e7:d1:75:91:9d:09:a8:b0:90:a9:b4:87:65:a7:
15:55:a1:66:0b:62:07:5d:45:4a:7c:13:3c:6d:e9:
6c:8d:0d:08:eb:d5:58:d7:fd:dd:c6:38:06:a1:c9:
93:63:d2:78:95:ae:fd:8f:a9:d2:4e:d2:f1:47:57:
da:fd:3c:ae:7c:a3:06:42:f1:64:84:04:ff:0b:0e:
fc:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:A2:C3:2E:F1:BC:96:21:8F:66:16:24:3C:B4:A7:73:2E:E1:4F:20
X509v3 Authority Key Identifier:
keyid:0E:0F:48:72:AD:1C:1F:4F:CB:21:3B:6B:2E:DB:38:8A:2D:9C:9A:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dg9Icq0cH0_LITtrLts4ii2cmiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/dc5a62-064b-45b0-b89d-c01f80a1c805/1/yqLDLvG8liGPZhYkPLSncy7hTyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/dc5a62-064b-45b0-b89d-c01f80a1c805/1/Dg9Icq0cH0_LITtrLts4ii2cmiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.29.139.0/24
Signature Algorithm: sha256WithRSAEncryption
51:e0:e9:c1:fa:09:47:65:a1:05:2e:a1:92:fe:2f:8c:8d:67:
4b:74:b9:d4:65:ad:10:ce:a2:96:15:7f:0e:f4:99:19:51:73:
d6:e8:ab:e9:03:5f:6f:9f:ad:03:af:15:80:42:70:f5:ee:3d:
98:ac:b1:e8:ef:29:2a:ea:42:dc:25:a7:82:b6:1b:92:5f:51:
51:ef:b5:81:16:1a:c8:bc:e3:63:e5:04:46:9b:d0:ef:43:58:
91:a4:d9:50:17:be:33:e9:d3:cc:2e:d0:2f:74:e8:ff:1e:3a:
d7:57:d4:78:c0:34:82:be:09:1a:ed:90:30:a7:45:9c:8b:ab:
b2:28:8d:73:df:ae:4b:84:a7:02:cf:db:9b:31:43:44:a2:9e:
e8:48:23:fc:20:a3:82:87:f3:3a:ee:58:5c:6a:43:29:6f:31:
2b:b1:0f:88:4b:6e:97:69:f9:41:3a:39:63:c6:10:d9:c3:f4:
e8:37:c7:8b:f5:d4:6b:4e:af:7e:a3:5e:be:05:3c:8b:b3:df:
77:cc:6e:fa:3b:0e:03:90:1b:9b:80:66:6b:95:25:09:0f:3a:
56:78:5e:e5:03:cc:6e:e1:92:cb:d4:d6:ea:2f:57:11:bc:22:
01:71:50:94:1e:77:57:72:8c:14:42:b2:83:2e:69:a9:fc:56:
01:69:bf:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:28 2024 by rpki-client on console-fra.rpki-client.org