Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/94f642-55f7-4c1c-81d4-9e59c111aa38/1/8g6qVN5ysC8W09RsqAHftztd5HI.roa
File: 8g6qVN5ysC8W09RsqAHftztd5HI.roa (raw, json)
Hash identifier: LhXDK7wYvPtrvCD17wzxkDzHK9w9KFrdm0J7HD8jB4Y=
Subject key identifier: F2:0E:AA:54:DE:72:B0:2F:16:D3:D4:6C:A8:01:DF:B7:3B:5D:E4:72
Certificate issuer: /CN=5e7c13f5ff169afed825b75d8fc077afca50d6a1
Certificate serial: 018CC801A22A797B7C52097C42013C38CD17
Authority key identifier: 5E:7C:13:F5:FF:16:9A:FE:D8:25:B7:5D:8F:C0:77:AF:CA:50:D6:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XnwT9f8Wmv7YJbddj8B3r8pQ1qE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/94f642-55f7-4c1c-81d4-9e59c111aa38/1/8g6qVN5ysC8W09RsqAHftztd5HI.roa
Signing time: Tue 02 Jan 2024 02:29:59 +0000
ROA not before: Tue 02 Jan 2024 02:29:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6830
IP address blocks: 195.230.117.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 07 Feb 2024 12:47:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:a2:2a:79:7b:7c:52:09:7c:42:01:3c:38:cd:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e7c13f5ff169afed825b75d8fc077afca50d6a1
Validity
Not Before: Jan 2 02:29:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f20eaa54de72b02f16d3d46ca801dfb73b5de472
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d5:69:d5:6d:23:a1:2f:f4:08:c6:65:23:36:
9c:67:59:28:74:71:fc:4e:d5:33:55:5f:4b:6a:90:
6b:fa:64:31:dc:d2:e5:d0:d2:76:fc:c9:2a:df:76:
56:1f:5b:3c:4d:2f:b3:aa:a4:a4:a6:d7:05:1b:b8:
36:9d:cd:91:2d:25:81:11:c0:8c:e3:e0:1b:46:cc:
fd:b6:9c:50:82:cf:43:61:01:3d:cb:e0:e5:e4:03:
ac:06:4b:2f:9d:fb:1d:39:aa:62:61:95:17:c6:b1:
b0:3a:be:70:c7:ae:d4:37:b6:cc:99:23:f1:3a:d5:
86:f6:1c:60:a1:57:e8:34:41:82:f5:81:9c:43:db:
6f:5e:b5:b8:56:f5:8e:52:6a:13:ab:f2:11:88:97:
84:81:4f:18:d1:2f:60:e1:e7:86:d1:4c:c7:80:c4:
15:ce:68:b4:77:90:ae:3c:6f:04:1c:99:c2:74:49:
78:13:e6:3d:e0:ac:f3:23:9c:e2:f3:21:e8:2c:8c:
ed:6b:a3:02:87:b2:e3:76:1d:ff:ac:f1:a1:21:41:
14:85:98:dc:81:21:14:77:19:4e:bb:07:27:55:18:
9a:a1:c4:36:ab:8a:c4:ac:69:9f:4f:a7:de:01:0d:
da:84:a9:d3:bb:bc:93:3f:60:da:55:20:d8:c2:74:
26:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:0E:AA:54:DE:72:B0:2F:16:D3:D4:6C:A8:01:DF:B7:3B:5D:E4:72
X509v3 Authority Key Identifier:
keyid:5E:7C:13:F5:FF:16:9A:FE:D8:25:B7:5D:8F:C0:77:AF:CA:50:D6:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XnwT9f8Wmv7YJbddj8B3r8pQ1qE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/94f642-55f7-4c1c-81d4-9e59c111aa38/1/8g6qVN5ysC8W09RsqAHftztd5HI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/94f642-55f7-4c1c-81d4-9e59c111aa38/1/XnwT9f8Wmv7YJbddj8B3r8pQ1qE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.230.117.0/24
Signature Algorithm: sha256WithRSAEncryption
e2:ac:11:e0:a8:ac:cb:f6:96:09:b2:3f:a5:c8:32:45:b3:e2:
96:d1:a6:e9:e3:7c:42:58:e7:db:75:aa:fd:65:2d:fb:96:0d:
24:ea:12:26:a1:f2:ab:72:24:01:47:18:c0:a6:4a:35:c8:13:
c5:4f:bb:5a:a9:74:ad:55:9d:02:45:cd:64:f5:36:e1:5e:f6:
21:f0:0a:3f:5b:23:52:a6:c6:4c:23:54:b7:23:10:48:a3:b6:
fc:13:82:86:bb:77:ac:c2:d0:8e:61:83:58:ba:f8:01:6b:9f:
17:a1:27:be:a8:90:9d:18:f0:60:13:88:ec:2a:23:ff:c7:7b:
1f:e6:fe:f4:0d:02:53:46:4a:d3:9a:66:90:a9:33:68:79:60:
be:77:45:1d:9c:bc:da:b3:4b:ae:61:dd:2b:9a:92:8d:5f:20:
84:e7:f0:cf:ea:9b:0a:4e:a8:b4:6b:f3:17:79:f1:3c:13:98:
7f:6f:c9:03:df:81:01:56:03:4e:73:2d:5f:d5:a0:8f:9d:5f:
73:07:79:7a:bd:f6:ff:2e:4a:69:d3:3f:45:7c:05:b4:72:9b:
f5:78:71:c7:03:7b:a8:81:ab:f9:5a:65:92:62:da:03:5a:e7:
26:5f:27:70:45:b4:eb:4d:e9:94:06:83:42:d7:c6:32:1c:10:
7f:58:f7:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:06 2024 by rpki-client on console-ams.rpki-client.org