Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/p0eo80D92NgWLyEFB2UraXsp7O8.roa
File: p0eo80D92NgWLyEFB2UraXsp7O8.roa (raw, json)
Hash identifier: 0+flJV3NMOyCnrbVLv0VocN9eyGXsoedwYWxf4X/wVw=
Subject key identifier: A7:47:A8:F3:40:FD:D8:D8:16:2F:21:05:07:65:2B:69:7B:29:EC:EF
Certificate issuer: /CN=97f697013433b891d64697d928663be734dba4e7
Certificate serial: 01856F3021A3F9DE5E754704D837BA75D37C
Authority key identifier: 97:F6:97:01:34:33:B8:91:D6:46:97:D9:28:66:3B:E7:34:DB:A4:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/p0eo80D92NgWLyEFB2UraXsp7O8.roa
Signing time: Sun 01 Jan 2023 21:15:03 +0000
ROA not before: Sun 01 Jan 2023 21:15:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21147
IP address blocks: 195.190.141.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:30:21:a3:f9:de:5e:75:47:04:d8:37:ba:75:d3:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97f697013433b891d64697d928663be734dba4e7
Validity
Not Before: Jan 1 21:15:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a747a8f340fdd8d8162f210507652b697b29ecef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:1a:82:37:c7:05:da:42:5a:38:e1:d8:c2:07:
a8:8a:50:ee:12:6e:27:7a:d2:17:00:39:af:2d:bf:
f2:24:3a:6c:b7:00:3f:b5:91:de:64:3b:bf:1d:15:
94:a8:c4:5d:44:fc:9d:19:ef:3d:24:1c:6c:38:5f:
bb:56:e3:79:1e:fe:fe:24:2e:3b:e3:38:8b:02:60:
e1:dd:d6:d1:18:0a:9b:1b:38:1b:6e:d6:62:f4:34:
cf:c7:99:b6:bd:6d:37:dc:11:0c:b6:7c:90:3e:10:
e3:2b:55:5d:00:ab:dd:49:f6:7a:ef:83:58:5e:d3:
0b:72:2b:93:85:f8:29:2d:9c:b8:8b:53:d9:a6:f6:
30:d5:33:97:2e:0e:ce:a7:30:63:b1:fb:11:17:ee:
18:07:74:40:f5:a4:65:28:93:df:2c:19:e1:0c:3d:
ad:5b:90:65:ef:27:2b:6d:11:a2:da:c5:6e:93:f5:
07:08:ff:ff:ef:74:7a:28:34:93:3c:39:d0:a4:a5:
f0:86:ae:8d:43:8c:73:2b:e1:51:69:a6:85:4a:4d:
d5:36:c3:a6:24:c3:f4:96:19:66:8e:ed:6b:3c:b7:
e2:b7:f7:fc:97:0a:6d:35:2a:b9:85:32:dd:27:c4:
5c:de:b6:9b:2d:da:9f:52:39:c8:06:e4:d4:83:57:
cf:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:47:A8:F3:40:FD:D8:D8:16:2F:21:05:07:65:2B:69:7B:29:EC:EF
X509v3 Authority Key Identifier:
keyid:97:F6:97:01:34:33:B8:91:D6:46:97:D9:28:66:3B:E7:34:DB:A4:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/p0eo80D92NgWLyEFB2UraXsp7O8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.190.141.0/24
Signature Algorithm: sha256WithRSAEncryption
83:d5:23:09:c3:32:f8:40:42:63:d2:30:79:d3:ed:65:17:9f:
bc:13:85:6d:7f:63:59:04:46:23:70:31:72:24:ee:95:7c:e4:
da:19:8e:86:e0:dc:bd:c3:bb:6d:14:ec:c4:75:7f:11:99:a1:
d2:bf:07:5b:78:fb:0c:b3:6e:64:55:91:81:e1:77:a3:e4:93:
a9:61:e8:8f:65:cb:e7:63:a7:4a:93:2a:b8:9e:da:e1:4f:44:
9d:95:10:1f:c2:7e:88:68:1a:d3:0d:4f:3d:f6:7a:e0:52:43:
bc:e2:6b:86:94:ab:1e:14:70:37:1e:49:38:b7:df:d9:34:4e:
6e:83:d6:f2:0b:d2:35:22:22:25:de:e2:88:7e:5d:0d:f3:d2:
3a:be:92:53:e5:a0:2b:f3:13:86:11:38:37:d3:19:53:dd:2d:
92:12:d9:78:3a:16:7b:f7:30:2b:27:63:e8:c3:5e:79:c1:ad:
e5:2f:8a:b7:70:0a:40:f4:fa:98:2e:92:2c:29:01:70:c4:4c:
f9:4f:4e:7f:2a:fe:4a:2b:7d:37:4a:35:d7:cc:d1:c1:d0:c6:
9d:31:2b:c1:d7:78:46:05:b5:46:c2:68:52:fb:3f:7a:01:96:
c3:a8:33:30:75:95:e0:dd:1a:99:fb:d7:9a:7f:dc:1c:46:8f:
67:ef:6c:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:20 2024 by rpki-client on console-ams.rpki-client.org