Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/ccb162-949b-4837-b580-cf51d8e4c14b/1/8N87-jfaJbxtAuEo6sbWp4a4nkk.roa
File: 8N87-jfaJbxtAuEo6sbWp4a4nkk.roa (raw, json)
Hash identifier: CXG8Cw3qTg/l7IkIpPYgFqEH+6Q7R+tHOZbPRyVHANU=
Subject key identifier: F0:DF:3B:FA:37:DA:25:BC:6D:02:E1:28:EA:C6:D6:A7:86:B8:9E:49
Certificate issuer: /CN=99e87d564ccb8611e140a7b2bf260c4a222b59d6
Certificate serial: 018C7D1107CFD8773D926464C96840F90AA3
Authority key identifier: 99:E8:7D:56:4C:CB:86:11:E1:40:A7:B2:BF:26:0C:4A:22:2B:59:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/meh9VkzLhhHhQKeyvyYMSiIrWdY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/ccb162-949b-4837-b580-cf51d8e4c14b/1/8N87-jfaJbxtAuEo6sbWp4a4nkk.roa
Signing time: Mon 18 Dec 2023 13:15:17 +0000
ROA not before: Mon 18 Dec 2023 13:15:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48893
IP address blocks: 195.114.16.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:7d:11:07:cf:d8:77:3d:92:64:64:c9:68:40:f9:0a:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99e87d564ccb8611e140a7b2bf260c4a222b59d6
Validity
Not Before: Dec 18 13:15:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f0df3bfa37da25bc6d02e128eac6d6a786b89e49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:a9:3e:32:03:36:87:48:16:33:be:7f:b7:50:
43:6c:50:3d:c9:6a:21:3f:f7:49:93:30:6c:c9:65:
3b:d0:33:c4:7b:1b:b2:d6:d6:ca:12:a3:d7:80:b5:
eb:7a:d6:d7:66:4d:f5:82:8a:66:b5:d9:05:77:fd:
c6:33:4f:66:fa:bb:f3:df:e6:df:3e:bb:c6:be:96:
67:a5:06:75:c8:ef:3c:cd:74:8f:96:9a:0f:7f:a0:
b9:27:6e:05:54:55:b1:58:2d:2e:a9:f2:b3:2f:85:
af:c7:95:2d:d3:6a:62:4a:ad:ee:94:fc:6b:bd:18:
93:e3:9d:49:42:48:9c:a1:f8:db:25:1d:90:5c:2c:
87:f7:e5:86:6b:d7:f9:bd:c0:c5:cf:95:a4:6c:1f:
f2:82:36:85:99:af:ef:1a:d0:b2:a4:95:86:ac:4c:
ff:4d:e5:ed:c0:3b:0b:04:76:54:80:e8:a7:6f:74:
38:e0:aa:40:4f:ba:54:2b:f8:13:1c:ee:f8:c2:ce:
79:ef:41:25:e2:ae:47:bf:7b:57:2e:bd:d8:ab:6f:
f3:03:af:29:38:ad:f2:8f:7c:46:61:5a:b9:8b:36:
b6:7e:01:e9:63:e2:cb:bd:cd:73:a1:d3:ef:47:60:
12:7a:45:4a:de:39:53:c0:cf:e6:95:bb:f7:65:f8:
c5:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:DF:3B:FA:37:DA:25:BC:6D:02:E1:28:EA:C6:D6:A7:86:B8:9E:49
X509v3 Authority Key Identifier:
keyid:99:E8:7D:56:4C:CB:86:11:E1:40:A7:B2:BF:26:0C:4A:22:2B:59:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/meh9VkzLhhHhQKeyvyYMSiIrWdY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ccb162-949b-4837-b580-cf51d8e4c14b/1/8N87-jfaJbxtAuEo6sbWp4a4nkk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ccb162-949b-4837-b580-cf51d8e4c14b/1/meh9VkzLhhHhQKeyvyYMSiIrWdY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.114.16.0/23
Signature Algorithm: sha256WithRSAEncryption
4e:0c:5e:51:51:d4:92:ec:6b:ff:d2:d4:3a:3a:39:04:03:15:
db:ad:b6:f4:e5:c5:c4:d5:5e:aa:7c:21:ae:4e:da:4a:3c:2f:
21:a9:6a:30:ec:2c:47:f0:8f:08:84:0a:df:3e:1a:52:20:cb:
c9:da:c6:36:5a:ee:7d:6a:3d:48:5d:76:66:b2:9c:1b:c9:a6:
8f:cf:03:18:cc:d3:73:e2:60:9d:c3:c2:dc:e5:c7:9e:fb:9a:
ea:28:0b:55:60:e5:8a:db:7f:29:a3:e2:85:3f:18:d1:87:1f:
18:ae:31:4d:39:98:52:f3:ff:5f:7a:55:a6:c5:dd:be:da:d1:
0f:21:9a:2b:d9:95:dd:59:a2:a2:f8:9a:52:8d:10:b2:cb:ed:
f6:0a:1a:32:1e:a1:17:24:20:35:44:2b:cf:c7:8a:0f:da:73:
88:ec:3d:e4:34:60:b7:2f:e9:b0:18:12:d9:0f:fc:44:9d:44:
21:ac:6c:ad:88:8d:e9:fe:e8:74:44:64:65:5d:ca:85:e6:30:
0c:2a:42:74:e6:92:9a:31:f7:59:ef:dc:eb:94:f2:fc:bc:ea:
38:e2:1a:d5:35:d3:eb:be:85:60:cd:88:d2:8c:0c:49:e2:39:
72:22:67:02:bb:57:3d:ff:b6:71:b7:a4:6b:ca:0f:11:c3:11:
5e:ad:a3:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:30 2024 by rpki-client on console-ams.rpki-client.org