Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/9jJIkv2CtMFD3cjXNwiVAFbNRq4.roa
File: 9jJIkv2CtMFD3cjXNwiVAFbNRq4.roa (raw, json)
Hash identifier: XZPQfuaU7E5tp2wvTbe0L2wuy4gdwgZXfvM4TMOZFB4=
Subject key identifier: F6:32:48:92:FD:82:B4:C1:43:DD:C8:D7:37:08:95:00:56:CD:46:AE
Certificate issuer: /CN=80c028ad0e60d7ea8914b13c3a53d8f089160315
Certificate serial: 01856D54095243BC487A55371C9906D39D64
Authority key identifier: 80:C0:28:AD:0E:60:D7:EA:89:14:B1:3C:3A:53:D8:F0:89:16:03:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gMAorQ5g1-qJFLE8OlPY8IkWAxU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/9jJIkv2CtMFD3cjXNwiVAFbNRq4.roa
Signing time: Sun 01 Jan 2023 12:35:01 +0000
ROA not before: Sun 01 Jan 2023 12:35:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39745
IP address blocks: 195.60.78.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:54:09:52:43:bc:48:7a:55:37:1c:99:06:d3:9d:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80c028ad0e60d7ea8914b13c3a53d8f089160315
Validity
Not Before: Jan 1 12:35:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f6324892fd82b4c143ddc8d73708950056cd46ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e1:bf:d4:fa:65:fb:1b:89:a8:4f:22:b0:e7:
40:09:1f:2f:df:4a:49:12:d3:47:eb:54:de:d5:1d:
0f:5f:a2:7e:12:c8:5c:7e:fd:3f:e6:be:3b:1b:dc:
74:ae:4f:53:49:2b:f0:68:70:f8:a6:86:c6:ae:d4:
f9:c8:9e:c7:37:4b:e1:ac:35:4c:07:95:3c:a3:44:
df:4b:34:26:5a:f9:fa:89:0b:9e:0d:aa:b8:15:36:
32:ad:aa:59:c3:94:fa:98:40:37:51:fa:1e:05:df:
be:83:2b:8a:17:0c:44:bc:93:2a:fc:e7:ea:8b:d0:
4b:f5:3e:95:c8:eb:0d:b1:15:f3:6f:3b:94:e2:71:
1a:a7:ab:57:65:a8:9e:d3:62:10:0f:50:67:08:90:
ad:59:9a:b8:35:3a:2e:ce:8b:b5:65:ed:11:1a:b1:
cd:65:80:4a:21:c7:21:a0:5f:4e:6f:5f:2e:0a:c9:
00:41:dc:f9:76:d3:ac:9c:5b:41:5a:f7:19:ca:66:
d4:77:44:be:be:e7:45:5f:cb:b7:49:2f:dd:ab:4f:
6b:59:a9:8e:d4:d6:0d:bb:03:60:09:3c:99:7e:dd:
d3:d8:c3:1b:09:7d:81:73:49:30:22:5f:ff:eb:fd:
a8:7a:8b:7e:db:dd:31:0e:80:c6:30:b3:cf:80:a5:
51:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:32:48:92:FD:82:B4:C1:43:DD:C8:D7:37:08:95:00:56:CD:46:AE
X509v3 Authority Key Identifier:
keyid:80:C0:28:AD:0E:60:D7:EA:89:14:B1:3C:3A:53:D8:F0:89:16:03:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gMAorQ5g1-qJFLE8OlPY8IkWAxU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/9jJIkv2CtMFD3cjXNwiVAFbNRq4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/gMAorQ5g1-qJFLE8OlPY8IkWAxU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.60.78.0/23
Signature Algorithm: sha256WithRSAEncryption
a0:02:7b:93:8b:2a:53:ce:03:08:b8:11:95:03:65:51:85:85:
c2:93:d1:7f:3a:4f:25:21:e0:5a:3b:fc:62:5b:75:3b:db:b8:
24:ea:55:d0:05:00:2d:3f:52:45:7d:b4:2e:5b:a7:bf:ba:28:
25:94:ce:4c:86:b3:f3:a6:40:7a:e8:f7:32:4d:7a:22:6b:9a:
00:69:c6:36:9d:36:b3:5e:47:f8:e4:ad:72:9c:97:0c:7d:af:
65:54:79:00:e6:5b:27:17:34:89:6d:1c:b7:f8:ea:5c:42:e9:
2e:34:c0:ea:85:04:de:bf:53:d7:ff:90:5a:68:b8:c3:65:9e:
20:79:11:1e:bc:af:ee:81:2f:4e:76:71:ec:51:e7:e7:03:3a:
ca:aa:61:59:14:98:a2:58:74:23:e3:22:9d:22:a4:2d:94:82:
f0:de:bd:46:05:dc:9c:80:cb:06:f1:4c:66:5a:8d:9f:05:8c:
d8:c7:a7:53:0b:c1:54:00:ea:8d:71:a7:c9:3c:77:b0:e7:f6:
e2:25:78:b7:3d:a5:13:ef:9a:11:e5:24:0c:21:07:e6:a7:9b:
43:a2:73:8d:3b:f9:ce:ad:df:16:72:4b:38:d8:04:88:50:34:
5a:a3:f1:d5:8b:88:5e:67:cc:95:3f:9b:6d:72:eb:e5:ff:37:
f2:ad:d9:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:56 2024 by rpki-client on console-fra.rpki-client.org