Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/2cb95d-8f0c-42dd-91b9-29ffd0ef560a/1/otPfUhLNuGQf5EgRDm59PgLfVRY.roa
File: otPfUhLNuGQf5EgRDm59PgLfVRY.roa (raw, json)
Hash identifier: sef/k1mu/HcfGPXywPxQe4DP5kWUzcNr2NYW3uBiTA0=
Subject key identifier: A2:D3:DF:52:12:CD:B8:64:1F:E4:48:11:0E:6E:7D:3E:02:DF:55:16
Certificate issuer: /CN=8c74849a970a9304df45f8e28b6eb87ff09e0bea
Certificate serial: 0188BACCCB158BBE7F5396D1BB1E7F21EBD6
Authority key identifier: 8C:74:84:9A:97:0A:93:04:DF:45:F8:E2:8B:6E:B8:7F:F0:9E:0B:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jHSEmpcKkwTfRfjii264f_CeC-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/2cb95d-8f0c-42dd-91b9-29ffd0ef560a/1/otPfUhLNuGQf5EgRDm59PgLfVRY.roa
Signing time: Wed 14 Jun 2023 16:46:03 +0000
ROA not before: Wed 14 Jun 2023 16:46:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198119
IP address blocks: 195.137.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:ba:cc:cb:15:8b:be:7f:53:96:d1:bb:1e:7f:21:eb:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c74849a970a9304df45f8e28b6eb87ff09e0bea
Validity
Not Before: Jun 14 16:46:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2d3df5212cdb8641fe448110e6e7d3e02df5516
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:17:61:0b:bc:06:b1:54:ba:ab:81:f6:a7:cb:
88:b4:b3:19:78:1d:44:24:84:17:f6:42:fb:68:36:
ab:1a:0b:3e:bb:31:aa:0b:7e:52:d0:0e:1c:e1:c5:
02:06:2d:71:e9:4d:96:0b:2d:82:52:cb:19:d8:d2:
4e:87:c8:3d:f3:7b:fb:dc:f2:64:80:f6:1b:7d:76:
cb:3e:17:44:7e:51:c8:3d:56:43:cb:7e:49:14:ac:
40:ea:62:84:23:52:c2:bb:f4:e4:47:01:d2:af:66:
2b:22:e9:87:d0:b8:27:f0:76:d9:cd:ce:95:02:5c:
eb:d0:11:2f:7b:bd:99:a1:fe:ea:78:74:28:1d:a6:
e6:7e:47:d2:2b:46:03:b1:01:89:65:62:28:15:d6:
46:db:14:c9:d6:19:af:ad:58:08:15:dc:c6:83:3d:
ec:ab:76:f2:46:57:f1:ab:9a:ac:3b:e7:e3:d9:10:
46:cf:65:05:82:c6:5b:30:91:8f:6c:bb:88:14:b7:
bf:3d:f5:ca:07:f0:6a:2d:1a:43:bb:64:8a:7c:61:
6e:7e:24:ec:f0:5a:b5:a3:91:4e:e0:dd:a7:d4:59:
08:89:4a:ce:8b:5e:94:54:5c:e4:af:f9:44:f2:e8:
d3:e3:52:b0:2a:31:cf:37:ff:74:d1:4a:99:47:18:
cc:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:D3:DF:52:12:CD:B8:64:1F:E4:48:11:0E:6E:7D:3E:02:DF:55:16
X509v3 Authority Key Identifier:
keyid:8C:74:84:9A:97:0A:93:04:DF:45:F8:E2:8B:6E:B8:7F:F0:9E:0B:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jHSEmpcKkwTfRfjii264f_CeC-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2cb95d-8f0c-42dd-91b9-29ffd0ef560a/1/otPfUhLNuGQf5EgRDm59PgLfVRY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2cb95d-8f0c-42dd-91b9-29ffd0ef560a/1/jHSEmpcKkwTfRfjii264f_CeC-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.137.231.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:d5:e5:df:34:2a:0e:47:33:71:16:9d:6a:43:38:3a:5b:d7:
e3:7f:c5:c2:89:9a:89:e9:b4:7d:0c:59:fe:50:bd:65:6e:3f:
95:04:78:19:9c:8d:4c:a5:d8:4b:72:37:b2:0b:d8:b4:12:b4:
b1:b6:c6:67:a0:9a:62:99:50:16:94:41:5e:89:1e:8b:e8:92:
1b:cb:58:7a:c8:8c:58:ce:ef:4f:b9:7b:62:e9:fe:e4:8e:9e:
5f:19:19:61:cb:40:c6:3d:67:5e:13:f3:a9:d7:3b:6e:1c:d3:
6d:b9:81:43:1a:b0:5d:3e:0d:de:f8:2f:95:23:84:13:a9:ba:
96:5d:b7:70:c3:79:f5:b4:6e:00:17:34:00:fb:02:c7:74:42:
5a:80:19:0a:61:85:c3:6e:57:6e:2a:1b:27:ec:f6:4e:77:ca:
0f:cf:8f:e6:ab:f9:f0:6d:d9:a9:6f:df:f4:a2:ff:12:b8:a5:
4e:26:fa:5c:fd:3e:2c:e9:81:13:73:d9:34:9a:5e:29:a9:f7:
8e:7a:ad:5a:f1:df:29:5b:01:ed:00:b0:77:17:ef:7f:c5:da:
1b:44:13:1e:82:92:de:8d:df:db:14:14:6f:fc:00:72:a4:d1:
f9:5b:d7:35:16:01:9f:92:81:18:be:9f:4c:c1:37:ac:c8:fb:
56:af:4b:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:59 2024 by rpki-client on console-fra.rpki-client.org