Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/1acb0c-31a3-4718-993d-11dffe108147/1/_bdiRXuKadt5_pdG_sOOF2tmujY.roa
File: _bdiRXuKadt5_pdG_sOOF2tmujY.roa (raw, json)
Hash identifier: M8laMtnxV8kE1q3GATBtAzWcTPelLl0HvZlfWrPNYCg=
Subject key identifier: FD:B7:62:45:7B:8A:69:DB:79:FE:97:46:FE:C3:8E:17:6B:66:BA:36
Certificate issuer: /CN=6b0ecdbf51360cecae617abe1a3ac6a6ff0a5b6c
Certificate serial: 018571A7C082550585C11BD38ACD835A8462
Authority key identifier: 6B:0E:CD:BF:51:36:0C:EC:AE:61:7A:BE:1A:3A:C6:A6:FF:0A:5B:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aw7Nv1E2DOyuYXq-GjrGpv8KW2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/1acb0c-31a3-4718-993d-11dffe108147/1/_bdiRXuKadt5_pdG_sOOF2tmujY.roa
Signing time: Mon 02 Jan 2023 08:44:57 +0000
ROA not before: Mon 02 Jan 2023 08:44:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50464
IP address blocks: 195.191.76.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Sep 2023 09:38:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:a7:c0:82:55:05:85:c1:1b:d3:8a:cd:83:5a:84:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b0ecdbf51360cecae617abe1a3ac6a6ff0a5b6c
Validity
Not Before: Jan 2 08:44:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fdb762457b8a69db79fe9746fec38e176b66ba36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ec:fa:9b:94:bd:c5:9b:45:50:95:e1:2d:a7:
cd:b5:9a:4e:8e:f6:d7:dd:ba:7c:95:59:ac:c7:85:
71:fa:3a:88:3d:97:7f:6b:7f:3b:41:25:96:df:8a:
f4:c8:77:df:c0:79:ae:e0:a0:4c:4b:17:ea:c7:47:
ed:44:20:26:32:c4:99:64:1d:d8:23:a7:dc:9b:5a:
09:44:b1:2d:1d:fd:48:86:d4:8e:80:4a:8e:d1:fd:
5f:ea:d2:2e:e8:52:ec:5e:76:54:7a:3e:65:1a:35:
50:c5:49:95:20:7a:78:a1:7e:28:77:ec:b8:f0:3e:
99:59:d4:ca:f2:0d:1d:b4:ba:12:b9:ae:4f:fd:8e:
67:7b:40:9e:49:ed:c9:54:67:7a:c2:b7:5d:64:fa:
64:4f:7b:d8:55:be:69:e5:96:2b:00:e6:d0:99:66:
75:3a:2c:9d:99:0d:4b:1c:f8:40:fe:7e:fa:68:8f:
a5:4a:13:26:d8:11:c3:80:ca:0b:16:3b:67:73:ef:
0a:76:35:32:bc:5c:64:f8:c1:fd:40:1c:ed:9d:cf:
8c:e6:61:f5:f7:56:3c:db:cc:69:63:75:23:c9:19:
7c:68:20:88:0f:45:28:ea:2e:33:45:39:3d:7d:c2:
45:f8:18:de:5f:33:f6:21:df:d3:0d:82:3a:00:42:
88:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:B7:62:45:7B:8A:69:DB:79:FE:97:46:FE:C3:8E:17:6B:66:BA:36
X509v3 Authority Key Identifier:
keyid:6B:0E:CD:BF:51:36:0C:EC:AE:61:7A:BE:1A:3A:C6:A6:FF:0A:5B:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aw7Nv1E2DOyuYXq-GjrGpv8KW2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1acb0c-31a3-4718-993d-11dffe108147/1/_bdiRXuKadt5_pdG_sOOF2tmujY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1acb0c-31a3-4718-993d-11dffe108147/1/aw7Nv1E2DOyuYXq-GjrGpv8KW2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.191.76.0/23
Signature Algorithm: sha256WithRSAEncryption
c7:ab:8f:de:c1:41:aa:ef:d5:ae:73:bf:96:e3:82:2c:46:a8:
3a:94:dc:90:70:26:ac:4e:13:3a:0d:2d:a1:ef:82:6e:35:78:
da:ee:d1:de:28:65:2c:88:eb:a3:56:7f:f8:9b:3b:15:08:d6:
75:b2:f2:6f:f8:b0:15:b5:2e:04:b3:91:6c:9f:1c:85:4c:3b:
04:24:12:38:f0:7a:a8:a5:58:6c:02:32:23:3d:98:b4:91:f2:
35:b7:5a:cd:ed:a8:76:d7:15:53:db:4b:f4:82:2c:48:0e:fb:
df:26:a0:46:2f:f7:d4:78:a6:03:f1:8f:74:46:01:32:50:ba:
5b:eb:e1:04:6c:a1:70:15:5e:67:82:0b:51:2e:a1:bb:24:1a:
58:78:66:29:4c:ff:2b:83:14:f4:55:12:bc:55:0e:e2:55:81:
e7:6f:60:d9:3b:eb:60:33:ce:2a:86:fc:e9:54:54:3d:d8:3e:
8c:25:bc:a1:75:12:70:b0:5f:17:ed:66:f3:94:ed:87:7f:d2:
cb:55:f4:af:29:11:31:f2:d8:a9:da:87:f7:20:6d:d5:5e:6f:
fa:ef:93:03:39:f1:79:27:b2:21:99:78:95:22:72:fc:01:37:
39:05:a7:04:86:9b:7a:37:b4:7d:d4:a3:1b:22:88:df:ae:8a:
ec:ba:db:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:47 2024 by rpki-client on console-ams.rpki-client.org