Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/2894d7-14ee-46ab-882a-21272b87728b/1/CPmoLOVfWp-TLKEKljb-yQ0Ghio.roa
File: CPmoLOVfWp-TLKEKljb-yQ0Ghio.roa (raw, json)
Hash identifier: DJOxOK0UCSkcO23Idf3E/eIcSxYg5TESIn+cBQx/5pE=
Subject key identifier: 08:F9:A8:2C:E5:5F:5A:9F:93:2C:A1:0A:96:36:FE:C9:0D:06:86:2A
Certificate issuer: /CN=8efc610ce7bcf479651fd9518c28894ed1eb5a84
Certificate serial: 018EC273CB7CF04BBBA3C469455AA376773B
Authority key identifier: 8E:FC:61:0C:E7:BC:F4:79:65:1F:D9:51:8C:28:89:4E:D1:EB:5A:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jvxhDOe89HllH9lRjCiJTtHrWoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/2894d7-14ee-46ab-882a-21272b87728b/1/CPmoLOVfWp-TLKEKljb-yQ0Ghio.roa
Signing time: Tue 09 Apr 2024 10:42:32 +0000
ROA not before: Tue 09 Apr 2024 10:42:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203701
IP address blocks: 195.54.166.0/24 maxlen: 24
195.54.167.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Apr 2024 09:54:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:c2:73:cb:7c:f0:4b:bb:a3:c4:69:45:5a:a3:76:77:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8efc610ce7bcf479651fd9518c28894ed1eb5a84
Validity
Not Before: Apr 9 10:42:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=08f9a82ce55f5a9f932ca10a9636fec90d06862a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a3:73:fe:19:26:ce:19:f1:fe:37:27:91:70:
20:cc:10:84:a7:da:0f:52:f9:13:e8:ce:d8:a0:66:
ea:23:ae:36:b3:0f:ee:46:4d:b7:cf:dd:d1:19:2c:
d7:53:4d:1a:0f:65:c4:1f:35:a3:bd:26:da:15:66:
6a:83:6f:a0:32:a2:97:54:83:78:48:00:94:22:c1:
fd:cd:af:27:ff:07:98:05:b4:6b:51:9c:cd:72:cc:
c9:ab:be:09:39:0d:56:83:bd:46:df:c8:89:af:86:
fa:a0:3d:9e:20:92:aa:60:07:3e:07:76:bc:b5:c7:
51:ca:37:d8:4a:6e:67:d4:fd:0c:e5:02:9d:f1:67:
9c:df:ed:89:40:16:ce:7b:a8:d1:71:a3:81:8c:9c:
56:6d:ca:3d:0d:a9:c4:c0:4b:0b:61:a3:ce:e5:0c:
7a:c9:70:c9:76:ff:e0:e8:ac:ff:32:b4:24:f7:8b:
f1:ef:17:cf:f3:91:fd:6e:cc:4e:31:27:6c:c1:8d:
27:c1:b3:4f:f2:4a:a0:b0:8e:3e:c6:ac:52:64:53:
f0:c4:3a:ae:54:f5:2b:09:0b:d1:52:09:c3:d1:8c:
7a:bc:c5:a7:eb:6d:5c:f5:1b:00:e7:e4:89:c5:70:
17:c7:1d:49:c8:5c:a9:2f:8d:8d:28:38:89:30:66:
d0:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:F9:A8:2C:E5:5F:5A:9F:93:2C:A1:0A:96:36:FE:C9:0D:06:86:2A
X509v3 Authority Key Identifier:
keyid:8E:FC:61:0C:E7:BC:F4:79:65:1F:D9:51:8C:28:89:4E:D1:EB:5A:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jvxhDOe89HllH9lRjCiJTtHrWoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/2894d7-14ee-46ab-882a-21272b87728b/1/CPmoLOVfWp-TLKEKljb-yQ0Ghio.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/2894d7-14ee-46ab-882a-21272b87728b/1/jvxhDOe89HllH9lRjCiJTtHrWoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.54.166.0/23
Signature Algorithm: sha256WithRSAEncryption
59:5e:a8:b0:07:2b:5c:37:98:ee:61:49:c7:e0:e8:6a:b0:4b:
c4:cc:a5:25:a6:fe:29:2a:4b:5b:93:dc:6b:8a:f2:e8:5e:e0:
78:cb:81:b7:01:c2:9d:9a:56:c4:ea:ae:ba:04:6b:93:07:d9:
4e:55:1e:3c:54:64:49:78:b4:8b:67:e0:79:dc:08:7f:b9:15:
62:ee:ca:be:6f:e1:72:8c:38:9a:d4:e8:55:f0:3b:64:6d:97:
35:a1:f6:6f:13:a6:54:be:cd:6a:ce:ab:6f:a9:1e:07:21:3f:
ef:87:f0:f2:e7:89:44:6d:7e:d3:e6:d9:35:ca:fe:d4:b9:5a:
7a:e4:5b:49:ad:81:af:c4:04:a5:fa:e8:10:a3:2a:4c:43:4d:
a3:f5:4d:42:fd:4d:ea:8e:da:76:86:0c:54:a1:2c:cf:7c:cb:
ed:ca:01:e2:fd:4c:6e:9d:b2:57:a1:06:01:83:51:cd:bd:28:
ad:8b:08:e8:52:dd:c7:c9:96:3c:fb:49:ec:c9:cb:e9:b7:db:
e0:a6:d4:1b:72:3a:40:79:fe:50:55:c5:4c:b9:f7:39:6c:ee:
04:24:d8:4f:80:75:2b:6a:ff:2d:41:a3:e2:23:13:2c:ff:cc:
0f:71:b7:a6:a8:a9:ac:dc:c0:d3:a2:41:f2:66:65:fb:37:e7:
b0:e4:ec:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:17 2024 by rpki-client on console-fra.rpki-client.org