Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/0Aj3vr4_BVxlDPznHYmfKrnNvTk.roa
File: 0Aj3vr4_BVxlDPznHYmfKrnNvTk.roa (raw, json)
Hash identifier: 20IVjBTYWXkLawU3p7XAoDzra8bkNGFIR4ly2di42Fo=
Subject key identifier: D0:08:F7:BE:BE:3F:05:5C:65:0C:FC:E7:1D:89:9F:2A:B9:CD:BD:39
Certificate issuer: /CN=1e5b334965788794d6f147a2f004d13be3257dc4
Certificate serial: 018B91C4D06C03A8C7B066EB6E8556713D48
Authority key identifier: 1E:5B:33:49:65:78:87:94:D6:F1:47:A2:F0:04:D1:3B:E3:25:7D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/0Aj3vr4_BVxlDPznHYmfKrnNvTk.roa
Signing time: Thu 02 Nov 2023 20:41:16 +0000
ROA not before: Thu 02 Nov 2023 20:41:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216045
IP address blocks: 195.8.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:91:c4:d0:6c:03:a8:c7:b0:66:eb:6e:85:56:71:3d:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5b334965788794d6f147a2f004d13be3257dc4
Validity
Not Before: Nov 2 20:41:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d008f7bebe3f055c650cfce71d899f2ab9cdbd39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:3b:e5:d6:f9:82:16:a2:ef:2e:10:95:ed:6c:
5c:5d:cd:9f:45:0a:36:c9:ca:7c:e6:1b:1f:dd:0e:
6f:49:c1:d5:94:9c:12:91:d0:82:d4:ca:3e:ba:f4:
60:62:20:7c:8c:af:fc:35:e5:f5:f5:a1:9d:d6:14:
c2:af:0f:8c:08:80:ef:d7:b4:2d:e6:63:c0:01:9e:
75:45:32:52:91:60:e9:0b:0c:3e:75:af:31:ad:34:
00:21:26:2f:df:38:f7:5e:6a:e4:50:cc:66:57:e0:
22:72:33:8b:3d:da:5f:65:2f:bc:ad:7f:52:8f:5a:
c7:cb:74:f2:df:93:3f:28:8b:99:87:d9:2f:a7:83:
58:c9:d8:3b:05:be:d6:cb:54:43:c1:e7:20:75:0b:
6a:30:13:74:d7:88:88:98:fa:2a:65:b5:96:8b:58:
05:92:9c:2d:3e:97:18:24:59:50:ef:35:1f:fa:e3:
be:24:ef:de:fe:c8:64:1e:ef:87:97:27:26:e3:d8:
7f:f1:c9:0c:b8:e7:a6:9b:b2:ab:eb:34:67:cb:31:
d7:cb:24:19:71:aa:41:78:a6:ba:0a:8e:d2:6d:42:
80:54:9e:22:e5:42:5c:b0:62:c1:cf:37:c8:82:56:
e1:99:f7:97:cf:fe:39:e6:c5:90:a1:0d:da:c9:20:
14:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:08:F7:BE:BE:3F:05:5C:65:0C:FC:E7:1D:89:9F:2A:B9:CD:BD:39
X509v3 Authority Key Identifier:
keyid:1E:5B:33:49:65:78:87:94:D6:F1:47:A2:F0:04:D1:3B:E3:25:7D:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/0Aj3vr4_BVxlDPznHYmfKrnNvTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/HlszSWV4h5TW8Uei8ATRO-MlfcQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.8.200.0/24
Signature Algorithm: sha256WithRSAEncryption
61:90:59:dc:76:3d:8f:9c:9d:80:5a:13:ef:61:e4:f3:57:56:
cc:77:94:ae:46:67:4a:de:aa:3d:a6:d5:40:4e:3d:4c:a5:65:
03:a5:a3:22:e2:ce:60:d4:fb:e0:c1:7f:9a:91:dc:65:f6:6a:
dd:94:1d:e2:7a:c1:4d:8d:77:1c:ad:8d:d5:42:36:4c:54:58:
39:e7:e8:3a:05:94:7a:8d:f0:0f:a1:03:b2:52:85:58:9d:d2:
9f:3d:4c:60:fc:fa:d6:5d:60:b8:91:a4:72:ef:7e:11:32:dc:
7e:24:fa:e4:ce:a5:5e:3b:a0:98:8a:78:92:f6:60:e2:62:5d:
f2:67:c4:fe:aa:d0:91:58:45:ce:6f:3a:65:3a:b3:eb:b8:06:
fc:6c:46:36:c4:de:9f:88:db:22:f9:64:23:f8:5b:dd:5a:6a:
e5:31:0e:87:a4:52:4a:54:9c:22:9e:b6:14:9c:4f:fa:6a:b3:
ba:3b:bc:a3:f0:0d:94:a4:c1:86:c5:7e:00:98:d1:4f:75:12:
ff:4c:15:3c:cf:f1:fb:c8:e9:60:b8:e0:dc:c1:63:1b:17:7f:
b0:6c:d8:78:c7:b0:49:0f:5c:c3:bb:b8:d7:00:aa:2f:0a:27:
f9:ec:fa:34:4e:c3:d7:29:85:c7:e9:08:65:ae:67:06:55:d9:
a5:d2:af:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:30 2024 by rpki-client on console-fra.rpki-client.org