Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/PRB9HOecUmcmZk9k5XJtlpFtkWg.roa
File: PRB9HOecUmcmZk9k5XJtlpFtkWg.roa (raw, json)
Hash identifier: XATuDRVTTAXH7roHNTxccYW86yP6/BdCXvJS7WCh4S8=
Subject key identifier: 3D:10:7D:1C:E7:9C:52:67:26:66:4F:64:E5:72:6D:96:91:6D:91:68
Certificate issuer: /CN=1e5b334965788794d6f147a2f004d13be3257dc4
Certificate serial: 0189741123EFF963A2A699799DF6B4F47AF4
Authority key identifier: 1E:5B:33:49:65:78:87:94:D6:F1:47:A2:F0:04:D1:3B:E3:25:7D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/PRB9HOecUmcmZk9k5XJtlpFtkWg.roa
Signing time: Thu 20 Jul 2023 16:10:27 +0000
ROA not before: Thu 20 Jul 2023 16:10:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 137409
IP address blocks: 195.8.201.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:74:11:23:ef:f9:63:a2:a6:99:79:9d:f6:b4:f4:7a:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5b334965788794d6f147a2f004d13be3257dc4
Validity
Not Before: Jul 20 16:10:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3d107d1ce79c526726664f64e5726d96916d9168
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f6:4c:b0:51:a5:4d:fd:37:20:90:f3:07:14:
a2:31:8c:78:c4:18:a8:45:6b:d0:f4:bb:ac:99:2e:
b9:54:53:9a:ae:8c:cb:60:ca:44:25:7b:d7:86:5d:
c0:79:16:6b:15:88:fa:ec:a5:b8:28:4c:e2:ef:1c:
3c:dd:12:56:33:34:54:2c:10:4f:c6:33:02:4e:6e:
89:a7:09:d3:9e:86:27:fd:67:a7:5f:be:e2:bf:ab:
c8:78:33:fd:08:b2:24:07:f7:37:92:27:c1:e9:4c:
40:22:ea:6a:03:79:78:f7:a8:b0:b4:60:33:39:48:
8f:eb:7b:cd:12:0c:bb:bb:b9:c0:ff:b3:63:48:97:
00:ae:80:fc:06:ca:fd:6f:d7:87:87:ac:32:ff:7c:
c3:e3:77:6b:87:c1:fb:63:a5:08:12:3c:96:c6:4b:
43:7c:0b:20:ee:9f:2b:30:16:6b:1a:17:8e:e2:d7:
eb:48:19:03:94:e8:88:14:40:f8:e0:67:bb:7b:86:
32:7f:57:3b:8b:2f:f8:b5:71:8d:b9:79:f0:49:a1:
b8:13:f6:96:6c:23:6b:ef:32:cf:ef:d2:97:51:b1:
c4:b1:2e:4a:26:ad:6d:a7:40:8b:ec:88:49:ad:70:
ab:83:7c:04:86:94:aa:6a:90:1b:40:2b:1c:72:49:
92:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:10:7D:1C:E7:9C:52:67:26:66:4F:64:E5:72:6D:96:91:6D:91:68
X509v3 Authority Key Identifier:
keyid:1E:5B:33:49:65:78:87:94:D6:F1:47:A2:F0:04:D1:3B:E3:25:7D:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/PRB9HOecUmcmZk9k5XJtlpFtkWg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/HlszSWV4h5TW8Uei8ATRO-MlfcQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.8.201.0/24
Signature Algorithm: sha256WithRSAEncryption
23:c6:1c:a3:d5:bd:a9:56:b5:2a:aa:45:ba:4c:c6:ef:0b:5d:
02:5a:00:7c:03:32:fe:a7:35:63:83:d6:31:06:57:94:48:6c:
17:33:0f:18:61:98:7e:5a:9c:6c:45:48:0a:0e:a7:62:76:4c:
31:7c:bd:db:1d:3a:c3:da:ad:3e:c5:6e:42:ed:3b:c5:cd:28:
c7:dd:4d:cb:be:f0:44:d0:cf:61:4a:ed:70:8b:28:3a:63:f4:
23:41:4f:41:3b:45:48:d1:0c:94:6a:33:28:31:39:06:cb:60:
60:05:1a:3e:6c:d4:b2:56:14:07:08:16:21:79:7e:57:01:f5:
78:71:dd:cd:78:8d:1b:02:93:c2:75:c1:9a:f4:9a:dc:54:c5:
ce:79:76:b8:19:19:d4:b8:28:f2:44:5c:3d:02:99:37:ac:7d:
5a:08:40:56:b5:19:c0:fe:46:7f:19:c4:99:83:de:56:54:5b:
c2:d1:4e:21:52:4f:51:05:b2:62:ea:68:0e:5a:c7:ef:b7:0a:
3e:80:e9:c5:e3:d6:98:e4:2d:34:85:8d:fd:27:9b:e1:6e:f6:
27:35:6b:aa:9e:f5:de:89:ad:02:ac:e0:81:92:27:69:7d:7e:
7e:62:be:d2:be:be:30:27:b0:8f:4b:f0:91:ee:64:e0:df:a1:
5e:b1:f5:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:30 2024 by rpki-client on console-fra.rpki-client.org