Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/47c2da-9c68-4f6f-9798-282fa2c01153/1/9Ns6qMTWNINfemKD3BkXKls-Vdw.roa
File: 9Ns6qMTWNINfemKD3BkXKls-Vdw.roa (raw, json)
Hash identifier: nItatdc1WTI6GGx8trZRDlNbLdQZq3I3PBIXYJl4XCk=
Subject key identifier: F4:DB:3A:A8:C4:D6:34:83:5F:7A:62:83:DC:19:17:2A:5B:3E:55:DC
Certificate issuer: /CN=505046da726aef99beb88a30c8a6faefe7520753
Certificate serial: 018BF6418494FF96017EFBC7A9200C3BA648
Authority key identifier: 50:50:46:DA:72:6A:EF:99:BE:B8:8A:30:C8:A6:FA:EF:E7:52:07:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFBG2nJq75m-uIowyKb67-dSB1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/47c2da-9c68-4f6f-9798-282fa2c01153/1/9Ns6qMTWNINfemKD3BkXKls-Vdw.roa
Signing time: Wed 22 Nov 2023 08:59:30 +0000
ROA not before: Wed 22 Nov 2023 08:59:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29684
IP address blocks: 195.43.137.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f6:41:84:94:ff:96:01:7e:fb:c7:a9:20:0c:3b:a6:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=505046da726aef99beb88a30c8a6faefe7520753
Validity
Not Before: Nov 22 08:59:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f4db3aa8c4d634835f7a6283dc19172a5b3e55dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f4:13:aa:4b:74:2d:85:53:48:eb:86:22:e8:
1e:db:54:91:49:65:02:08:4c:28:fb:53:ec:be:7b:
8a:18:1c:68:c7:83:2c:19:a9:dd:28:5d:c9:a7:f0:
2e:60:2a:e2:fb:7b:cb:1a:68:2c:2c:cd:48:ea:0a:
d0:f7:35:9b:e4:6a:96:c9:7f:15:51:86:68:39:c7:
49:47:3c:7d:69:9e:a4:19:e0:e0:59:4b:b6:21:b8:
7b:f7:d8:30:f8:a4:ea:e9:57:73:09:15:a8:ac:c3:
9c:a0:6d:0d:c6:3f:46:16:31:9d:9d:b7:1e:9d:a1:
2e:3e:32:28:4d:2f:81:3c:a3:ad:52:17:09:c3:68:
e1:8f:d6:27:2a:eb:ac:20:9b:39:04:4d:0a:02:d0:
24:dd:28:91:37:a7:0a:64:e0:61:ce:b4:32:5a:32:
07:2f:63:2f:b2:45:5d:ee:41:3a:75:08:89:35:81:
9e:31:07:21:b4:5b:62:9f:ee:49:01:f7:e8:54:a5:
ca:82:66:8e:1e:9e:ba:64:86:99:e0:cf:9f:a2:46:
d0:d9:79:e7:33:39:a5:b2:af:a6:55:77:f3:ac:33:
6c:9d:2f:7f:61:bc:59:97:75:0c:41:e0:46:66:02:
dd:15:02:62:90:13:28:bb:fd:d3:58:00:a3:b7:2b:
09:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:DB:3A:A8:C4:D6:34:83:5F:7A:62:83:DC:19:17:2A:5B:3E:55:DC
X509v3 Authority Key Identifier:
keyid:50:50:46:DA:72:6A:EF:99:BE:B8:8A:30:C8:A6:FA:EF:E7:52:07:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFBG2nJq75m-uIowyKb67-dSB1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/47c2da-9c68-4f6f-9798-282fa2c01153/1/9Ns6qMTWNINfemKD3BkXKls-Vdw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/47c2da-9c68-4f6f-9798-282fa2c01153/1/UFBG2nJq75m-uIowyKb67-dSB1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.43.137.0/24
Signature Algorithm: sha256WithRSAEncryption
74:07:1d:72:b4:78:20:53:82:40:69:ce:d6:c6:f5:81:ff:a4:
33:fb:65:8e:d3:20:f1:ea:03:cd:ef:24:5f:82:10:7c:4a:c7:
12:17:73:5f:86:e7:d0:d3:3a:46:eb:32:2a:21:26:71:c7:f4:
6a:4d:48:35:d9:df:94:f4:f5:c0:0a:7f:ed:af:78:22:fc:e1:
dc:10:51:d3:e0:19:7f:b8:3f:fe:82:32:c4:64:df:1d:fb:df:
ab:80:b6:a2:b5:50:ba:9c:9a:84:5b:8f:81:19:03:90:68:2c:
06:3f:0a:3a:06:87:ee:97:b0:43:42:7d:18:f9:52:3e:16:49:
79:d5:bf:80:da:b3:57:44:0c:f9:e4:be:74:0c:6a:3e:02:fd:
43:8c:36:1e:fe:10:b4:d3:4b:11:da:5b:09:3c:4f:c7:3a:a6:
b3:5b:0f:30:d8:5a:b7:4a:3b:21:80:81:e3:4b:4d:ce:75:6f:
ba:4f:81:b5:4f:4d:5a:2b:41:f9:74:3f:16:7b:14:d7:b5:de:
25:02:5d:82:34:89:cc:c7:9f:47:47:12:6d:01:51:57:ed:67:
55:e5:96:72:97:e9:1f:5f:5e:35:c3:e0:1e:9b:9a:9a:21:0d:
c8:9f:ec:03:5c:45:03:c0:4c:0b:e1:c8:39:2f:1c:15:b7:69:
e5:d0:c0:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:38 2024 by rpki-client on console-ams.rpki-client.org