Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/fa09f3-d0ea-48d0-acb1-436e34484bfc/1/fWNsqqMqNmfBth0luMV2ZKMTWwo.roa
File: fWNsqqMqNmfBth0luMV2ZKMTWwo.roa (raw, json)
Hash identifier: Amc6fYoeEWrpoq0OVKdC7xypHaH9TaydxgtPwGkkXKI=
Subject key identifier: 7D:63:6C:AA:A3:2A:36:67:C1:B6:1D:25:B8:C5:76:64:A3:13:5B:0A
Certificate issuer: /CN=d2090b6e7691f7e19d771e63581a181d7a6e0da1
Certificate serial: 01856D81C63DA852079FEE975F79211D2A4E
Authority key identifier: D2:09:0B:6E:76:91:F7:E1:9D:77:1E:63:58:1A:18:1D:7A:6E:0D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0gkLbnaR9-Gddx5jWBoYHXpuDaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/fa09f3-d0ea-48d0-acb1-436e34484bfc/1/fWNsqqMqNmfBth0luMV2ZKMTWwo.roa
Signing time: Sun 01 Jan 2023 13:24:59 +0000
ROA not before: Sun 01 Jan 2023 13:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22653
IP address blocks: 195.96.135.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:c6:3d:a8:52:07:9f:ee:97:5f:79:21:1d:2a:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2090b6e7691f7e19d771e63581a181d7a6e0da1
Validity
Not Before: Jan 1 13:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d636caaa32a3667c1b61d25b8c57664a3135b0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:64:67:b5:8a:ca:65:58:7f:60:ba:c6:86:60:
ff:95:63:5f:7e:44:49:6d:32:9c:93:89:7b:e3:a2:
ac:a7:da:87:6b:a7:88:a2:90:5d:48:c5:db:39:12:
7b:1b:7f:e7:57:d7:ed:02:3d:5c:7b:57:37:09:ce:
e5:48:c0:08:4c:bb:e0:ee:93:bc:f9:72:ea:1a:3d:
f3:8a:48:e2:14:07:01:a1:61:46:ea:b2:42:f8:05:
5f:1e:b1:20:49:95:b3:76:f3:89:7e:d0:6b:d5:39:
54:47:27:29:e5:d4:d7:ca:47:13:24:82:87:e8:0b:
cb:4a:23:2f:7c:a2:4e:7e:a1:69:53:55:e3:75:03:
64:b2:0f:12:94:a6:7f:e4:a7:cd:64:8b:85:58:f9:
ca:96:f6:12:d4:17:58:c7:ce:97:b4:90:43:c1:52:
a2:86:79:2f:5d:dd:49:64:a7:f9:56:ed:d6:11:84:
84:49:2a:c0:31:22:20:89:d0:18:69:c8:3a:b2:c2:
d1:a8:d6:18:ec:e7:b0:c7:6e:57:52:31:42:79:66:
83:d0:03:c1:58:b2:6d:5a:f5:b7:e7:83:6d:0f:42:
dd:98:fc:6b:7f:85:c6:d8:20:60:15:0a:6b:ae:cb:
ce:e1:58:18:e7:e8:93:ea:47:83:ff:28:fb:5f:6e:
da:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:63:6C:AA:A3:2A:36:67:C1:B6:1D:25:B8:C5:76:64:A3:13:5B:0A
X509v3 Authority Key Identifier:
keyid:D2:09:0B:6E:76:91:F7:E1:9D:77:1E:63:58:1A:18:1D:7A:6E:0D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0gkLbnaR9-Gddx5jWBoYHXpuDaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fa09f3-d0ea-48d0-acb1-436e34484bfc/1/fWNsqqMqNmfBth0luMV2ZKMTWwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fa09f3-d0ea-48d0-acb1-436e34484bfc/1/0gkLbnaR9-Gddx5jWBoYHXpuDaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.135.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:5b:6b:e4:14:d8:d3:30:0b:18:b5:d3:36:f4:ca:1d:05:7d:
03:a6:07:04:34:29:2c:00:e9:4e:f5:b7:e8:fb:b5:e8:92:ea:
24:fe:9c:04:f1:48:34:bd:2f:3b:11:da:af:c7:97:21:b8:02:
4c:ba:1e:46:9e:89:07:28:07:47:41:51:07:6a:03:a5:f4:e2:
32:22:69:4d:88:fe:29:69:ad:ec:d1:61:45:28:25:ae:9d:f4:
11:6b:aa:a1:e9:f7:f3:25:8e:07:39:4d:0a:10:a0:ab:93:bd:
6f:c3:cb:04:c4:89:6f:72:ca:56:ee:35:94:43:5e:e0:90:84:
25:33:05:28:8e:37:ab:7a:2e:6e:e6:53:5c:42:ae:f5:12:09:
d0:d4:da:6b:a8:dd:d9:65:df:ab:84:5c:52:bb:5f:26:a8:77:
73:ed:69:16:d1:a5:8b:01:24:b6:63:80:78:e5:5c:00:39:9e:
b7:fe:9c:81:14:9a:2d:83:3c:2c:42:4c:fc:61:59:53:50:de:
52:cb:d6:23:1e:7f:00:82:41:8f:5e:f3:40:59:12:58:65:4a:
96:1d:9e:88:2f:3a:6b:70:ce:0d:77:87:82:b6:86:25:71:8f:
83:53:8c:2f:d2:85:65:40:28:83:d5:f0:88:79:f7:fb:10:d0:
d7:a5:31:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:35 2023 by rpki-client on console-ams.rpki-client.org