Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/3Yh80Vn44xfHUYOXRTuoiR34xKE.roa
File: 3Yh80Vn44xfHUYOXRTuoiR34xKE.roa (raw, json)
Hash identifier: 2/YHALpv7q9305ZNm8bXPh9Th2lNSUET0lvT2ZvsQZc=
Subject key identifier: DD:88:7C:D1:59:F8:E3:17:C7:51:83:97:45:3B:A8:89:1D:F8:C4:A1
Certificate issuer: /CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Certificate serial: 01915A91FD7371E16F006E2A5E71806E513F
Authority key identifier: 06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/3Yh80Vn44xfHUYOXRTuoiR34xKE.roa
Signing time: Fri 16 Aug 2024 09:43:22 +0000
ROA not before: Fri 16 Aug 2024 09:43:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 195.114.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 16 Sep 2024 06:41:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:5a:91:fd:73:71:e1:6f:00:6e:2a:5e:71:80:6e:51:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Validity
Not Before: Aug 16 09:43:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dd887cd159f8e317c7518397453ba8891df8c4a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b5:36:54:e3:ca:df:9a:2f:fe:66:c5:95:29:
67:43:6a:3f:71:61:d8:2d:7c:ea:fe:4c:06:de:90:
15:aa:a4:b3:a3:cf:e7:e8:4b:57:80:cb:ea:6f:34:
36:25:ab:76:f3:75:c9:7b:43:ff:3d:8e:06:ee:00:
20:0e:4a:74:cb:e2:12:bf:aa:84:d5:57:52:c4:1f:
7b:13:ed:aa:2b:84:d2:85:b7:9e:c7:8c:18:02:6e:
0b:4f:4e:22:10:ca:67:cf:1d:31:4f:22:0f:6f:ed:
0b:7c:1a:0b:e0:d9:bd:1d:c3:20:3a:81:19:ac:85:
6e:97:4e:9f:9d:6f:f3:d0:d9:bd:9e:64:e5:97:d8:
6a:93:1b:97:1e:14:44:e9:9b:39:ef:41:de:d5:37:
b5:7c:b5:67:68:d7:b6:17:27:91:2e:23:81:12:27:
2a:33:0a:ea:57:eb:53:76:8b:34:db:af:83:07:ec:
36:36:6b:fb:d9:96:e6:1c:6d:dd:42:31:b8:46:df:
a3:c0:d3:d9:9f:54:7b:8d:1e:d0:d8:2c:43:b3:ee:
ce:b2:6d:16:a6:9a:69:95:da:c4:8a:0f:0a:77:5d:
ab:f7:0e:c2:73:93:8b:72:79:1c:12:b9:2b:e2:b2:
bf:eb:71:02:4c:a7:3d:0b:f8:a6:24:af:8d:12:4a:
b6:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:88:7C:D1:59:F8:E3:17:C7:51:83:97:45:3B:A8:89:1D:F8:C4:A1
X509v3 Authority Key Identifier:
keyid:06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/3Yh80Vn44xfHUYOXRTuoiR34xKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/BnHcx6msc1HHHgvCJ4z0X9Agri4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.114.195.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:52:55:98:ec:86:25:87:8a:5e:92:87:1c:83:b0:ee:34:d2:
6c:8b:39:e2:c7:a3:7d:80:f5:d2:10:f7:1e:65:6c:8f:0e:99:
89:0a:cb:3f:47:5f:65:2c:8b:eb:a5:76:ba:f3:94:b4:5b:c9:
48:c9:be:bd:6e:d3:32:74:79:0b:74:7d:bc:cf:e3:48:30:8d:
04:14:e7:b2:fa:b3:bf:23:a3:33:e6:24:be:52:75:e0:42:93:
6f:bc:70:f1:82:bf:95:84:24:c3:71:64:9d:f0:12:f4:82:d2:
fd:56:25:b3:41:3f:50:45:14:ea:11:35:ca:f9:76:2d:53:8c:
b4:d2:39:4d:c0:43:50:69:c9:c4:c5:94:d5:6c:3b:dc:18:da:
41:ae:c2:70:fb:a5:b0:26:1c:36:bc:c3:9e:ad:d7:80:ac:aa:
f6:e6:d0:c8:c9:da:a7:8d:ac:64:d8:10:56:4f:8d:7a:03:a6:
14:c4:1b:82:90:25:1b:ca:3c:54:c3:a6:18:41:03:86:26:80:
e5:ba:c2:b7:d1:53:1c:ef:b9:db:72:0c:a4:5c:66:fe:09:4e:
5e:ed:50:2e:46:db:45:87:1a:2b:83:d3:81:2a:ef:ae:02:ec:
c5:66:a0:8d:2c:39:88:36:9b:bf:20:44:54:3a:74:cf:0a:be:
7f:a2:c3:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 16 07:38:34 2024 by rpki-client on console-fra.rpki-client.org