Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/6df248-ec5b-47d7-bdd0-47cc7d1abc6b/1/rVh8DUl8cJaIPm1ciKAc1DaNkw0.roa
File: rVh8DUl8cJaIPm1ciKAc1DaNkw0.roa (raw, json)
Hash identifier: l6oiu2RumKcBV5UeHMHFtzfCU/C/4ehJmXMalCrl7K0=
Subject key identifier: AD:58:7C:0D:49:7C:70:96:88:3E:6D:5C:88:A0:1C:D4:36:8D:93:0D
Certificate issuer: /CN=82534505845fa0a93f8285a6da8bce6d1d7200dd
Certificate serial: 0185720C68E3ECC5DEE0C13FF946EBFFFD29
Authority key identifier: 82:53:45:05:84:5F:A0:A9:3F:82:85:A6:DA:8B:CE:6D:1D:72:00:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/glNFBYRfoKk_goWm2ovObR1yAN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/6df248-ec5b-47d7-bdd0-47cc7d1abc6b/1/rVh8DUl8cJaIPm1ciKAc1DaNkw0.roa
Signing time: Mon 02 Jan 2023 10:34:53 +0000
ROA not before: Mon 02 Jan 2023 10:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8220
IP address blocks: 195.234.180.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:68:e3:ec:c5:de:e0:c1:3f:f9:46:eb:ff:fd:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82534505845fa0a93f8285a6da8bce6d1d7200dd
Validity
Not Before: Jan 2 10:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ad587c0d497c7096883e6d5c88a01cd4368d930d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ad:eb:cc:33:96:1b:43:24:8b:42:98:57:31:
aa:0e:6b:e3:26:31:a8:83:f4:1c:91:81:4a:40:aa:
1c:6d:fc:0d:38:9b:fa:2c:cb:c1:07:94:b1:84:e2:
fe:87:8d:3f:8f:5e:f5:41:40:eb:74:57:07:53:9e:
23:68:a9:ee:0d:33:f8:57:64:eb:d5:60:3a:ea:7c:
ff:15:78:aa:67:b6:ee:48:11:2c:79:ad:b0:3d:1e:
a4:29:ff:f6:29:b0:0c:63:9f:5a:83:3e:32:76:cb:
45:49:b5:93:66:6b:60:89:75:5a:9d:c7:72:05:93:
9c:ef:32:ad:d0:9c:e4:7f:ac:34:a2:9b:3e:8c:0a:
db:8e:dc:78:a2:99:7c:02:b5:41:04:a2:ea:00:29:
67:1b:1d:9b:ce:7f:3e:8b:3a:ff:80:d3:cd:1d:d8:
da:d4:26:4e:c2:1e:07:c3:4d:f4:05:85:a0:76:24:
87:ea:6d:da:9c:25:50:a9:64:df:76:72:7c:bb:44:
3f:e5:e7:83:21:a0:62:a1:bc:ab:e4:02:11:55:cf:
9e:e3:9b:33:a7:50:8d:6e:42:ae:11:91:70:bb:7a:
3a:a1:d8:0f:29:00:93:df:1c:d6:06:e7:b1:38:a0:
dd:bc:de:65:7b:bf:1c:91:da:cc:37:cb:97:f4:38:
c2:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:58:7C:0D:49:7C:70:96:88:3E:6D:5C:88:A0:1C:D4:36:8D:93:0D
X509v3 Authority Key Identifier:
keyid:82:53:45:05:84:5F:A0:A9:3F:82:85:A6:DA:8B:CE:6D:1D:72:00:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/glNFBYRfoKk_goWm2ovObR1yAN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/6df248-ec5b-47d7-bdd0-47cc7d1abc6b/1/rVh8DUl8cJaIPm1ciKAc1DaNkw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/6df248-ec5b-47d7-bdd0-47cc7d1abc6b/1/glNFBYRfoKk_goWm2ovObR1yAN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.234.180.0/24
Signature Algorithm: sha256WithRSAEncryption
43:b3:78:a7:cf:37:29:3f:6d:6d:18:4b:62:20:21:84:00:0b:
75:5f:20:cf:d7:3c:04:23:1b:92:5f:01:a8:aa:66:4e:1b:b4:
33:05:c9:5e:3b:7e:94:85:8d:50:a9:fb:58:53:a0:fd:c9:63:
84:4e:10:a5:11:86:6d:42:21:5f:00:0e:a3:02:ab:2c:0c:bd:
e2:b0:65:a3:95:e4:62:10:fe:5e:01:b3:fa:fb:78:b5:2d:e2:
6c:2a:26:94:db:a2:e8:1f:69:18:61:39:32:a2:be:dd:47:06:
7e:e6:0a:b6:41:32:66:ad:e2:d1:48:b5:02:13:bd:8e:be:10:
f8:9e:1c:b6:c0:7f:7b:fa:50:13:b7:24:c7:de:5f:ad:49:f1:
6c:2a:44:e6:3d:54:d5:00:88:41:a5:81:0c:ca:59:88:48:47:
90:5f:24:30:0c:47:73:5e:0a:fc:02:c1:6f:99:b3:38:23:17:
bc:b0:67:3d:aa:32:f9:b3:61:45:1d:a3:9d:7a:53:5d:46:4b:
1f:32:fe:9c:e1:15:51:68:65:fa:de:82:8e:ea:76:46:84:4b:
9f:d5:22:2f:cc:a5:5a:47:e3:15:76:24:d4:61:0e:a7:ed:7e:
15:0f:3e:1f:40:19:4e:04:bf:5c:d2:10:68:2d:57:98:8e:c9:
6c:6e:4d:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:26 2024 by rpki-client on console-ams.rpki-client.org