Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/1eff17-65ec-45ea-a75d-96eb07f7825b/1/lj8rCgVbiw4OgtRIZAILsz0o1zE.roa
File: lj8rCgVbiw4OgtRIZAILsz0o1zE.roa (raw, json)
Hash identifier: YB2/kYqxFeteD0cqQEOJdg+kmiMKKCWzZCP1ZGwTV6Y=
Subject key identifier: 96:3F:2B:0A:05:5B:8B:0E:0E:82:D4:48:64:02:0B:B3:3D:28:D7:31
Certificate issuer: /CN=68e3ba87e3a93468cc3b3c3f60fa63d5e853c314
Certificate serial: 0188FC8381DD976A5FF3A213C69F1C2C45BA
Authority key identifier: 68:E3:BA:87:E3:A9:34:68:CC:3B:3C:3F:60:FA:63:D5:E8:53:C3:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOO6h-OpNGjMOzw_YPpj1ehTwxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/1eff17-65ec-45ea-a75d-96eb07f7825b/1/lj8rCgVbiw4OgtRIZAILsz0o1zE.roa
Signing time: Tue 27 Jun 2023 11:00:56 +0000
ROA not before: Tue 27 Jun 2023 11:00:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28854
IP address blocks: 195.49.240.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:fc:83:81:dd:97:6a:5f:f3:a2:13:c6:9f:1c:2c:45:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e3ba87e3a93468cc3b3c3f60fa63d5e853c314
Validity
Not Before: Jun 27 11:00:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=963f2b0a055b8b0e0e82d44864020bb33d28d731
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:46:17:f7:17:20:e7:6c:14:9c:08:32:c9:28:
f9:f4:17:74:a4:cc:95:e8:80:80:56:13:4d:b6:5c:
0c:c0:67:ff:eb:5f:71:b0:4d:36:87:1e:e1:c3:12:
57:d2:08:a7:89:c8:53:70:97:27:37:79:e2:30:b2:
69:3b:22:6d:7a:28:03:9a:c8:70:4f:42:9b:cc:eb:
f9:e1:1d:4d:f6:ea:e5:2f:d5:70:77:42:e2:7c:12:
78:81:17:64:06:a2:a5:65:fe:0b:c7:17:8e:8b:d3:
a1:8b:b3:4a:bb:d8:12:3a:8b:4d:e1:da:64:17:9c:
53:97:40:1c:0b:d7:15:46:6c:13:ed:bd:37:78:6c:
00:4b:53:89:fd:45:fc:12:08:6a:2f:6b:7a:5f:4b:
ce:fb:7b:52:bf:16:df:b9:a8:25:0b:17:ab:e8:53:
41:c7:79:4b:fc:14:52:98:41:54:0f:55:be:70:80:
cf:29:72:80:e2:ba:d3:c5:5b:53:6a:3d:7a:65:ca:
3a:91:1e:3e:e9:df:fe:1d:0c:87:41:3c:a5:fc:85:
b1:9b:7b:3d:e1:94:22:5e:e6:b3:70:3b:11:b0:4e:
6b:fc:bb:53:7d:ee:a5:ff:89:de:06:61:6e:34:73:
56:96:d7:2e:a0:65:26:7a:93:88:12:15:85:8d:ae:
82:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:3F:2B:0A:05:5B:8B:0E:0E:82:D4:48:64:02:0B:B3:3D:28:D7:31
X509v3 Authority Key Identifier:
keyid:68:E3:BA:87:E3:A9:34:68:CC:3B:3C:3F:60:FA:63:D5:E8:53:C3:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOO6h-OpNGjMOzw_YPpj1ehTwxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/1eff17-65ec-45ea-a75d-96eb07f7825b/1/lj8rCgVbiw4OgtRIZAILsz0o1zE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/1eff17-65ec-45ea-a75d-96eb07f7825b/1/aOO6h-OpNGjMOzw_YPpj1ehTwxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.49.240.0/21
Signature Algorithm: sha256WithRSAEncryption
a1:68:20:3e:eb:39:a8:4f:0e:bb:cd:9f:a7:51:8b:c8:57:d9:
0f:49:46:dc:89:db:f1:ef:45:3b:23:93:d4:82:09:b1:4c:bb:
79:de:71:f0:48:cc:47:8f:dd:b1:d8:6d:06:9f:c8:03:fd:68:
24:81:dc:8c:a6:bf:81:72:f7:3c:71:a5:b8:7f:13:43:25:29:
e3:9f:29:68:63:73:df:6d:84:0e:20:6b:11:30:17:59:0a:5d:
87:4d:22:36:7b:66:ed:7b:2b:3f:05:10:bc:14:23:fa:58:25:
22:34:73:e9:4d:17:53:85:f5:7c:01:ba:5d:7c:de:ea:f7:e4:
5e:01:d2:1c:78:d8:65:44:91:dc:12:5b:6e:48:a1:d6:bb:2a:
7a:de:32:30:e6:96:77:bc:fb:08:a6:86:16:88:ef:1d:4d:1e:
b2:3a:04:46:d8:1a:ab:96:f8:88:dc:9b:0e:d0:0a:77:16:3b:
e7:81:88:6e:bf:6a:71:49:36:60:b8:27:75:e8:dd:f1:65:1c:
e8:21:61:82:06:b0:e7:b5:83:74:50:d4:88:23:86:c5:f4:d5:
03:79:ac:a3:eb:d1:05:3b:da:08:17:72:7a:af:75:4f:ef:d4:
32:74:c4:bb:77:4f:d1:50:d6:40:45:fd:58:c8:c1:ca:39:85:
b0:fc:27:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:52 2024 by rpki-client on console-ams.rpki-client.org