Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/ff4d36-6885-44ff-a052-2fb03f67bc44/1/JHlqdSto1wRg3NY0RdzwPWvwIPQ.roa
File: JHlqdSto1wRg3NY0RdzwPWvwIPQ.roa (raw, json)
Hash identifier: M9n96mHXTTGYzpjmgCbClczDKF5kibxwgA1zEi1f4ZE=
Subject key identifier: 24:79:6A:75:2B:68:D7:04:60:DC:D6:34:45:DC:F0:3D:6B:F0:20:F4
Certificate issuer: /CN=e9fd155b08ee1a0df3ca418575ea3af901a82853
Certificate serial: 0188FCC0D927353B723E4F12F980D8C32FFD
Authority key identifier: E9:FD:15:5B:08:EE:1A:0D:F3:CA:41:85:75:EA:3A:F9:01:A8:28:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6f0VWwjuGg3zykGFdeo6-QGoKFM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/ff4d36-6885-44ff-a052-2fb03f67bc44/1/JHlqdSto1wRg3NY0RdzwPWvwIPQ.roa
Signing time: Tue 27 Jun 2023 12:07:56 +0000
ROA not before: Tue 27 Jun 2023 12:07:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 195.191.145.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:fc:c0:d9:27:35:3b:72:3e:4f:12:f9:80:d8:c3:2f:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9fd155b08ee1a0df3ca418575ea3af901a82853
Validity
Not Before: Jun 27 12:07:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=24796a752b68d70460dcd63445dcf03d6bf020f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:1c:89:7f:1f:b6:5b:61:79:dc:60:df:ec:25:
6d:4f:a0:d2:a9:84:14:05:7c:5e:a9:e7:9b:15:cc:
dd:c6:2f:7f:df:58:5a:29:cc:ad:26:ba:02:67:d8:
85:a9:17:64:c8:03:fe:07:40:83:67:25:6b:78:18:
ad:b1:42:1f:b0:31:e9:42:f5:f7:dc:6c:f4:9e:09:
24:5e:ca:32:dd:01:98:2b:9f:5d:a2:56:43:a2:99:
ef:64:4f:ec:6d:e7:59:8a:ef:8c:ad:b7:80:b1:1f:
01:1e:d1:a6:c5:95:1d:64:66:7a:52:b4:31:6f:4d:
77:e3:c1:aa:b8:69:f7:15:6d:69:5e:92:11:5e:18:
ca:d7:8c:f4:27:a2:5f:ea:e4:9b:9d:a2:88:4f:cf:
95:b3:86:c3:71:88:79:89:c4:0f:ca:64:b1:d2:48:
d6:54:54:bb:cd:ad:cd:18:59:2c:35:eb:db:d8:29:
95:f8:17:9b:ff:71:cb:2d:1e:2d:02:17:ef:8c:87:
d9:39:46:fd:4e:79:3f:10:2b:f9:7e:63:45:11:c7:
c6:a1:4d:b7:34:ba:01:cc:6e:fd:d0:80:b3:32:be:
49:96:ee:33:52:50:35:20:e5:68:49:20:77:39:98:
2a:46:a3:92:b5:a9:54:4c:82:a1:c6:ac:4b:45:d2:
ab:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:79:6A:75:2B:68:D7:04:60:DC:D6:34:45:DC:F0:3D:6B:F0:20:F4
X509v3 Authority Key Identifier:
keyid:E9:FD:15:5B:08:EE:1A:0D:F3:CA:41:85:75:EA:3A:F9:01:A8:28:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f0VWwjuGg3zykGFdeo6-QGoKFM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/ff4d36-6885-44ff-a052-2fb03f67bc44/1/JHlqdSto1wRg3NY0RdzwPWvwIPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/ff4d36-6885-44ff-a052-2fb03f67bc44/1/6f0VWwjuGg3zykGFdeo6-QGoKFM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.191.145.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:a8:54:25:81:d8:98:80:9e:56:a1:07:3a:a7:68:b2:43:13:
6b:6c:e8:16:2f:54:49:65:21:f3:6f:cf:3d:b5:83:f8:16:aa:
3e:70:96:61:c5:ee:5d:34:a2:1a:22:48:ee:88:95:26:cc:d6:
5b:6c:d3:bd:12:05:ed:4e:5f:28:cb:2e:dd:f4:63:51:82:44:
30:4d:90:f2:5c:c9:cd:6b:f8:ad:8d:a6:fc:44:b3:58:2c:bd:
9a:0f:57:b8:7e:e7:57:83:57:7d:6d:d8:d8:85:93:79:43:5b:
58:37:87:02:4b:42:35:36:7a:9a:6f:6d:a2:39:99:01:9d:21:
67:88:b3:43:0d:80:e4:33:1b:82:3d:50:ea:2b:db:14:50:79:
da:f3:14:dc:f7:19:b0:3c:82:0e:24:62:95:0c:c9:aa:b1:02:
f8:31:82:10:32:c3:f1:85:25:2f:3f:1a:f5:91:49:68:a0:54:
59:ee:3b:4b:6d:fc:b1:76:4b:85:1b:cd:ee:5b:34:35:31:10:
86:e0:a4:92:3b:d6:23:8c:0d:94:95:ef:1f:30:d7:52:bd:86:
5b:af:49:0b:62:dc:b6:0c:c6:43:aa:57:04:2f:96:d3:40:3b:
ed:5a:87:11:47:ee:8a:4b:bb:13:62:01:f1:75:90:1f:35:ed:
99:80:30:21
-----BEGIN CERTIFICATE-----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Generated at Thu Jul 27 19:36:00 2023 by rpki-client on console-ams.rpki-client.org