Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/3aa0f5-eae5-49a3-8ee9-0df7df4d5b01/1/FGjucOiAEji7Us6rq3NV28ef7Ho.roa
File: FGjucOiAEji7Us6rq3NV28ef7Ho.roa (raw, json)
Hash identifier: HJly95JoAwFoW2kxAsO7WopE5hxDH6hl5NRfYw9gqHE=
Subject key identifier: 14:68:EE:70:E8:80:12:38:BB:52:CE:AB:AB:73:55:DB:C7:9F:EC:7A
Certificate issuer: /CN=01292e03a731796e1d7b148b1dd235d144352f5d
Certificate serial: 01856CF887C9C33EC184B19A8C2EF680845C
Authority key identifier: 01:29:2E:03:A7:31:79:6E:1D:7B:14:8B:1D:D2:35:D1:44:35:2F:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ASkuA6cxeW4dexSLHdI10UQ1L10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/3aa0f5-eae5-49a3-8ee9-0df7df4d5b01/1/FGjucOiAEji7Us6rq3NV28ef7Ho.roa
Signing time: Sun 01 Jan 2023 10:55:04 +0000
ROA not before: Sun 01 Jan 2023 10:55:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210547
IP address blocks: 195.96.153.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:f8:87:c9:c3:3e:c1:84:b1:9a:8c:2e:f6:80:84:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01292e03a731796e1d7b148b1dd235d144352f5d
Validity
Not Before: Jan 1 10:55:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1468ee70e8801238bb52ceabab7355dbc79fec7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:72:61:24:01:07:22:ff:bc:48:58:e3:6a:de:
0a:05:94:fd:5f:07:a3:74:43:fe:6b:66:56:7b:41:
56:f5:20:61:19:e9:57:50:af:ef:62:29:95:0b:54:
e4:64:9d:a6:d4:69:0c:d1:36:5c:08:04:89:ea:6a:
87:57:c6:9d:73:ec:3c:c6:a2:69:96:b7:87:7a:71:
96:38:7c:04:62:fc:1d:0d:52:30:7b:8f:2a:68:39:
a4:b0:62:e5:be:85:45:0b:98:2e:e6:a5:0a:1e:ac:
5e:1c:b0:54:6f:44:38:18:eb:13:b4:03:3d:d3:ac:
7b:39:ff:6f:66:81:b5:8f:ee:f6:7a:53:6b:0b:0f:
37:86:ad:44:fc:64:38:fa:fa:c6:f9:83:87:f6:e6:
9b:a6:e6:98:d7:10:c4:78:9e:8b:92:79:b9:f1:66:
5f:69:c9:0c:68:c6:cb:76:ab:14:5d:e1:ad:4b:91:
b0:da:75:29:80:4e:73:a8:90:74:d6:84:2a:b4:29:
59:78:64:f5:1f:07:be:e3:1b:83:a3:77:93:0a:00:
2a:ef:5f:0c:8c:6d:b1:53:ca:58:4c:8d:f2:45:8a:
e0:da:56:69:3a:ad:65:22:03:55:48:dd:a8:b7:59:
7f:b9:c4:e8:40:3c:d0:85:f0:55:72:00:30:a3:85:
ea:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:68:EE:70:E8:80:12:38:BB:52:CE:AB:AB:73:55:DB:C7:9F:EC:7A
X509v3 Authority Key Identifier:
keyid:01:29:2E:03:A7:31:79:6E:1D:7B:14:8B:1D:D2:35:D1:44:35:2F:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ASkuA6cxeW4dexSLHdI10UQ1L10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3aa0f5-eae5-49a3-8ee9-0df7df4d5b01/1/FGjucOiAEji7Us6rq3NV28ef7Ho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3aa0f5-eae5-49a3-8ee9-0df7df4d5b01/1/ASkuA6cxeW4dexSLHdI10UQ1L10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.153.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:1a:bf:11:65:d2:2d:1c:e2:e2:e7:24:a4:55:3e:00:da:f3:
86:a0:c5:38:b8:d0:2c:4d:1b:c0:d3:98:29:4c:92:a6:31:71:
6a:35:9a:50:3f:e9:a7:4b:17:59:35:fb:66:17:07:ee:30:ee:
0b:d9:c7:3d:35:69:5a:64:c5:67:5b:0a:85:a1:6d:fa:c0:3e:
12:43:93:a9:27:12:e7:e3:bf:90:0c:90:5c:f9:89:0a:0a:f0:
83:37:2a:64:a9:98:f8:8f:04:78:60:f5:e5:b0:7c:b7:59:bb:
74:f7:3c:c6:e0:99:46:23:82:3f:fe:36:90:13:fc:69:de:11:
3d:ab:8c:8a:26:b9:7c:b9:83:f5:82:85:3f:96:28:fb:15:0e:
a8:94:2d:7c:87:7d:3f:09:09:4d:f1:72:a4:c3:16:7f:d0:1b:
d5:c6:7a:9e:35:1b:7c:b3:3f:ca:c0:67:82:8e:41:bc:3d:25:
9c:bb:24:8b:7e:c0:ab:cc:22:33:fb:a5:91:64:22:8b:4f:59:
4e:aa:02:51:1e:93:e2:de:65:b6:08:47:a4:50:3d:40:bb:67:
d3:17:ff:e9:01:9e:a3:da:28:12:0a:ef:ef:d2:d0:c6:f1:49:
f7:96:21:7f:10:d5:2f:be:4a:1c:f8:75:30:20:7b:84:17:df:
a5:12:cd:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:27:58 2024 by rpki-client on console-fra.rpki-client.org