Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/1d0171-3307-4531-a73a-146a69b6d8e4/1/7UTnPxcs0BfgPsmSkdw33_77OtA.roa
File: 7UTnPxcs0BfgPsmSkdw33_77OtA.roa (raw, json)
Hash identifier: /JADc7ZLUDOnjQxTYueO93TC6clUsmB50B/RWLB0CSE=
Subject key identifier: ED:44:E7:3F:17:2C:D0:17:E0:3E:C9:92:91:DC:37:DF:FE:FB:3A:D0
Certificate issuer: /CN=b5a263d18eb5c540f7478825bb72efac6f28f82b
Certificate serial: 01856FA6DD1C14B5BA6C06EDCC2DED9E9886
Authority key identifier: B5:A2:63:D1:8E:B5:C5:40:F7:47:88:25:BB:72:EF:AC:6F:28:F8:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/taJj0Y61xUD3R4glu3LvrG8o-Cs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/1d0171-3307-4531-a73a-146a69b6d8e4/1/7UTnPxcs0BfgPsmSkdw33_77OtA.roa
Signing time: Sun 01 Jan 2023 23:24:44 +0000
ROA not before: Sun 01 Jan 2023 23:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12779
IP address blocks: 195.74.81.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a6:dd:1c:14:b5:ba:6c:06:ed:cc:2d:ed:9e:98:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5a263d18eb5c540f7478825bb72efac6f28f82b
Validity
Not Before: Jan 1 23:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ed44e73f172cd017e03ec99291dc37dffefb3ad0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:62:9e:8d:29:9e:5e:e0:f7:fb:51:b8:d6:b9:
b8:be:17:39:b1:9f:e5:b3:28:e7:a1:79:61:62:02:
87:e1:31:bb:09:fe:09:ca:29:f3:50:f0:be:92:f9:
b1:21:e6:bd:c3:b2:4f:a8:bb:da:a1:b7:73:dd:9c:
11:f6:93:b6:71:58:f9:b6:f4:9b:1c:ce:5c:fa:8d:
e8:3c:5e:a5:ec:f0:68:4f:14:dc:73:f1:1e:86:bb:
b1:50:59:e7:31:8f:07:fb:33:4f:85:0b:34:05:5d:
66:c6:84:b4:53:b5:b1:c6:07:c8:b7:e3:d5:0e:99:
2d:7a:d1:6d:fc:9e:90:67:1d:64:ae:8d:d8:13:7b:
83:ed:f8:c5:13:46:ec:e6:16:20:fa:d8:ff:3c:6d:
ff:29:51:e3:ec:9d:1a:eb:f4:76:0a:e2:aa:ef:44:
de:96:a0:30:3c:e8:cc:70:72:da:48:e7:1e:7b:a2:
be:a0:71:6d:81:63:67:83:28:bf:eb:83:21:47:8e:
e7:e1:23:b1:7a:67:cf:7b:d1:7d:a3:18:02:81:83:
d4:dd:cd:75:05:fd:21:c4:b9:d7:3d:f2:08:14:7b:
b6:d6:2d:00:5e:b2:ed:d1:16:1e:eb:6e:71:15:e3:
98:90:92:df:82:e3:d8:61:fe:57:bb:54:04:a3:82:
f1:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:44:E7:3F:17:2C:D0:17:E0:3E:C9:92:91:DC:37:DF:FE:FB:3A:D0
X509v3 Authority Key Identifier:
keyid:B5:A2:63:D1:8E:B5:C5:40:F7:47:88:25:BB:72:EF:AC:6F:28:F8:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/taJj0Y61xUD3R4glu3LvrG8o-Cs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/1d0171-3307-4531-a73a-146a69b6d8e4/1/7UTnPxcs0BfgPsmSkdw33_77OtA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/1d0171-3307-4531-a73a-146a69b6d8e4/1/taJj0Y61xUD3R4glu3LvrG8o-Cs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.74.81.0/24
Signature Algorithm: sha256WithRSAEncryption
23:51:fb:b9:f5:2d:83:e7:10:64:a2:b3:f6:a2:43:bb:0d:05:
2c:75:70:09:6c:1a:75:71:cf:ca:7c:c6:f3:03:5b:d7:ca:5e:
aa:0e:22:ec:86:6a:d3:4d:17:ad:48:3e:7d:52:55:07:40:44:
61:8a:32:9b:54:9e:2e:74:e9:13:cf:61:7e:2d:85:0b:79:12:
88:89:8a:e8:43:e2:c3:1c:01:01:1e:a1:7c:ef:bc:d1:3b:ee:
68:2c:bd:ec:58:24:bc:ff:1f:5b:6a:2c:10:ae:53:5a:6e:5e:
9a:e7:cd:99:1d:b6:c1:03:f8:c7:a4:a4:8d:bf:21:92:7c:dd:
bb:ac:76:d5:8a:c8:31:99:df:89:ad:ee:e6:bd:81:da:57:da:
6c:c6:34:ec:22:53:74:01:2b:86:bf:b1:e3:6d:20:c4:6b:13:
22:7a:51:7a:df:4a:8e:29:40:25:37:b0:42:a1:46:5a:e3:8b:
de:8a:4c:d3:c9:c0:82:a1:be:31:0a:8c:d4:ea:5e:a1:5c:c2:
5b:38:0f:bb:e5:8a:5c:ab:2c:f1:59:50:20:bc:72:d4:6f:99:
51:49:21:12:a5:62:13:a5:ee:67:d8:fb:e8:c2:fb:7d:3d:86:
9e:21:5a:10:9a:07:7a:71:50:d8:a8:11:aa:bd:28:f5:d4:c5:
f0:8a:3c:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:19 2024 by rpki-client on console-ams.rpki-client.org