Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/eb1c4f-fd80-4919-b185-f7833a3f2485/1/lua1E7a2Nz5nmAsKVQQ94YbJinI.roa
File: lua1E7a2Nz5nmAsKVQQ94YbJinI.roa (raw, json)
Hash identifier: VCaYZP+VozDOn6yvF2OgyEjhPwwRF3tWp1njqVQNBYA=
Subject key identifier: 96:E6:B5:13:B6:B6:37:3E:67:98:0B:0A:55:04:3D:E1:86:C9:8A:72
Certificate issuer: /CN=3c2afa5c706d3eb0a92da89b5d41b936eb49ccb8
Certificate serial: 018572711EF9284835745C2141DD0E8469BC
Authority key identifier: 3C:2A:FA:5C:70:6D:3E:B0:A9:2D:A8:9B:5D:41:B9:36:EB:49:CC:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PCr6XHBtPrCpLaibXUG5NutJzLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/eb1c4f-fd80-4919-b185-f7833a3f2485/1/lua1E7a2Nz5nmAsKVQQ94YbJinI.roa
Signing time: Mon 02 Jan 2023 12:24:54 +0000
ROA not before: Mon 02 Jan 2023 12:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51328
IP address blocks: 195.226.206.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:71:1e:f9:28:48:35:74:5c:21:41:dd:0e:84:69:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c2afa5c706d3eb0a92da89b5d41b936eb49ccb8
Validity
Not Before: Jan 2 12:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=96e6b513b6b6373e67980b0a55043de186c98a72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c0:dd:c5:4a:f9:3e:81:d5:8a:dd:eb:00:5e:
d6:4c:41:d5:9e:0c:e9:67:17:b0:e0:98:20:a8:46:
62:81:c2:3e:a7:e0:a8:ef:50:ca:bc:5d:c5:fe:b1:
7f:14:9e:a4:dd:38:b0:f5:f4:d3:06:3a:e3:94:ef:
f4:fb:7c:27:7a:eb:6a:6b:04:2d:c8:40:5e:5a:e4:
bc:0a:1f:76:4a:41:3b:78:40:c6:9f:9b:50:d5:23:
4e:88:55:6e:5b:0b:e9:cc:44:e2:24:f6:d9:aa:35:
34:ab:d7:9f:e3:43:6e:e9:f5:ab:df:98:18:b7:94:
c5:be:83:3f:9c:15:8e:2c:d2:00:24:53:0b:da:2c:
02:f8:ee:55:7f:af:3f:5b:7b:2a:ce:6f:62:8f:16:
b6:7e:c5:8a:84:7f:a4:75:3c:e1:d9:b3:84:34:e1:
89:a7:20:01:39:43:4a:78:6b:bd:12:dc:3e:af:c8:
ee:eb:fd:5a:d1:26:81:ec:20:92:14:ca:73:34:1c:
e1:af:93:c4:bf:db:f3:e4:d3:66:80:fa:2b:ac:ad:
5e:ca:78:a6:d5:fb:a2:13:78:aa:6f:f9:0b:e4:7d:
16:e7:74:09:1e:31:7a:60:c2:e6:97:fd:06:d4:a5:
32:85:9c:55:d5:61:ef:b9:d9:a8:fc:7a:46:ac:6b:
85:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:E6:B5:13:B6:B6:37:3E:67:98:0B:0A:55:04:3D:E1:86:C9:8A:72
X509v3 Authority Key Identifier:
keyid:3C:2A:FA:5C:70:6D:3E:B0:A9:2D:A8:9B:5D:41:B9:36:EB:49:CC:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PCr6XHBtPrCpLaibXUG5NutJzLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/eb1c4f-fd80-4919-b185-f7833a3f2485/1/lua1E7a2Nz5nmAsKVQQ94YbJinI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/eb1c4f-fd80-4919-b185-f7833a3f2485/1/PCr6XHBtPrCpLaibXUG5NutJzLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.226.206.0/24
Signature Algorithm: sha256WithRSAEncryption
66:62:b5:ad:a6:16:10:b3:bd:d2:70:68:b6:6b:6e:55:69:c2:
4b:50:3b:74:5f:0e:55:54:7b:34:17:d6:b6:fe:15:b6:53:59:
2f:f4:84:3d:12:dc:62:0a:a3:ba:0a:85:b1:42:29:26:1d:89:
f4:66:bc:de:be:a4:b6:4e:d5:24:bc:21:cc:67:95:02:3a:4a:
57:e6:bc:5d:5a:ec:12:e1:80:56:7a:80:78:b5:4e:f2:fe:6a:
a7:c2:93:61:15:1b:07:67:03:af:09:c2:ad:aa:84:af:32:3c:
5f:0d:34:ee:4c:4e:59:ed:15:a7:62:09:78:47:87:fc:f1:07:
50:bf:66:1c:0d:85:f5:3a:48:77:04:c0:f5:d2:fa:95:f3:80:
52:11:b0:8d:af:29:82:cd:a7:1e:2a:8c:2a:0b:82:7d:81:58:
9f:a1:39:6f:ed:40:fe:8d:d8:8f:1e:df:ce:a8:7a:f4:80:72:
e8:00:4a:23:7b:d1:d5:e6:69:57:6f:22:01:2b:b4:ea:27:8c:
5e:22:44:38:d8:05:a9:99:1a:b4:07:1c:30:d1:d7:4b:7d:16:
ef:8e:69:f7:9f:19:33:8c:ef:38:4b:4d:dd:db:04:59:11:17:
1a:2d:8c:59:65:cc:61:e7:97:f2:15:2e:80:b3:15:5c:5c:87:
2e:55:67:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:43 2024 by rpki-client on console-ams.rpki-client.org