Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/8c17ba-5ab4-4f59-b4be-ad6a81b82a17/1/nGGNyYQWh1TrlCWwXVMzA6BSupQ.roa
File: nGGNyYQWh1TrlCWwXVMzA6BSupQ.roa (raw, json)
Hash identifier: PJSqn+QZBX6wTpnCbnvUcrTRefMjlhHIv+TC3X6VVbs=
Subject key identifier: 9C:61:8D:C9:84:16:87:54:EB:94:25:B0:5D:53:33:03:A0:52:BA:94
Certificate issuer: /CN=2aab6db005f8ecd9a121c636858075ef13145db0
Certificate serial: 01856C939155AE7E77E5144E7AC089BF38D1
Authority key identifier: 2A:AB:6D:B0:05:F8:EC:D9:A1:21:C6:36:85:80:75:EF:13:14:5D:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqttsAX47NmhIcY2hYB17xMUXbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/8c17ba-5ab4-4f59-b4be-ad6a81b82a17/1/nGGNyYQWh1TrlCWwXVMzA6BSupQ.roa
Signing time: Sun 01 Jan 2023 09:04:48 +0000
ROA not before: Sun 01 Jan 2023 09:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29015
IP address blocks: 195.245.250.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:93:91:55:ae:7e:77:e5:14:4e:7a:c0:89:bf:38:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aab6db005f8ecd9a121c636858075ef13145db0
Validity
Not Before: Jan 1 09:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9c618dc984168754eb9425b05d533303a052ba94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f6:d0:86:be:83:2e:ef:4c:48:d2:56:48:10:
87:38:73:03:73:f1:12:9e:6d:e2:b2:83:18:85:e1:
08:c6:d0:26:63:04:52:71:a0:2e:29:72:f5:e3:af:
07:aa:20:82:fc:8a:c3:a3:63:88:c9:eb:6d:7e:87:
ac:60:f1:47:33:00:ef:a4:6a:1c:a9:67:ac:09:4c:
d0:7d:69:29:5e:1b:22:ba:33:12:ce:07:da:50:40:
83:1a:02:02:79:df:4e:7d:6c:08:94:f6:44:a0:9b:
b5:3b:a6:06:9c:d4:9d:fb:24:35:e8:53:e2:2a:26:
7c:b8:e8:91:b3:13:b6:7e:31:f2:6a:09:02:16:e6:
99:c1:77:3b:0f:20:08:b0:f3:08:6e:2c:a4:a6:03:
15:cc:fd:b6:04:25:38:53:9a:7b:56:42:b3:54:8a:
44:4b:1b:3b:3f:ab:71:51:54:da:2f:18:e4:74:b2:
34:0a:95:c8:35:87:56:b3:e5:dd:cd:80:b8:d8:fc:
df:85:6a:87:1d:e7:a1:28:90:44:fb:7f:86:89:2d:
1f:bf:ff:1d:4e:64:d8:c3:ac:ca:12:d1:4a:8b:34:
49:d8:3b:bd:14:64:27:83:7e:b9:5e:88:70:c1:7a:
61:66:bf:e1:d2:39:9d:d7:a5:89:94:73:88:64:07:
fe:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:61:8D:C9:84:16:87:54:EB:94:25:B0:5D:53:33:03:A0:52:BA:94
X509v3 Authority Key Identifier:
keyid:2A:AB:6D:B0:05:F8:EC:D9:A1:21:C6:36:85:80:75:EF:13:14:5D:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqttsAX47NmhIcY2hYB17xMUXbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/8c17ba-5ab4-4f59-b4be-ad6a81b82a17/1/nGGNyYQWh1TrlCWwXVMzA6BSupQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/8c17ba-5ab4-4f59-b4be-ad6a81b82a17/1/KqttsAX47NmhIcY2hYB17xMUXbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.245.250.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:c3:dc:df:54:b8:83:86:36:cc:ce:22:1e:95:fd:12:f2:45:
27:06:bb:4a:38:b9:a0:df:3a:21:9f:6b:c3:12:3b:4f:19:56:
9b:c1:25:02:11:eb:67:60:a8:8c:c9:dc:59:b1:54:e0:1d:a9:
1d:fa:2a:48:83:cc:8e:da:ed:d6:4f:25:20:8c:35:ed:2c:b0:
0a:67:e0:05:ba:cc:ca:9b:9a:61:b2:3d:6a:0a:16:bd:54:a9:
76:7b:5f:82:e9:b8:9e:4d:d5:f2:ed:9c:c8:a2:16:8f:02:d8:
2b:49:c3:eb:2e:5a:eb:10:aa:b1:0b:e1:f1:a6:ae:ad:5f:2c:
09:6c:8c:38:24:57:9a:5f:bd:7d:b0:3f:93:1f:c6:e4:d6:cb:
40:49:df:34:e8:45:c6:c0:db:4b:b1:8b:03:fe:13:ab:71:f2:
b7:49:3b:20:5d:66:0d:e6:da:f9:37:5d:e8:ce:77:ae:87:79:
7a:37:61:56:7a:ab:18:f8:e7:11:fb:d7:c5:4a:76:2b:e8:eb:
b9:4d:f0:22:89:bf:22:b1:ec:a7:26:96:7f:a2:73:fa:ec:95:
84:27:02:85:7e:aa:7b:55:2e:f9:54:cb:65:3e:8a:63:88:4e:
99:6f:0a:62:4c:41:69:ad:70:f2:7f:a0:a2:57:2e:70:e7:a8:
52:4f:00:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:10:51 2024 by rpki-client on console.sobornost.net