Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/79ab76-9bf9-47cd-b544-5ee09fead561/1/PdoolrXgKWMIMrYnNdUW9mhaBas.roa
File: PdoolrXgKWMIMrYnNdUW9mhaBas.roa (raw, json)
Hash identifier: Vgt2ScSli0hfdCBsBwzDGgkqM+c2n+8mYeGAcSC2V6U=
Subject key identifier: 3D:DA:28:96:B5:E0:29:63:08:32:B6:27:35:D5:16:F6:68:5A:05:AB
Certificate issuer: /CN=9912d945ac2a49f3b4da2221c27b829aafccb2f2
Certificate serial: 018573716F5F61D365F827E31A9A2F35FC92
Authority key identifier: 99:12:D9:45:AC:2A:49:F3:B4:DA:22:21:C2:7B:82:9A:AF:CC:B2:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mRLZRawqSfO02iIhwnuCmq_MsvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/79ab76-9bf9-47cd-b544-5ee09fead561/1/PdoolrXgKWMIMrYnNdUW9mhaBas.roa
Signing time: Mon 02 Jan 2023 17:04:51 +0000
ROA not before: Mon 02 Jan 2023 17:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24929
IP address blocks: 195.177.100.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:71:6f:5f:61:d3:65:f8:27:e3:1a:9a:2f:35:fc:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9912d945ac2a49f3b4da2221c27b829aafccb2f2
Validity
Not Before: Jan 2 17:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3dda2896b5e029630832b62735d516f6685a05ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:34:cc:2f:95:90:69:03:1a:f5:98:78:17:e7:
8d:7d:b3:ce:21:e4:76:f9:e3:25:6d:9f:65:e5:10:
3d:f5:e1:7c:73:b9:2d:8e:23:22:19:61:65:03:b3:
6e:5a:62:72:f9:e1:40:8c:98:cd:d9:e6:d0:12:50:
64:f4:90:d7:7f:36:24:c7:89:db:eb:32:d2:86:e1:
bd:82:78:14:3a:30:d5:d5:9f:12:13:0c:14:56:aa:
7d:6d:71:28:19:e0:bb:cb:ff:86:e1:5a:24:7a:67:
ac:cd:2d:e3:73:b0:f2:0a:39:78:cc:67:7b:eb:49:
9e:16:b2:7d:58:f7:38:49:c7:89:60:c4:ab:e6:0c:
bc:00:35:50:fa:6b:74:e7:fc:37:d9:a3:77:f9:e3:
b2:b9:6f:45:07:c4:3e:ba:31:31:b4:a9:20:c2:fa:
95:91:95:4a:5a:f5:10:d8:22:57:a7:25:78:51:44:
7c:f3:fb:5f:64:a7:e4:9f:11:3a:3f:33:fc:d8:53:
16:33:b2:aa:1b:b2:14:5b:63:fd:5a:51:36:d0:d8:
03:d6:1c:6c:61:24:48:d1:57:8b:bb:de:d5:d7:f2:
1f:4b:72:a2:4e:77:f0:88:8a:41:d6:7b:dc:52:f2:
b1:8c:ae:7a:de:c6:0c:e1:95:e7:17:67:36:4e:e7:
cd:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:DA:28:96:B5:E0:29:63:08:32:B6:27:35:D5:16:F6:68:5A:05:AB
X509v3 Authority Key Identifier:
keyid:99:12:D9:45:AC:2A:49:F3:B4:DA:22:21:C2:7B:82:9A:AF:CC:B2:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mRLZRawqSfO02iIhwnuCmq_MsvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/79ab76-9bf9-47cd-b544-5ee09fead561/1/PdoolrXgKWMIMrYnNdUW9mhaBas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/79ab76-9bf9-47cd-b544-5ee09fead561/1/mRLZRawqSfO02iIhwnuCmq_MsvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.177.100.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:ca:0c:64:4d:1e:94:87:c5:cc:d8:e2:0c:eb:0a:bd:1f:ab:
28:41:69:3c:1e:57:d1:5c:1b:1e:6e:0d:23:99:f1:06:70:54:
21:6d:29:8b:5a:31:0f:99:53:00:14:8a:55:21:8c:f9:bb:a0:
96:dd:7e:f0:66:ff:53:26:0b:2a:93:7a:f3:8f:5f:73:26:32:
54:fd:cb:72:23:23:da:2c:5e:a4:b4:36:db:25:93:66:90:13:
92:75:c2:c0:47:d4:b5:23:c6:b7:22:22:3d:7c:82:82:a0:68:
8f:67:30:2a:1b:7c:47:aa:81:eb:d6:3c:44:8a:dd:b1:86:0d:
f5:c9:f8:93:52:24:c1:8d:99:f5:7d:92:07:e9:a8:e8:fe:aa:
26:cd:70:80:f1:77:07:6c:44:85:05:23:d1:c9:97:ca:de:94:
bf:0d:e9:44:b9:67:eb:81:ee:d9:5c:9d:0d:ab:c3:39:25:ee:
eb:0a:af:96:12:d5:eb:77:87:8e:47:18:4b:c2:d7:c9:73:ad:
7a:e0:cf:f2:64:c3:7e:a6:89:43:d6:10:8d:90:3a:a7:8e:d3:
f0:61:f7:a8:da:93:aa:ce:a7:75:c4:40:86:98:01:d2:11:6f:
f5:ce:a4:bb:1a:69:5d:09:af:e9:b7:22:de:09:b3:3e:89:59:
3c:71:a8:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:54 2024 by rpki-client on console-fra.rpki-client.org