Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/xaBitZNn0a_7gNgLpLq9YHx-_oI.roa
File: xaBitZNn0a_7gNgLpLq9YHx-_oI.roa (raw, json)
Hash identifier: O3AMT3LHOKXeBVDWBKOOr6EtttjBEWWpULUyg9f7CIg=
Subject key identifier: C5:A0:62:B5:93:67:D1:AF:FB:80:D8:0B:A4:BA:BD:60:7C:7E:FE:82
Certificate issuer: /CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Certificate serial: 01856CCAE1E77C5BBAA59BCCC54D7092A0B3
Authority key identifier: 42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/xaBitZNn0a_7gNgLpLq9YHx-_oI.roa
Signing time: Sun 01 Jan 2023 10:05:13 +0000
ROA not before: Sun 01 Jan 2023 10:05:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 194.53.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 16 Aug 2023 07:13:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:e1:e7:7c:5b:ba:a5:9b:cc:c5:4d:70:92:a0:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Validity
Not Before: Jan 1 10:05:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c5a062b59367d1affb80d80ba4babd607c7efe82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:96:97:9b:dd:31:b8:9a:bb:fc:0e:87:b6:fd:
55:40:6d:cc:26:26:b1:6c:bc:52:06:4d:ef:15:9b:
20:18:ac:30:34:d5:5e:68:9e:8d:02:66:2e:b1:1c:
13:b0:60:6e:ca:fa:08:0e:33:eb:26:02:58:e1:d8:
d1:2e:ae:32:f5:85:dc:95:00:87:d6:f7:b5:d5:b8:
7e:3c:ae:3d:59:49:26:28:14:81:e4:d0:ad:73:c9:
f9:8c:35:5c:b8:94:11:97:ed:9a:21:d2:dc:2c:16:
95:8d:7e:06:ad:65:e4:aa:2c:37:36:6d:6b:e2:5f:
3b:ea:3c:2c:6d:3f:fe:39:f7:32:1e:c6:8a:e0:4f:
0c:06:11:5a:4e:25:76:07:39:8d:dd:d2:e9:7b:a2:
58:8c:6e:97:c2:70:10:24:b8:bd:d2:0f:56:29:4f:
ff:d4:ee:f8:54:22:c4:42:91:85:c0:da:a7:17:a1:
e5:37:b1:af:a8:2d:d8:af:05:5e:85:c5:ea:ff:01:
83:55:46:78:b6:91:92:4c:44:01:78:b4:7c:db:42:
72:4e:1e:cc:20:af:ee:4b:36:5c:5e:f1:77:51:cf:
f3:ad:d6:89:e8:9d:db:51:ed:7e:a4:8e:0e:a6:17:
3b:d8:f8:33:1e:31:ca:b6:ab:94:e0:ba:d8:55:6d:
3a:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:A0:62:B5:93:67:D1:AF:FB:80:D8:0B:A4:BA:BD:60:7C:7E:FE:82
X509v3 Authority Key Identifier:
keyid:42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/xaBitZNn0a_7gNgLpLq9YHx-_oI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.53.200.0/24
Signature Algorithm: sha256WithRSAEncryption
18:a1:78:18:89:81:39:dc:37:13:80:0b:83:c9:49:3b:77:7d:
27:ac:32:29:1b:05:61:79:88:17:7d:a3:b2:7b:07:56:59:40:
61:29:fa:9c:8c:5a:b2:06:52:9c:5f:80:38:08:85:1a:86:82:
9a:cd:9c:a0:19:5f:6a:4b:3f:9a:b1:60:59:b0:92:b1:fb:48:
90:4e:69:75:93:16:37:bb:f7:53:ab:95:d0:75:34:52:de:ef:
46:f8:da:a2:11:b9:73:d7:40:b9:59:26:d7:b6:a7:57:13:fa:
21:7c:88:07:ad:ee:27:d9:e0:ad:42:5a:d1:73:db:5f:4c:1f:
14:d2:2b:ac:58:14:4b:0f:93:0c:58:c1:d0:c4:ca:f5:bb:8f:
a5:06:86:b3:5e:48:c9:ce:f5:4a:86:0d:aa:d1:b5:85:a4:b0:
b8:96:cd:ba:2e:77:94:54:5c:30:bc:c0:8b:cc:e5:e3:34:90:
1d:14:1d:fe:00:d5:66:63:1b:68:f0:c0:3a:63:7d:db:3e:17:
f1:83:7e:f4:74:3d:67:10:05:7d:23:41:fc:a6:7b:b6:66:d8:
37:ad:69:54:a1:e5:58:df:9b:c1:e7:16:8e:c9:e0:20:53:86:
66:43:74:10:3c:03:e3:f0:26:1b:5f:ad:5c:49:7d:25:3f:20:
f7:74:60:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:36 2024 by rpki-client on console-fra.rpki-client.org