Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/2a1ce9-fb4c-41ee-9ff6-316ef261f4a5/1/Sxhm2WrpryqaZTXU5pX_XGPIndw.roa
File: Sxhm2WrpryqaZTXU5pX_XGPIndw.roa (raw, json)
Hash identifier: 8t6VGyoWpbpAYlvrziw2Kto5hnUr2CZqKChVv6oBaeQ=
Subject key identifier: 4B:18:66:D9:6A:E9:AF:2A:9A:65:35:D4:E6:95:FF:5C:63:C8:9D:DC
Certificate issuer: /CN=213e1d50d52288bee80eea435577018712409bbe
Certificate serial: 018571151F7F7518E5B4179195EFEF91B072
Authority key identifier: 21:3E:1D:50:D5:22:88:BE:E8:0E:EA:43:55:77:01:87:12:40:9B:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IT4dUNUiiL7oDupDVXcBhxJAm74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/2a1ce9-fb4c-41ee-9ff6-316ef261f4a5/1/Sxhm2WrpryqaZTXU5pX_XGPIndw.roa
Signing time: Mon 02 Jan 2023 06:04:47 +0000
ROA not before: Mon 02 Jan 2023 06:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34984
IP address blocks: 185.195.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:15:1f:7f:75:18:e5:b4:17:91:95:ef:ef:91:b0:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=213e1d50d52288bee80eea435577018712409bbe
Validity
Not Before: Jan 2 06:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b1866d96ae9af2a9a6535d4e695ff5c63c89ddc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:1f:68:a8:78:fe:a7:a6:7c:39:25:2d:fc:2e:
e5:14:d1:2f:9f:61:09:7f:79:47:0e:10:79:20:50:
38:e5:3b:59:a4:d1:e1:1a:2e:27:cd:d5:1a:e0:9e:
90:e9:42:17:37:a5:a9:54:4e:e9:63:6a:f0:18:dc:
3d:af:a0:07:fd:4a:0f:f5:5d:a0:97:ad:f3:07:be:
e8:4f:9f:a6:7f:a4:a4:7d:4b:8e:79:d1:28:f4:83:
c2:b6:bd:aa:4c:c1:e6:6c:75:44:96:83:3d:7e:f2:
28:28:bb:b5:dd:b5:ae:21:fc:aa:c2:3d:eb:b4:1b:
19:36:59:43:1d:a0:3e:a0:c8:8a:29:64:df:01:72:
e0:4c:2a:cb:f3:ef:f0:d1:05:59:70:18:7e:b4:54:
61:21:b1:83:b2:97:43:ef:26:51:08:8c:34:48:35:
17:52:d4:b4:c9:b5:54:5f:8c:94:46:cb:1b:d3:26:
1e:7b:3a:30:f2:6b:cc:a7:89:43:9c:ed:67:a3:3a:
ca:a3:b7:57:ec:26:d0:7a:34:83:1a:d5:8b:f8:b7:
17:4b:9f:62:c4:88:ed:a0:69:bf:e9:73:c8:5b:b4:
f8:13:86:fe:a9:f1:e6:68:15:4b:ff:62:77:69:69:
a8:46:89:07:ac:22:2f:91:7e:6c:de:2a:ba:70:fc:
bd:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:18:66:D9:6A:E9:AF:2A:9A:65:35:D4:E6:95:FF:5C:63:C8:9D:DC
X509v3 Authority Key Identifier:
keyid:21:3E:1D:50:D5:22:88:BE:E8:0E:EA:43:55:77:01:87:12:40:9B:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IT4dUNUiiL7oDupDVXcBhxJAm74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/2a1ce9-fb4c-41ee-9ff6-316ef261f4a5/1/Sxhm2WrpryqaZTXU5pX_XGPIndw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/2a1ce9-fb4c-41ee-9ff6-316ef261f4a5/1/IT4dUNUiiL7oDupDVXcBhxJAm74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.195.252.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:47:44:4c:fb:05:a2:ea:d2:16:95:64:d8:ca:60:7c:c1:59:
c6:41:2b:29:19:c4:08:89:d4:e8:53:6b:8a:98:47:6a:c1:21:
10:85:bb:ba:50:8b:4f:db:88:78:be:95:25:b8:c9:3e:27:c6:
6b:da:ce:3b:85:81:2d:c9:c6:29:51:aa:a3:e0:79:3a:f3:50:
1e:bf:f6:c9:f8:ae:40:57:92:0c:69:97:64:6a:33:ce:cc:f4:
e0:b7:2a:e2:df:51:e9:2d:8e:f5:2b:de:a1:42:f2:0c:c4:3f:
2a:7b:ea:90:1a:f2:73:5d:23:74:d3:3a:4c:d2:ad:0c:c7:e7:
84:cf:db:6d:90:b0:78:bf:21:c5:70:46:49:2e:92:a1:7c:ce:
cf:fd:09:94:e7:9e:13:80:d2:42:dc:c1:5e:85:a4:cd:9b:2f:
85:70:0a:a5:92:2a:35:af:ac:9d:8c:d1:ac:13:ef:73:4b:aa:
06:37:e5:75:f7:e9:c4:f9:34:e8:0e:ea:92:73:65:2e:45:73:
0b:67:42:ca:67:08:0e:21:72:47:14:60:84:0e:86:89:bf:97:
c2:36:7a:84:95:8c:13:1f:0c:f2:1f:11:a4:45:aa:60:ce:ee:
ed:13:8f:69:87:b4:ae:d2:69:be:76:09:c8:2f:fd:52:02:21:
9d:e3:d8:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:10 2024 by rpki-client on console-ams.rpki-client.org