Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/2581f4-8410-4a43-9186-0fab2269ea8e/1/E4HgIW2WUr7aQ44IF1aXZ5EhOCk.roa
File: E4HgIW2WUr7aQ44IF1aXZ5EhOCk.roa (raw, json)
Hash identifier: Q63v+dGdn8pyDqXWooqisXwu3dKup7PrZXLY6/DYEHc=
Subject key identifier: 13:81:E0:21:6D:96:52:BE:DA:43:8E:08:17:56:97:67:91:21:38:29
Certificate issuer: /CN=33c5b0d7c0a9cd24b73cdcb92c8746e85a4a5b8f
Certificate serial: 01856C938758C61FE2EF5A636AD92C2C54C9
Authority key identifier: 33:C5:B0:D7:C0:A9:CD:24:B7:3C:DC:B9:2C:87:46:E8:5A:4A:5B:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M8Ww18CpzSS3PNy5LIdG6FpKW48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/2581f4-8410-4a43-9186-0fab2269ea8e/1/E4HgIW2WUr7aQ44IF1aXZ5EhOCk.roa
Signing time: Sun 01 Jan 2023 09:04:45 +0000
ROA not before: Sun 01 Jan 2023 09:04:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 393410
IP address blocks: 195.149.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:93:87:58:c6:1f:e2:ef:5a:63:6a:d9:2c:2c:54:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33c5b0d7c0a9cd24b73cdcb92c8746e85a4a5b8f
Validity
Not Before: Jan 1 09:04:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1381e0216d9652beda438e081756976791213829
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:52:5c:21:95:05:ce:10:af:de:fa:07:8b:2d:
23:6b:27:57:8f:f2:be:d8:fe:a1:b9:b6:97:6f:9d:
aa:7d:db:1e:fc:eb:f6:27:cc:63:e8:82:fb:60:08:
e0:34:43:3c:cc:c2:dd:22:27:cf:46:71:c7:9e:36:
64:49:b6:44:29:d2:ca:bc:46:f1:7e:5c:04:6b:a5:
d3:0a:2b:8a:6d:47:f7:06:2c:bf:c1:be:fe:62:ba:
b7:07:04:7f:6c:77:60:8c:12:83:c0:c7:d2:a1:b7:
cd:54:75:37:41:ba:22:51:1b:c3:95:b3:23:81:f0:
2a:b4:e8:8c:bb:fa:b5:fb:7e:d1:27:ae:1a:5a:07:
e2:54:be:4b:57:92:c4:6c:8a:b8:92:44:35:6c:7a:
3d:27:8e:3c:50:4f:5c:32:ce:d9:3e:08:f0:e3:b9:
c0:a7:fa:45:d8:64:95:b4:46:39:03:5c:c5:51:77:
7c:c2:de:b2:ac:d0:7a:f2:21:03:d8:1d:6c:dc:de:
b4:0c:e1:60:33:f0:3c:9c:5e:df:21:aa:48:bd:f0:
b0:9b:4b:fd:47:95:57:2b:65:b8:f3:d9:b6:27:21:
d6:78:f7:8e:a9:fa:46:c5:6a:3b:71:60:45:b3:4d:
b5:c6:c9:41:fe:4b:a1:43:57:5c:fd:fa:72:f6:16:
e7:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:81:E0:21:6D:96:52:BE:DA:43:8E:08:17:56:97:67:91:21:38:29
X509v3 Authority Key Identifier:
keyid:33:C5:B0:D7:C0:A9:CD:24:B7:3C:DC:B9:2C:87:46:E8:5A:4A:5B:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M8Ww18CpzSS3PNy5LIdG6FpKW48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/2581f4-8410-4a43-9186-0fab2269ea8e/1/E4HgIW2WUr7aQ44IF1aXZ5EhOCk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/2581f4-8410-4a43-9186-0fab2269ea8e/1/M8Ww18CpzSS3PNy5LIdG6FpKW48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.149.107.0/24
Signature Algorithm: sha256WithRSAEncryption
91:28:c6:df:e1:13:f6:cf:c9:e6:2f:49:0d:8c:50:b8:6c:87:
81:15:22:73:60:bf:c4:cf:8c:cf:68:5d:c9:9a:dd:c8:65:40:
f9:91:6b:60:50:5d:c2:b7:46:d0:79:e4:8d:06:5d:12:ef:c2:
59:03:27:36:5c:de:fd:6a:c2:48:9d:40:64:4f:42:e8:0a:4b:
1e:c5:90:17:76:12:89:26:ec:88:e1:6f:91:0b:f8:c4:03:65:
b2:0b:aa:74:b8:8e:19:2d:22:b3:55:67:c3:f7:30:8d:a2:5a:
46:2f:bf:f2:a7:d2:3d:e8:3d:6a:9a:49:f9:66:bd:7b:9b:b2:
a2:ac:54:c7:e1:8f:2f:7e:0b:67:2b:2e:76:05:b2:26:6f:31:
f6:e9:56:00:b5:a9:af:52:6e:86:76:34:3b:d0:b1:df:47:b4:
3e:b9:6e:c0:fd:c8:31:6e:c4:bf:77:d8:cf:aa:14:16:6c:67:
69:9a:2c:33:be:0c:07:11:33:29:47:ee:4e:e8:54:de:b7:98:
9c:eb:1f:d8:fc:e8:93:59:45:c6:db:da:be:67:cb:16:cc:64:
63:37:23:a3:38:c4:62:03:a9:b4:62:41:a2:42:03:58:47:cf:
9b:33:0b:d0:dc:84:74:cc:8b:fd:a3:14:be:04:13:4a:a9:99:
11:05:c6:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:38 2024 by rpki-client on console-fra.rpki-client.org