Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/f3e67a-cfd7-4745-82b7-2d90c7fd0d60/1/gXHFNxE-XqGmuwhsLVlMmif-thY.roa
File: gXHFNxE-XqGmuwhsLVlMmif-thY.roa (raw, json)
Hash identifier: b/CgzXFl1LrbgaIvV3ctJjNjbg1Jk+HLOFZrmnrbm7w=
Subject key identifier: 81:71:C5:37:11:3E:5E:A1:A6:BB:08:6C:2D:59:4C:9A:27:FE:B6:16
Certificate issuer: /CN=34c4956f85671125882c574cd2e2d203aabded05
Certificate serial: 01856E8219C0654D074DF911AA8F1807ADFE
Authority key identifier: 34:C4:95:6F:85:67:11:25:88:2C:57:4C:D2:E2:D2:03:AA:BD:ED:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NMSVb4VnESWILFdM0uLSA6q97QU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/f3e67a-cfd7-4745-82b7-2d90c7fd0d60/1/gXHFNxE-XqGmuwhsLVlMmif-thY.roa
Signing time: Sun 01 Jan 2023 18:04:58 +0000
ROA not before: Sun 01 Jan 2023 18:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29042
IP address blocks: 195.68.199.0/24 maxlen: 24
195.68.198.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:82:19:c0:65:4d:07:4d:f9:11:aa:8f:18:07:ad:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34c4956f85671125882c574cd2e2d203aabded05
Validity
Not Before: Jan 1 18:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8171c537113e5ea1a6bb086c2d594c9a27feb616
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:aa:b4:d6:40:fc:b5:93:8a:78:5f:c1:fc:79:
8c:9f:45:05:25:23:63:8a:85:f1:58:bc:c9:42:28:
db:9b:79:bf:51:a2:a4:44:30:f0:07:45:db:80:4c:
76:9c:47:05:ea:5f:7d:c3:42:cf:8e:db:5a:e0:27:
ef:7b:5d:2b:41:64:02:61:c2:e0:5c:d6:9b:34:e7:
ff:56:54:25:71:31:3a:c3:24:5a:b1:ea:24:40:44:
3e:d2:1b:e3:5b:b8:ea:00:d3:3e:c2:0d:65:b9:26:
f9:bc:4e:c8:5b:fc:21:d7:71:c5:d5:83:c8:d4:27:
90:70:ac:da:a5:c0:52:48:65:b5:ed:1d:ed:b4:a2:
c3:03:b1:51:04:f0:62:77:c2:26:33:ff:c4:63:8c:
a6:be:5c:92:9a:77:d7:bd:e1:bf:81:26:70:17:18:
ba:3d:cb:02:9d:60:fe:52:37:4d:07:45:8e:56:00:
dd:72:72:99:7c:4a:54:97:f5:60:e6:e6:d8:4d:20:
a7:68:e9:d5:6c:14:93:ef:25:6c:7d:88:d1:fe:60:
fb:a6:57:1f:0a:2a:65:69:53:49:d9:89:87:1c:ca:
7c:8b:19:d3:9c:60:02:5c:49:ed:b4:82:c1:8f:5d:
3c:a1:21:18:f2:05:d0:5b:ad:db:83:ed:0a:98:26:
0b:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:71:C5:37:11:3E:5E:A1:A6:BB:08:6C:2D:59:4C:9A:27:FE:B6:16
X509v3 Authority Key Identifier:
keyid:34:C4:95:6F:85:67:11:25:88:2C:57:4C:D2:E2:D2:03:AA:BD:ED:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NMSVb4VnESWILFdM0uLSA6q97QU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/f3e67a-cfd7-4745-82b7-2d90c7fd0d60/1/gXHFNxE-XqGmuwhsLVlMmif-thY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/f3e67a-cfd7-4745-82b7-2d90c7fd0d60/1/NMSVb4VnESWILFdM0uLSA6q97QU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.68.198.0/23
Signature Algorithm: sha256WithRSAEncryption
87:8a:80:8b:4c:08:19:2e:84:27:35:67:6e:22:54:9a:1d:77:
d8:db:78:85:20:6b:82:cc:86:44:27:e9:35:d5:30:8f:60:11:
2d:f1:78:8c:db:99:5c:08:ed:b7:9f:3a:65:a0:8e:aa:96:f3:
fc:26:87:00:de:f3:26:41:b1:9f:a3:bd:24:7d:05:16:d4:13:
f2:cc:e8:32:b2:cc:55:be:b8:12:b9:34:21:37:ea:44:3c:37:
f5:4a:f7:29:0f:ab:20:e6:26:b8:d7:f9:7f:17:a8:31:ee:e8:
ce:00:23:44:6b:03:ee:ba:b0:c3:17:80:61:02:9d:ed:99:b8:
e7:07:62:90:e0:03:9f:bc:dd:f4:d3:b9:80:99:3e:e7:c9:80:
63:b0:d9:22:58:a3:d1:0a:e5:98:05:94:fb:be:d0:7e:67:a8:
8b:55:7b:7f:ac:5e:12:f6:85:16:c7:87:76:e8:72:d3:d2:6f:
b7:e3:fe:51:87:b7:4e:03:61:e2:a5:8c:49:34:56:a7:af:d9:
3b:ec:35:eb:14:22:9c:a9:d8:0d:f5:1b:e8:cb:60:c9:02:27:
0c:09:18:0f:74:f4:e3:55:36:c7:fd:8f:4f:01:79:8d:cf:96:
9f:fa:0b:00:18:da:34:a9:b5:e1:21:cc:d2:38:9b:77:05:cd:
6b:06:59:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:41 2024 by rpki-client on console-fra.rpki-client.org