Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/65aea5-ffef-4278-982e-a7a73194028e/1/pIwjEotLyoZrjhvv_lQeB4L4GN0.roa
File: pIwjEotLyoZrjhvv_lQeB4L4GN0.roa (raw, json)
Hash identifier: fSq71I3kR5O4q4Po6VltIG2OxzB1K9MwqSXIn2d1pNo=
Subject key identifier: A4:8C:23:12:8B:4B:CA:86:6B:8E:1B:EF:FE:54:1E:07:82:F8:18:DD
Certificate issuer: /CN=5c757007aebf00098a800228db1f5930ee66e675
Certificate serial: 018CC5DC5B469E514FABB7DB557CB7F32BE2
Authority key identifier: 5C:75:70:07:AE:BF:00:09:8A:80:02:28:DB:1F:59:30:EE:66:E6:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XHVwB66_AAmKgAIo2x9ZMO5m5nU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/65aea5-ffef-4278-982e-a7a73194028e/1/pIwjEotLyoZrjhvv_lQeB4L4GN0.roa
Signing time: Mon 01 Jan 2024 16:30:02 +0000
ROA not before: Mon 01 Jan 2024 16:30:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56921
IP address blocks: 195.128.146.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:49:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:5b:46:9e:51:4f:ab:b7:db:55:7c:b7:f3:2b:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c757007aebf00098a800228db1f5930ee66e675
Validity
Not Before: Jan 1 16:30:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a48c23128b4bca866b8e1beffe541e0782f818dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:2a:c4:6a:de:87:f7:9f:f2:c3:83:d4:fe:0d:
44:59:65:74:1e:71:cb:6c:3d:0c:35:f0:22:55:78:
64:ec:12:27:7c:e0:d3:74:0e:f9:96:ff:3c:0e:12:
a9:f0:d5:bb:fb:d0:aa:a5:9a:eb:6c:98:1f:f9:a6:
7c:93:9f:9e:dd:d0:82:a7:18:2d:0f:6c:30:8f:b4:
50:81:b4:7d:fd:05:14:2f:af:c1:ae:33:e6:1a:53:
05:b5:08:06:18:cc:e5:24:fd:25:65:a8:3e:58:0a:
81:d5:a1:d0:f4:a7:fc:de:7e:b8:47:b5:ee:75:49:
51:07:94:df:05:71:bb:b9:50:98:46:3a:e6:4c:a3:
ae:64:94:0a:b1:c2:40:40:07:0d:38:a4:25:fb:06:
48:b2:f2:52:5f:36:04:48:4e:f9:dc:e2:86:20:9b:
9d:6e:09:36:b2:92:f9:9d:5f:d6:ee:fd:4b:28:c1:
e2:82:4f:9f:b7:18:a0:ee:c8:f9:12:6f:e3:eb:49:
a8:77:f9:de:92:34:58:ff:29:13:76:b2:01:96:70:
c7:31:76:e6:a3:a3:b8:84:34:ba:0f:1f:94:59:52:
ee:19:b3:64:4f:0d:e9:6c:4d:f7:8a:34:c3:75:00:
27:ef:bd:1c:ae:78:dc:f9:33:96:7c:66:95:b6:e1:
40:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:8C:23:12:8B:4B:CA:86:6B:8E:1B:EF:FE:54:1E:07:82:F8:18:DD
X509v3 Authority Key Identifier:
keyid:5C:75:70:07:AE:BF:00:09:8A:80:02:28:DB:1F:59:30:EE:66:E6:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XHVwB66_AAmKgAIo2x9ZMO5m5nU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/65aea5-ffef-4278-982e-a7a73194028e/1/pIwjEotLyoZrjhvv_lQeB4L4GN0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/65aea5-ffef-4278-982e-a7a73194028e/1/XHVwB66_AAmKgAIo2x9ZMO5m5nU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.128.146.0/24
Signature Algorithm: sha256WithRSAEncryption
33:26:4e:e3:1c:03:d7:21:f7:81:ec:1d:96:cf:e2:72:91:7e:
80:28:57:e3:27:8a:e2:e6:53:ae:6e:2e:36:66:30:59:29:ee:
a3:47:4c:a8:1c:65:c7:62:2e:2f:2d:e9:bf:d7:28:95:ce:a2:
d1:7f:69:b7:d3:96:9e:47:ea:67:15:30:26:bb:05:75:58:69:
1f:00:bc:8c:cf:7b:ca:49:53:45:ad:d5:0c:95:2b:40:d5:8c:
36:4b:54:73:8b:30:70:5e:76:1b:cf:46:a2:55:1e:b4:9b:73:
e4:d3:4c:ad:e6:48:d2:21:2f:e8:40:9d:ba:48:6f:52:a8:03:
71:e1:73:ef:ce:ca:22:ab:48:21:99:1b:5a:15:33:15:27:4c:
c9:80:2d:a5:9c:71:cb:0c:37:53:94:60:1d:0c:68:9e:88:15:
a7:35:01:92:56:e5:89:43:a5:70:62:73:83:53:8d:dc:a2:bf:
7f:28:71:1c:a9:e1:88:65:69:a8:57:85:a3:eb:5d:6e:38:9f:
a5:db:87:f6:00:65:bd:ae:d7:fc:36:a2:6c:89:08:6a:d2:7d:
61:c9:cd:93:97:2e:c7:02:9d:32:32:c4:f3:f8:8d:49:65:06:
0d:cc:48:66:9a:61:09:4e:07:2e:b7:dc:51:2b:ae:41:71:9f:
b8:dd:ba:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 17:13:49 2025 by rpki-client