Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/97914b-eb62-46d1-a9d4-05bf81b4298b/1/Jd4LaeKAzhycu0JT-w_8OH0U3KM.roa
File: Jd4LaeKAzhycu0JT-w_8OH0U3KM.roa (raw, json)
Hash identifier: xa9O6lJR41drsaFk7Uu9MNWpWhIygantnr0gDRf8lKQ=
Subject key identifier: 25:DE:0B:69:E2:80:CE:1C:9C:BB:42:53:FB:0F:FC:38:7D:14:DC:A3
Certificate issuer: /CN=93656fb5860c9d3cfcb35658540c7230a0ba1e8d
Certificate serial: 0189755F4B453866D94894F655C7FC15F19B
Authority key identifier: 93:65:6F:B5:86:0C:9D:3C:FC:B3:56:58:54:0C:72:30:A0:BA:1E:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2VvtYYMnTz8s1ZYVAxyMKC6Ho0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/97914b-eb62-46d1-a9d4-05bf81b4298b/1/Jd4LaeKAzhycu0JT-w_8OH0U3KM.roa
Signing time: Thu 20 Jul 2023 22:15:26 +0000
ROA not before: Thu 20 Jul 2023 22:15:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51342
IP address blocks: 195.128.166.0/23 maxlen: 23
176.124.96.0/21 maxlen: 21
Validation: Failed, certificate revoked on Fri 21 Jul 2023 15:14:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:75:5f:4b:45:38:66:d9:48:94:f6:55:c7:fc:15:f1:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93656fb5860c9d3cfcb35658540c7230a0ba1e8d
Validity
Not Before: Jul 20 22:15:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=25de0b69e280ce1c9cbb4253fb0ffc387d14dca3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ad:ae:2d:9a:f8:48:34:e6:a0:93:9a:f3:c4:
07:09:e5:ca:cc:f2:6c:51:08:4f:40:63:6f:a3:3b:
24:f9:d1:9e:8e:b8:d8:4b:02:33:51:8e:86:4d:23:
bb:00:df:95:ed:3c:a4:e9:67:77:f8:4e:86:67:c3:
c8:90:1e:3b:a7:10:e3:b1:18:02:5d:08:57:fa:87:
1a:a7:f9:0f:d2:fc:60:9d:9a:b1:6b:78:7d:94:49:
ff:81:29:c9:da:9c:b6:8c:63:4f:d7:0f:ea:ea:f0:
69:99:0c:fd:83:d2:bf:48:20:61:dd:54:c6:6e:25:
62:2a:5d:15:20:35:6a:50:22:f9:25:a7:bc:0e:61:
67:64:e1:2e:58:60:fe:9d:7f:25:1d:a9:d2:69:2a:
7d:27:29:7e:7c:9e:6b:6f:56:e9:bd:41:76:65:bf:
6e:c8:0f:41:57:66:0d:b4:11:44:ec:08:df:be:22:
07:cc:fc:54:64:f6:c9:aa:e4:08:46:98:aa:a9:11:
b3:74:dc:4c:03:fd:30:66:bc:db:47:21:42:f6:0e:
73:c1:25:ed:db:78:e4:e1:48:e9:64:92:b9:ae:56:
fe:81:c8:f7:12:44:b8:5b:00:35:4e:d8:c8:f6:92:
c2:50:22:47:65:72:15:31:ee:44:a6:9d:df:d3:86:
c1:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:DE:0B:69:E2:80:CE:1C:9C:BB:42:53:FB:0F:FC:38:7D:14:DC:A3
X509v3 Authority Key Identifier:
keyid:93:65:6F:B5:86:0C:9D:3C:FC:B3:56:58:54:0C:72:30:A0:BA:1E:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2VvtYYMnTz8s1ZYVAxyMKC6Ho0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/97914b-eb62-46d1-a9d4-05bf81b4298b/1/Jd4LaeKAzhycu0JT-w_8OH0U3KM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/97914b-eb62-46d1-a9d4-05bf81b4298b/1/k2VvtYYMnTz8s1ZYVAxyMKC6Ho0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.124.96.0/21
195.128.166.0/23
Signature Algorithm: sha256WithRSAEncryption
5d:9b:e1:ef:36:8e:3a:b9:0b:61:ef:48:27:8d:46:47:70:fd:
55:03:ed:a6:6e:32:09:2f:7e:6f:ac:d4:cb:c1:80:ea:9c:1f:
46:63:2b:c9:17:c6:90:da:65:d4:a3:23:7d:be:7b:79:87:97:
0b:95:98:5a:39:cd:b8:5a:02:d3:c1:34:5e:2b:b9:03:01:f7:
63:dc:06:d3:0b:5b:e2:22:c3:f8:82:61:43:1f:07:b3:2b:23:
e1:69:9e:ff:fe:e0:ad:71:6a:21:f6:95:7a:87:4c:37:be:2f:
4d:e2:56:2b:7f:43:85:c4:60:28:5c:a8:ea:8c:9e:53:83:d9:
16:45:a7:93:d5:39:9d:3b:d9:c6:43:ef:4e:c7:7d:c3:dc:42:
5a:42:87:a5:b3:1a:d4:59:47:66:5b:87:a7:3c:2a:62:63:81:
9b:4a:45:6f:66:48:9e:44:fe:d1:d9:be:42:fa:b3:99:4f:a3:
3b:73:e3:7b:7a:f8:f7:21:9a:e5:b5:2b:f6:00:fe:7b:38:bb:
a2:dc:7f:a4:cd:b8:b4:78:21:98:b7:e3:ab:e5:12:09:5a:af:
52:c2:3f:06:3c:61:b5:a0:5a:58:57:f2:2b:cb:2c:0e:2f:a2:
02:0a:ac:f3:38:cd:2f:51:48:89:61:b8:b4:bf:69:c8:ac:21:
57:5f:82:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:18 2024 by rpki-client on console-fra.rpki-client.org