Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/4f0269-9818-4123-bcbf-7a652303a28a/1/zQRlPbtW5HkEVTDvopSlvQbo-Ik.roa
File: zQRlPbtW5HkEVTDvopSlvQbo-Ik.roa (raw, json)
Hash identifier: LnL/kxEkhCUOYIqAfq5BjAsbM0FNo4RZRjm/JeDeoto=
Subject key identifier: CD:04:65:3D:BB:56:E4:79:04:55:30:EF:A2:94:A5:BD:06:E8:F8:89
Certificate issuer: /CN=feae54afce51545479c0da03f201a74e29927d78
Certificate serial: 018C5D4A67A9787F14ACDE469EFDFE579854
Authority key identifier: FE:AE:54:AF:CE:51:54:54:79:C0:DA:03:F2:01:A7:4E:29:92:7D:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_q5Ur85RVFR5wNoD8gGnTimSfXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/4f0269-9818-4123-bcbf-7a652303a28a/1/zQRlPbtW5HkEVTDvopSlvQbo-Ik.roa
Signing time: Tue 12 Dec 2023 09:10:06 +0000
ROA not before: Tue 12 Dec 2023 09:10:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20847
IP address blocks: 195.62.82.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:5d:4a:67:a9:78:7f:14:ac:de:46:9e:fd:fe:57:98:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=feae54afce51545479c0da03f201a74e29927d78
Validity
Not Before: Dec 12 09:10:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd04653dbb56e479045530efa294a5bd06e8f889
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:c3:0d:31:34:5a:35:a2:58:c1:4e:28:98:18:
89:35:fc:f3:13:b1:05:18:76:fa:d5:f3:56:5e:dd:
42:79:87:14:54:cd:98:08:c1:52:33:6f:38:4e:58:
de:f5:52:9b:24:f0:41:6f:37:53:cf:e0:a0:ab:82:
cb:eb:13:c7:1d:f1:6e:e3:08:82:db:3b:e3:52:90:
7c:c1:e1:0f:8f:b3:4e:c1:3f:87:02:9d:d8:5d:fa:
31:b0:3e:18:cd:60:54:24:df:6b:3c:81:67:4a:3b:
45:43:00:d2:08:84:ff:b1:ab:78:ca:3f:60:7c:ca:
41:a2:a2:cd:e4:4c:c6:e8:8c:ca:32:d0:9c:3a:6e:
0a:9b:ff:26:ef:7b:c6:aa:86:06:0b:7d:31:5e:ef:
29:12:93:d7:f4:6d:ca:e3:5b:a2:50:0f:59:f4:36:
29:93:95:43:fc:79:12:07:ef:3a:0f:6e:65:0d:d0:
d0:6a:d1:35:62:a9:e4:0d:54:c3:31:03:fb:12:31:
66:5f:36:7a:d6:d6:ad:8d:d1:24:58:80:cb:75:c2:
82:0e:19:64:c5:93:80:14:b2:06:27:2c:31:03:30:
4d:9e:5b:60:e3:57:39:ad:b8:87:d0:82:3f:3f:57:
0f:fd:8c:c1:02:d3:86:24:96:82:c6:8b:18:47:7d:
47:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:04:65:3D:BB:56:E4:79:04:55:30:EF:A2:94:A5:BD:06:E8:F8:89
X509v3 Authority Key Identifier:
keyid:FE:AE:54:AF:CE:51:54:54:79:C0:DA:03:F2:01:A7:4E:29:92:7D:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_q5Ur85RVFR5wNoD8gGnTimSfXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/4f0269-9818-4123-bcbf-7a652303a28a/1/zQRlPbtW5HkEVTDvopSlvQbo-Ik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/4f0269-9818-4123-bcbf-7a652303a28a/1/_q5Ur85RVFR5wNoD8gGnTimSfXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.62.82.0/23
Signature Algorithm: sha256WithRSAEncryption
00:b4:8a:b1:2e:b0:d4:c2:8a:e4:99:6a:db:66:1e:b5:5a:a9:
40:42:9a:8b:ef:57:4c:af:70:9c:e1:27:5d:a1:c4:33:01:3f:
74:67:0a:c5:4f:c5:0c:94:06:8b:4a:83:b5:b2:08:c4:a5:1e:
16:9f:47:2b:b1:3f:7d:b3:3e:5e:29:df:2f:c5:9b:3d:79:1c:
0e:c9:04:88:0c:99:62:b1:be:60:1f:e7:d1:f1:d1:6b:54:cb:
db:8d:d8:78:f6:ec:9b:24:7b:c0:3f:d3:fc:44:3e:2b:e2:77:
08:35:c5:e6:84:6f:7f:8c:23:76:dd:0f:70:cf:6a:08:27:7f:
ff:38:f6:53:93:b6:d9:e4:c1:93:e3:6f:99:5b:51:a2:8f:11:
e9:50:f3:3e:fe:13:37:11:b0:33:c8:67:24:3e:2e:63:97:0a:
84:de:1c:bb:87:87:ed:2a:b5:66:23:4c:59:1f:10:a0:ed:d2:
f8:ab:2f:7d:20:52:02:5e:d9:cf:b1:f4:c1:b4:be:59:91:34:
18:62:ba:c9:64:48:34:5c:eb:6a:93:e1:25:ef:f9:e2:e9:36:
ac:38:1f:7a:2e:98:0d:12:40:0a:0c:37:7e:35:94:32:89:e6:
f2:de:1f:46:df:58:02:9d:7e:02:8c:8f:96:d4:39:6f:4e:9e:
ec:9d:b0:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:58 2024 by rpki-client on console-ams.rpki-client.org