Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/f2b840-2c85-465b-8b93-5b5beb10513b/1/5gVawtAqX_vsBcLziACBxQ4c0Io.roa
File: 5gVawtAqX_vsBcLziACBxQ4c0Io.roa (raw, json)
Hash identifier: l0GJzgWoi+I8IxNsdzl7XbRgpvy4ZlFkxhweSbgQGL0=
Subject key identifier: E6:05:5A:C2:D0:2A:5F:FB:EC:05:C2:F3:88:00:81:C5:0E:1C:D0:8A
Certificate issuer: /CN=01c4b784d8166e8bd0f47d720fde5faec1645b34
Certificate serial: 018CC8714D08B4BC25F911829DDB6AB707A7
Authority key identifier: 01:C4:B7:84:D8:16:6E:8B:D0:F4:7D:72:0F:DE:5F:AE:C1:64:5B:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AcS3hNgWbovQ9H1yD95frsFkWzQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/f2b840-2c85-465b-8b93-5b5beb10513b/1/5gVawtAqX_vsBcLziACBxQ4c0Io.roa
Signing time: Tue 02 Jan 2024 04:31:57 +0000
ROA not before: Tue 02 Jan 2024 04:31:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20675
IP address blocks: 195.42.250.0/24 maxlen: 24
193.41.83.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 23:47:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:71:4d:08:b4:bc:25:f9:11:82:9d:db:6a:b7:07:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01c4b784d8166e8bd0f47d720fde5faec1645b34
Validity
Not Before: Jan 2 04:31:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e6055ac2d02a5ffbec05c2f3880081c50e1cd08a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:54:3b:93:cb:1d:91:e7:b2:b4:ad:f8:96:14:
be:b0:2d:47:eb:ab:8d:49:ca:9d:aa:48:ce:9a:d6:
67:89:43:56:83:7d:6a:d0:57:04:bc:e9:5f:20:ab:
3d:20:5e:14:ca:49:7d:fb:a4:24:68:95:7d:19:f8:
43:d5:37:5b:28:e8:75:6d:c3:01:9e:62:18:d4:d4:
20:c2:b5:b1:cf:d2:08:be:6a:2e:8c:1b:b0:f2:e5:
f7:8a:2b:7a:fc:4c:cc:e2:6f:85:f6:67:6f:80:9a:
27:cd:f0:84:4c:ea:00:95:ed:b1:8e:99:bd:be:65:
13:45:f8:13:0e:87:5e:b0:ae:2d:f4:91:14:2b:1e:
25:fc:fc:84:f6:aa:43:7b:aa:72:db:d3:5b:12:dd:
4b:f2:a1:21:c5:d1:56:33:27:4f:a7:ba:a3:8a:d8:
a4:ab:28:74:1f:ee:bf:4a:46:57:31:d8:44:2e:1d:
9b:f2:ba:53:d6:22:a3:23:ba:d6:1f:21:c1:df:b6:
e1:6c:73:9d:83:91:1a:94:df:06:d9:da:6d:37:58:
77:9f:bc:4f:35:79:b5:68:ec:91:24:d6:54:23:74:
66:ea:89:fe:1b:51:7c:01:f8:d3:fc:cd:9a:28:87:
c5:7c:e8:d9:53:97:89:50:00:56:a3:5a:b8:74:80:
68:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:05:5A:C2:D0:2A:5F:FB:EC:05:C2:F3:88:00:81:C5:0E:1C:D0:8A
X509v3 Authority Key Identifier:
keyid:01:C4:B7:84:D8:16:6E:8B:D0:F4:7D:72:0F:DE:5F:AE:C1:64:5B:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AcS3hNgWbovQ9H1yD95frsFkWzQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/f2b840-2c85-465b-8b93-5b5beb10513b/1/5gVawtAqX_vsBcLziACBxQ4c0Io.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/f2b840-2c85-465b-8b93-5b5beb10513b/1/AcS3hNgWbovQ9H1yD95frsFkWzQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.41.83.0/24
195.42.250.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:c7:ac:0f:21:b5:94:2c:40:d0:1a:a6:39:e3:46:74:c2:79:
c6:3f:1f:81:45:a2:88:e2:15:5d:88:27:b9:ef:fd:ad:d6:08:
1c:0e:c0:c0:81:e4:a9:c2:02:72:16:20:d2:9f:6f:88:ae:eb:
32:d4:48:6a:c7:a2:52:a7:8f:6f:cd:f2:4d:fc:69:61:a5:98:
44:dc:bd:af:bb:44:d0:c4:12:a5:1a:31:4e:b6:2e:c1:d9:9a:
50:53:73:9e:6c:dd:e2:5c:e7:94:bb:11:1a:b7:46:50:b4:22:
f9:2a:0b:61:ee:16:b8:c2:5a:17:d3:43:1d:82:c2:fc:ff:b1:
b3:04:f7:96:54:2f:fd:b8:95:91:67:2c:5b:46:3d:40:eb:fe:
43:ff:7b:c9:e5:31:6c:45:0e:5b:c9:9f:19:f5:94:60:11:21:
12:60:84:6d:d6:c2:0a:0a:66:71:13:29:80:a7:c8:f1:18:2a:
5a:e6:be:33:10:e1:d6:6b:61:cd:9b:c7:85:33:76:89:5a:5f:
e6:3b:c0:33:20:8c:c0:4c:78:27:d4:d4:28:ea:06:a4:5e:aa:
da:55:2e:38:27:9e:10:26:c6:57:f3:18:da:b0:8b:82:fa:fc:
57:7b:c5:e5:f3:16:23:d4:9e:20:f2:05:85:92:c8:f5:a4:d5:
ff:d3:98:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:21:17 2025 by rpki-client