Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/4ff3d1-cc2d-4eba-913e-2782477b9d1e/1/W0Qq05nj3wQThOYWi8lCuVtR2RA.roa
File: W0Qq05nj3wQThOYWi8lCuVtR2RA.roa (raw, json)
Hash identifier: /IJ4YUbQRC9Jhbbdt8GWT2ocSc4veUxFUn4fnqAKPXE=
Subject key identifier: 5B:44:2A:D3:99:E3:DF:04:13:84:E6:16:8B:C9:42:B9:5B:51:D9:10
Certificate issuer: /CN=48faed6714f46a2b843f14e40e54e626a0c500ee
Certificate serial: 01856E2677FB0AA821303AED667850128FBE
Authority key identifier: 48:FA:ED:67:14:F4:6A:2B:84:3F:14:E4:0E:54:E6:26:A0:C5:00:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SPrtZxT0aiuEPxTkDlTmJqDFAO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/4ff3d1-cc2d-4eba-913e-2782477b9d1e/1/W0Qq05nj3wQThOYWi8lCuVtR2RA.roa
Signing time: Sun 01 Jan 2023 16:24:52 +0000
ROA not before: Sun 01 Jan 2023 16:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34832
IP address blocks: 195.211.120.0/22 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:26:77:fb:0a:a8:21:30:3a:ed:66:78:50:12:8f:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48faed6714f46a2b843f14e40e54e626a0c500ee
Validity
Not Before: Jan 1 16:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5b442ad399e3df041384e6168bc942b95b51d910
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:be:73:b8:8e:83:4b:1c:c8:e8:b2:a6:cc:c7:
e5:de:d8:bb:c7:7c:44:7e:e9:a8:b8:85:fd:8e:fb:
43:9c:bf:d1:32:e2:e4:18:7e:5a:59:c9:b2:f2:75:
89:4b:03:da:aa:34:36:a8:57:1d:4e:25:a1:49:31:
58:65:4d:af:0b:89:a6:4e:65:b5:71:9a:f5:28:77:
b8:41:82:0c:68:1b:a4:0f:e8:02:d8:c4:a1:20:87:
c5:4d:cd:e9:27:4a:1d:e5:6a:0b:13:87:8a:9a:c2:
a2:ee:72:6b:8a:88:a1:e2:dd:eb:8e:b4:94:9a:bc:
16:f0:63:78:2d:14:01:3c:2e:50:d6:38:dc:dd:21:
a1:23:6e:21:6c:58:2a:f8:af:96:61:94:38:8f:9d:
11:a0:21:cd:91:e6:ca:b9:45:23:18:ba:73:75:99:
60:11:98:d7:00:74:6c:e0:b9:7d:a2:36:69:3e:52:
d1:40:16:1c:6c:c3:7e:fa:8a:04:8e:14:8d:1f:7e:
8b:99:9c:ce:c1:32:9d:eb:e9:b2:c0:86:f3:01:3d:
16:91:15:80:09:92:5f:7b:ad:49:f7:7e:d3:b3:89:
2e:d5:9c:fc:ce:d4:18:34:66:dc:46:81:cb:2e:75:
64:a5:a1:0c:b3:a0:cb:48:3b:36:0f:74:36:a5:b3:
b3:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:44:2A:D3:99:E3:DF:04:13:84:E6:16:8B:C9:42:B9:5B:51:D9:10
X509v3 Authority Key Identifier:
keyid:48:FA:ED:67:14:F4:6A:2B:84:3F:14:E4:0E:54:E6:26:A0:C5:00:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SPrtZxT0aiuEPxTkDlTmJqDFAO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/4ff3d1-cc2d-4eba-913e-2782477b9d1e/1/W0Qq05nj3wQThOYWi8lCuVtR2RA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/4ff3d1-cc2d-4eba-913e-2782477b9d1e/1/SPrtZxT0aiuEPxTkDlTmJqDFAO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.211.120.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:19:e5:1b:ff:e3:3e:f2:c8:6c:46:82:2b:f5:4f:23:9a:d8:
2a:c3:c1:19:e4:f7:b6:04:3e:77:99:72:f4:ea:44:fd:4f:6c:
ca:3e:75:fb:ad:05:bf:f3:ed:bd:42:95:df:01:77:fc:7f:de:
47:65:ef:52:b3:ae:03:1b:6a:87:bb:ec:92:58:3f:35:18:5f:
65:1c:62:3f:85:92:19:f2:d0:0b:26:ec:83:e4:b2:d3:7f:4c:
25:a8:03:3b:90:66:b7:8d:87:0c:28:18:20:6b:84:7d:6c:6a:
4d:df:88:d3:ac:91:98:88:7a:db:c8:bc:cc:f8:43:3b:27:50:
03:cf:4a:7e:d9:9d:e1:ad:b8:ec:79:67:4f:51:76:3a:4e:d8:
29:e4:8b:b2:8d:82:94:37:07:ab:1b:f7:bd:53:a6:dd:f5:b5:
85:72:15:84:d0:bd:af:c8:6d:ae:48:89:a4:66:ae:41:9c:bb:
e3:09:58:04:3b:3b:48:99:db:f8:b9:7b:8d:d2:9e:f8:7c:27:
7d:d1:21:53:7b:fd:d1:85:f7:e4:6f:83:1b:e3:ab:03:24:bc:
f4:ac:e6:69:43:f9:db:b4:2d:b7:15:e2:d4:91:86:69:e0:86:
a4:ea:d2:e6:94:1d:be:39:ae:de:de:36:bc:28:f9:56:37:98:
b7:53:c0:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:26:58 2024 by rpki-client on console-fra.rpki-client.org