Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/8a90d9-948a-46c2-977a-643f02daeb9e/1/DKPsP5UF5CF2xCFvTTphjwuREac.roa
File: DKPsP5UF5CF2xCFvTTphjwuREac.roa (raw, json)
Hash identifier: rQ325akrOAdpueMKqSPRPFVkY/Ub7W211Rb5i7lDV24=
Subject key identifier: 0C:A3:EC:3F:95:05:E4:21:76:C4:21:6F:4D:3A:61:8F:0B:91:11:A7
Certificate issuer: /CN=5aae19678aa37525512229a94e7890147183273c
Certificate serial: 0185710300AE5716EB2FA6FA93B140DB47ED
Authority key identifier: 5A:AE:19:67:8A:A3:75:25:51:22:29:A9:4E:78:90:14:71:83:27:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wq4ZZ4qjdSVRIimpTniQFHGDJzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/8a90d9-948a-46c2-977a-643f02daeb9e/1/DKPsP5UF5CF2xCFvTTphjwuREac.roa
Signing time: Mon 02 Jan 2023 05:45:00 +0000
ROA not before: Mon 02 Jan 2023 05:45:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51021
IP address blocks: 195.182.42.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:03:00:ae:57:16:eb:2f:a6:fa:93:b1:40:db:47:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5aae19678aa37525512229a94e7890147183273c
Validity
Not Before: Jan 2 05:45:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ca3ec3f9505e42176c4216f4d3a618f0b9111a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:1c:a4:bb:3e:93:d3:90:a1:8d:58:39:1b:76:
20:78:55:84:97:23:f9:79:3f:eb:31:3a:6c:d3:ae:
66:18:07:97:ef:2c:3d:9b:db:01:86:0e:4b:bc:43:
67:9e:1d:95:a0:78:f1:d3:c3:52:1b:e6:22:7a:4b:
9b:41:f1:fb:f4:67:dd:d1:2b:cc:0a:66:75:c8:13:
1f:5c:86:a5:dd:61:6c:05:7d:f8:6c:f2:ca:18:1a:
cc:f9:2b:22:03:5f:04:23:27:8f:cf:32:8d:ea:7b:
48:af:5c:ae:97:d4:75:21:f1:7e:3c:b1:f3:70:f5:
07:c4:28:6a:20:03:18:b1:d4:a9:80:fc:9d:e9:8e:
4d:b1:7d:17:f3:a5:48:db:83:44:15:34:c3:94:4d:
1d:c3:4d:78:1b:94:89:0e:64:87:25:68:92:09:b8:
89:c0:98:27:84:3b:48:b2:91:34:46:79:6a:cd:6a:
a6:af:f4:35:2f:e5:49:99:4d:9d:45:4a:09:85:fb:
03:b2:0e:c1:14:bb:ed:cc:ca:c0:11:5c:9b:c9:d8:
52:2b:a7:36:e3:3b:30:c6:87:09:fd:ea:4e:79:05:
cc:46:fc:d9:7d:a3:95:4e:4a:23:15:af:cf:2e:00:
61:91:87:7b:df:f9:39:5b:dd:41:ed:f3:2b:b8:65:
22:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:A3:EC:3F:95:05:E4:21:76:C4:21:6F:4D:3A:61:8F:0B:91:11:A7
X509v3 Authority Key Identifier:
keyid:5A:AE:19:67:8A:A3:75:25:51:22:29:A9:4E:78:90:14:71:83:27:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wq4ZZ4qjdSVRIimpTniQFHGDJzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/8a90d9-948a-46c2-977a-643f02daeb9e/1/DKPsP5UF5CF2xCFvTTphjwuREac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/8a90d9-948a-46c2-977a-643f02daeb9e/1/Wq4ZZ4qjdSVRIimpTniQFHGDJzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.182.42.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:6c:aa:df:d3:96:74:4f:6b:44:0e:30:07:3d:c7:6e:69:29:
2b:78:f0:ea:6b:47:71:51:52:f9:a2:33:7d:df:c6:b1:44:9f:
81:84:1c:38:44:ef:6d:c5:05:14:94:d9:2d:ad:1e:0c:8a:17:
a5:a6:bc:fd:d3:c9:81:f9:22:9a:5e:ab:44:2f:91:d7:c9:de:
ab:f9:17:34:4a:20:a5:84:23:39:ef:60:b2:fd:d8:3b:a8:d5:
55:d0:f7:64:f9:ed:a4:05:c1:c8:88:40:36:ef:b5:24:c8:72:
b1:60:49:72:db:e9:e9:21:d3:c1:aa:fe:33:7d:94:b9:cf:a2:
18:68:59:61:6e:1c:59:47:80:0c:3f:c3:ac:ae:e9:b4:f5:60:
09:f3:a6:bd:49:c4:1b:a6:23:37:04:f4:9a:89:a0:ac:73:8c:
9a:6d:0c:15:a4:7e:1a:87:96:4f:42:a0:6c:cc:16:ee:a6:a2:
f2:4a:31:8f:62:1c:4c:e0:bc:48:71:82:90:cd:da:e4:92:6d:
ca:df:be:9e:75:70:ce:fd:1b:14:0a:09:db:dc:1f:64:73:94:
b6:6f:e6:02:83:d9:98:a3:44:a0:e8:a1:13:be:80:1d:59:e3:
17:ae:fc:64:6a:d0:4d:e7:0f:b0:c4:bd:1a:52:66:8c:a6:57:
f4:06:54:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:36 2024 by rpki-client on console-fra.rpki-client.org