Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/65a71d-0236-44d5-8ce9-229b4ae742de/1/QoZmLvDFQU8_xTPmwHdT9b9lf0I.roa
File: QoZmLvDFQU8_xTPmwHdT9b9lf0I.roa (raw, json)
Hash identifier: s+/FYICLkl2ZM5er3Lu/QsDpJNTB5rZI1G84MroZr6E=
Subject key identifier: 42:86:66:2E:F0:C5:41:4F:3F:C5:33:E6:C0:77:53:F5:BF:65:7F:42
Certificate issuer: /CN=115dbc00433e29f2adeb038fea2fbd7048fb632f
Certificate serial: 018CC2DB07C15613DEDB261F970112B1D8E7
Authority key identifier: 11:5D:BC:00:43:3E:29:F2:AD:EB:03:8F:EA:2F:BD:70:48:FB:63:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EV28AEM-KfKt6wOP6i-9cEj7Yy8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/65a71d-0236-44d5-8ce9-229b4ae742de/1/QoZmLvDFQU8_xTPmwHdT9b9lf0I.roa
Signing time: Mon 01 Jan 2024 02:29:43 +0000
ROA not before: Mon 01 Jan 2024 02:29:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200167
IP address blocks: 195.141.124.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 Apr 2024 12:38:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:07:c1:56:13:de:db:26:1f:97:01:12:b1:d8:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=115dbc00433e29f2adeb038fea2fbd7048fb632f
Validity
Not Before: Jan 1 02:29:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4286662ef0c5414f3fc533e6c07753f5bf657f42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:e8:c0:04:b0:e6:7c:d3:b2:b6:c4:21:83:7b:
16:a9:69:1f:4d:08:c3:68:aa:e5:03:15:8d:72:ee:
ac:99:57:c1:4e:7b:80:f0:40:0f:5d:2c:c4:35:9c:
c1:c1:73:12:97:e1:b8:3c:b4:a5:ed:44:6c:1d:f1:
51:57:ee:fe:13:cb:83:1a:24:8e:c9:ae:27:b4:2e:
30:aa:67:e7:36:1a:41:40:ec:c8:2a:b2:91:06:38:
29:d2:36:f1:21:52:2d:9d:ad:78:f6:3e:a9:9e:52:
e4:55:81:a1:ea:a4:f2:68:f9:7b:25:27:16:7d:f2:
a1:e1:46:c5:5a:2b:ef:d5:cf:83:69:08:f6:f6:d3:
97:99:68:e0:d6:fc:c0:20:f5:5e:f6:a3:a5:0b:8e:
69:7c:f9:a7:6f:86:96:86:fd:99:17:e9:3a:a2:ca:
c0:43:b9:56:70:90:d1:0e:24:c1:85:72:4c:cb:9c:
6f:df:8b:fe:57:fa:9d:9e:7a:3b:8d:68:0b:1c:4e:
80:74:72:da:f5:31:89:78:51:7d:06:6f:f5:a2:a3:
e4:d8:17:ff:70:f6:db:6d:0c:9f:ec:4a:f0:f2:d4:
91:82:18:48:81:6a:d8:45:47:82:5a:8f:3f:86:7a:
83:ce:f3:04:d7:08:ec:8c:83:81:9b:da:be:3a:f6:
af:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:86:66:2E:F0:C5:41:4F:3F:C5:33:E6:C0:77:53:F5:BF:65:7F:42
X509v3 Authority Key Identifier:
keyid:11:5D:BC:00:43:3E:29:F2:AD:EB:03:8F:EA:2F:BD:70:48:FB:63:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EV28AEM-KfKt6wOP6i-9cEj7Yy8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/65a71d-0236-44d5-8ce9-229b4ae742de/1/QoZmLvDFQU8_xTPmwHdT9b9lf0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/65a71d-0236-44d5-8ce9-229b4ae742de/1/EV28AEM-KfKt6wOP6i-9cEj7Yy8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.141.124.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:e7:c3:5d:95:89:79:30:45:de:8e:ba:fc:35:d9:c5:fa:30:
92:84:f6:df:d5:9b:19:53:d0:52:cb:6f:6e:97:f4:85:d1:c8:
4b:29:24:06:b5:59:99:43:db:c7:5a:3f:fb:2d:82:fd:61:ba:
5b:95:bf:cd:91:e8:35:3c:d7:3e:40:46:74:11:32:44:20:5a:
1a:5d:24:43:76:bc:00:41:9e:32:1f:e1:65:37:0e:02:61:e7:
2d:b7:13:5f:d0:94:d4:2f:00:94:15:e9:00:90:08:a7:67:9c:
a2:76:ad:7c:ac:01:f5:82:b8:f2:e8:f9:51:07:78:7c:44:0a:
da:41:b8:82:15:7e:37:52:2d:60:a5:44:da:53:73:39:98:cc:
74:57:a1:98:37:53:6e:6d:82:bc:6b:5c:15:9c:b0:4c:f1:37:
31:e1:2b:c3:ac:a2:51:49:e0:5e:eb:4f:b4:50:8c:55:86:db:
b5:f1:c1:1f:26:59:45:9b:a6:f3:36:7f:14:3c:63:26:2c:8a:
8f:e4:87:1e:55:70:ae:ef:1d:05:81:8d:77:a0:1f:36:99:d5:
56:46:91:93:a7:95:50:98:64:70:34:54:08:b9:1b:f7:4a:0b:
6c:c6:6a:9b:8c:c2:6d:de:fe:a3:65:3e:83:ce:4d:22:37:df:
75:e0:7c:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:53 2024 by rpki-client on console-ams.rpki-client.org