Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/65a71d-0236-44d5-8ce9-229b4ae742de/1/xBdFRnArEzU8_JxUzdlDp427XGY.roa
File: xBdFRnArEzU8_JxUzdlDp427XGY.roa (raw, json)
Hash identifier: Ft01/ESwtsLnCyihrn0RbMaX1hv7EWKqJYhB498xDcw=
Subject key identifier: C4:17:45:46:70:2B:13:35:3C:FC:9C:54:CD:D9:43:A7:8D:BB:5C:66
Certificate issuer: /CN=115dbc00433e29f2adeb038fea2fbd7048fb632f
Certificate serial: 01856D2F247191968CA35179E85EE376A3AF
Authority key identifier: 11:5D:BC:00:43:3E:29:F2:AD:EB:03:8F:EA:2F:BD:70:48:FB:63:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EV28AEM-KfKt6wOP6i-9cEj7Yy8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/65a71d-0236-44d5-8ce9-229b4ae742de/1/xBdFRnArEzU8_JxUzdlDp427XGY.roa
Signing time: Sun 01 Jan 2023 11:54:44 +0000
ROA not before: Sun 01 Jan 2023 11:54:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39419
IP address blocks: 195.141.249.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:2f:24:71:91:96:8c:a3:51:79:e8:5e:e3:76:a3:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=115dbc00433e29f2adeb038fea2fbd7048fb632f
Validity
Not Before: Jan 1 11:54:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c4174546702b13353cfc9c54cdd943a78dbb5c66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:a1:b5:ed:67:81:93:3d:33:36:b5:9e:d8:1f:
15:e1:20:89:30:7b:51:b9:37:3e:eb:85:79:dc:67:
c5:bc:39:2a:6f:ad:77:c9:b8:4a:69:8d:29:34:ac:
0a:a7:c3:f5:c7:16:4a:18:6c:6f:11:b6:a9:82:30:
ef:6a:01:97:d5:02:45:fb:fa:a2:df:b1:8d:34:8f:
b6:7c:a4:93:eb:1c:fc:8a:54:9a:bc:91:48:92:4a:
18:56:69:65:81:19:3d:9f:63:94:eb:41:e9:fd:36:
74:f3:32:09:80:9b:0f:70:b3:c5:75:66:7c:c5:12:
92:27:51:45:ae:8a:b6:05:df:d6:47:f4:c0:13:52:
89:23:c1:c9:2a:b7:5e:5c:87:1d:67:5e:8e:56:66:
85:32:85:0a:ce:6d:c9:b7:87:c0:da:93:b9:88:2d:
60:18:d4:16:fc:7f:87:3c:55:e7:f7:ed:40:46:47:
27:0b:df:6d:0e:81:8b:37:0e:86:ad:f6:9f:43:6b:
22:66:39:ee:29:d6:6c:ee:77:27:7b:28:78:d6:2a:
6d:d9:1e:e6:02:1f:d8:7c:1f:a0:75:8e:b3:19:1e:
f8:cb:ee:95:12:ec:9f:21:ed:12:af:71:a9:06:57:
07:84:bb:e2:61:fb:48:5c:69:e4:fa:c1:e3:8e:6c:
7b:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:17:45:46:70:2B:13:35:3C:FC:9C:54:CD:D9:43:A7:8D:BB:5C:66
X509v3 Authority Key Identifier:
keyid:11:5D:BC:00:43:3E:29:F2:AD:EB:03:8F:EA:2F:BD:70:48:FB:63:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EV28AEM-KfKt6wOP6i-9cEj7Yy8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/65a71d-0236-44d5-8ce9-229b4ae742de/1/xBdFRnArEzU8_JxUzdlDp427XGY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/65a71d-0236-44d5-8ce9-229b4ae742de/1/EV28AEM-KfKt6wOP6i-9cEj7Yy8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.141.249.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:21:11:d4:b0:dc:cf:db:0c:81:37:af:7d:e4:b7:fb:4a:04:
71:b0:c1:40:a2:2a:fd:09:2a:94:23:e4:d8:d2:a8:96:e1:8c:
89:20:13:0c:87:0a:27:66:e6:ab:be:9f:b3:37:5b:6a:48:58:
1c:ef:79:d9:6d:f2:7a:a3:27:8a:3e:0d:69:0e:0b:57:d7:72:
77:4f:70:eb:a6:1d:c4:bc:e2:8b:b8:e3:4a:7f:34:5e:b0:4c:
29:8a:81:f4:7e:b0:54:48:56:a5:20:8e:04:5d:6e:36:2f:c2:
d7:05:a3:92:40:82:e2:ba:22:9f:11:0c:fc:48:6f:b7:af:8f:
15:bf:5d:e5:0f:ff:47:3a:0c:a7:48:a2:b1:6f:ad:05:bd:76:
c7:12:21:69:36:27:f1:8e:7d:78:03:cc:94:e2:79:97:33:64:
9a:55:28:42:6d:ca:73:73:f7:87:c3:26:b6:a4:fa:e8:94:f6:
c2:29:17:f7:6a:ab:2a:40:e9:86:4b:d3:54:b6:9b:93:8a:eb:
e8:59:4d:81:56:c2:aa:d4:db:53:4e:ff:8c:3c:b7:45:de:0a:
25:44:7f:67:b1:82:a7:1b:2e:09:98:30:7a:14:5c:26:62:bf:
4d:b8:59:ad:fa:93:3b:58:b0:bc:1e:90:bb:ed:e1:08:6c:15:
1d:1d:7c:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:29 2024 by rpki-client on console-fra.rpki-client.org