Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/E5UKxU6N-HLU9FyjwwTlaDp5LnU.roa
File: E5UKxU6N-HLU9FyjwwTlaDp5LnU.roa (raw, json)
Hash identifier: QUkUCTqN55pbtWlm1dVboj6k3hIZpS8I9MRAfqOEswU=
Subject key identifier: 13:95:0A:C5:4E:8D:F8:72:D4:F4:5C:A3:C3:04:E5:68:3A:79:2E:75
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 01856DEF76DFFA72BE442ABD2816875B3A5A
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/E5UKxU6N-HLU9FyjwwTlaDp5LnU.roa
Signing time: Sun 01 Jan 2023 15:24:48 +0000
ROA not before: Sun 01 Jan 2023 15:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201202
IP address blocks: 195.187.160.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ef:76:df:fa:72:be:44:2a:bd:28:16:87:5b:3a:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Jan 1 15:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=13950ac54e8df872d4f45ca3c304e5683a792e75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:44:f1:e5:fe:ac:3e:59:91:f8:21:70:c5:3f:
9a:a0:d5:15:fb:08:a0:8a:68:5d:7d:eb:68:f6:8d:
b6:51:9e:61:e5:34:1f:95:7a:c6:ac:d4:a0:a7:5c:
61:98:5f:a7:5a:b8:53:11:98:ab:a2:26:2a:4d:69:
fa:22:cc:34:a1:63:98:95:e1:c2:83:84:25:26:a4:
cd:88:18:82:c6:12:22:6f:9c:97:ce:1f:80:48:a3:
f8:cf:92:79:1b:96:c0:9c:11:d2:28:55:d9:8b:2e:
85:e3:d8:b6:e0:36:9f:48:19:09:0e:4b:8a:21:15:
68:ee:d9:a2:1c:3a:f9:0a:3f:5b:46:5c:bd:9a:a1:
00:64:6b:61:dc:c9:83:1a:bb:e3:a5:51:f1:dc:8a:
bd:f3:52:45:1b:1b:d2:46:2a:5e:39:17:ea:29:30:
92:95:30:17:b3:cd:89:03:7f:7b:fd:be:95:3f:14:
d8:5f:25:20:8a:72:73:e8:4b:06:e9:ba:e4:06:a0:
9f:67:13:ce:63:6e:4e:df:b7:11:4e:67:4b:57:19:
5c:e7:e9:ba:2b:75:4b:1b:27:67:f9:c2:75:98:94:
86:70:3e:92:c7:cc:6d:04:15:b5:29:55:6b:15:96:
31:ab:52:8b:f7:01:a1:8a:70:76:11:aa:07:71:11:
3c:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:95:0A:C5:4E:8D:F8:72:D4:F4:5C:A3:C3:04:E5:68:3A:79:2E:75
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/E5UKxU6N-HLU9FyjwwTlaDp5LnU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.187.160.0/24
Signature Algorithm: sha256WithRSAEncryption
36:91:3f:d5:49:b3:f3:4e:4d:2e:9c:ee:24:17:b9:1a:d6:44:
fd:69:28:62:18:55:f3:db:6d:69:db:e1:bf:b7:a6:df:58:7c:
80:ac:89:72:70:fd:12:f0:9f:99:d8:c6:bf:56:ba:c0:88:b3:
53:8f:ad:b0:ff:65:0c:d1:40:46:0b:fe:5e:48:0b:71:bd:5c:
a9:b7:d3:51:78:2a:e7:3a:68:53:44:f8:c4:e6:b5:ad:51:9c:
2d:98:a0:ab:be:da:f3:a6:2f:31:70:18:e1:24:0b:b8:86:1d:
cb:0d:c1:61:c5:e2:75:16:81:a8:0f:44:c8:82:0c:b3:67:57:
f7:41:c3:86:85:f5:6d:52:50:20:9c:2d:0f:fe:ec:6e:82:b0:
a1:22:70:e6:5c:15:5a:6d:db:36:7c:58:48:3e:0d:26:33:25:
73:e9:2c:4f:62:26:18:76:b7:87:3b:dd:c3:80:c2:8b:0b:e7:
d4:88:4e:22:d9:d7:27:c2:7e:32:d6:e1:e0:e4:a7:74:29:58:
7c:b4:05:ed:a0:32:7e:3f:44:7b:43:6a:2a:3f:66:f8:70:2e:
65:24:fe:48:fa:ca:f0:fd:8c:98:41:fc:99:ac:11:0f:69:37:
39:32:19:05:97:3d:60:32:93:29:94:74:90:75:29:cf:1c:31:
50:90:e3:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:05 2024 by rpki-client on console-ams.rpki-client.org