Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/89a1f0-69dc-4c13-b97b-35203d6b0d57/1/1dQTq_cuYDYFIna3T0ywigAcavI.roa
File: 1dQTq_cuYDYFIna3T0ywigAcavI.roa (raw, json)
Hash identifier: NQgGEVBwG4RMmZfHJ+tbR95I1YD2nopJyfVXLxs3qWo=
Subject key identifier: D5:D4:13:AB:F7:2E:60:36:05:22:76:B7:4F:4C:B0:8A:00:1C:6A:F2
Certificate issuer: /CN=8cbcf9374380ebd185d2118f551c8559ae233541
Certificate serial: 0188F86FCDD8464D33E959B8E2DD379E567D
Authority key identifier: 8C:BC:F9:37:43:80:EB:D1:85:D2:11:8F:55:1C:85:59:AE:23:35:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jLz5N0OA69GF0hGPVRyFWa4jNUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/89a1f0-69dc-4c13-b97b-35203d6b0d57/1/1dQTq_cuYDYFIna3T0ywigAcavI.roa
Signing time: Mon 26 Jun 2023 16:00:56 +0000
ROA not before: Mon 26 Jun 2023 16:00:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206610
IP address blocks: 195.178.124.0/22 maxlen: 24
195.178.124.0/24 maxlen: 24
2a07:fe80::/29 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:f8:6f:cd:d8:46:4d:33:e9:59:b8:e2:dd:37:9e:56:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8cbcf9374380ebd185d2118f551c8559ae233541
Validity
Not Before: Jun 26 16:00:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d5d413abf72e6036052276b74f4cb08a001c6af2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:e6:01:c2:22:fd:10:90:02:12:0b:ed:a7:3f:
ed:ec:7b:35:a3:12:6f:ee:9c:89:a4:3d:96:b6:05:
5b:07:b9:1b:35:86:3e:fc:7e:c4:0b:88:ff:4e:79:
88:12:f5:58:a7:48:29:31:1f:71:73:14:00:e1:c1:
e1:93:4c:89:84:7f:48:df:86:a6:c0:8f:6c:6c:b1:
0b:fd:4a:be:88:f2:dd:c7:ac:39:d0:5b:26:b6:02:
9a:b8:b6:ad:59:66:3e:ff:04:9a:f9:81:c6:3c:df:
26:ab:2c:c9:83:fb:06:c8:33:5a:85:21:6b:2d:ae:
21:2d:dd:8c:1d:f0:1f:4b:13:9d:f0:eb:e0:6a:05:
6f:f4:6b:03:f6:c4:81:c6:20:b5:48:94:9a:c8:df:
5e:d6:25:22:ac:b8:b5:f4:42:84:64:7d:d3:46:9e:
85:e5:9f:65:93:54:89:2b:60:1e:cf:41:cd:9e:8c:
db:38:00:37:ac:0d:2f:f6:37:16:66:fe:54:61:52:
b0:fe:3d:44:46:c4:4c:81:3d:f9:ee:90:5d:cf:96:
d9:c9:88:e4:b2:c5:93:d1:61:20:59:2f:fd:7c:b2:
6e:63:7c:f3:ae:15:41:54:14:b0:c9:85:a7:82:32:
00:a5:e1:4c:e4:d6:19:f9:b1:e0:2a:92:2f:2a:53:
c4:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:D4:13:AB:F7:2E:60:36:05:22:76:B7:4F:4C:B0:8A:00:1C:6A:F2
X509v3 Authority Key Identifier:
keyid:8C:BC:F9:37:43:80:EB:D1:85:D2:11:8F:55:1C:85:59:AE:23:35:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jLz5N0OA69GF0hGPVRyFWa4jNUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/89a1f0-69dc-4c13-b97b-35203d6b0d57/1/1dQTq_cuYDYFIna3T0ywigAcavI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/89a1f0-69dc-4c13-b97b-35203d6b0d57/1/jLz5N0OA69GF0hGPVRyFWa4jNUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.178.124.0/22
IPv6:
2a07:fe80::/29
Signature Algorithm: sha256WithRSAEncryption
32:64:d1:a5:ea:c5:00:1d:95:20:38:73:e9:9b:32:df:4d:9f:
f1:61:71:c4:76:36:e4:8c:b2:9f:76:47:f4:c7:62:21:74:28:
8c:be:fe:0e:b5:04:d4:1b:2b:ce:30:38:f7:16:1b:e1:a2:14:
b8:f9:e7:28:5c:b2:0a:5f:1d:24:ec:84:19:71:e4:68:f9:7e:
60:ae:c8:d0:de:31:29:1c:4f:62:19:4d:ef:88:04:d9:a4:47:
73:8b:64:ed:99:a9:b1:c4:e2:6d:1a:41:4f:9d:2e:33:c6:71:
39:91:25:b3:f8:b0:be:0b:1f:a6:0e:d5:f2:6c:1c:96:f8:d4:
1f:5d:7c:9a:8e:ba:16:10:6b:4b:e4:6c:86:03:17:f4:1c:94:
6f:df:6b:3d:f1:70:37:5c:0f:ef:e5:0e:20:4e:55:66:af:be:
83:dd:9f:c2:05:2b:00:cd:c8:bf:ce:91:e4:3e:b0:4f:e4:d5:
29:6d:57:4b:10:c9:46:5f:1a:1b:29:ab:4b:99:ef:52:09:7a:
eb:2e:47:1c:2a:3b:0c:1c:ad:7a:b7:21:e8:d5:56:9d:5c:fb:
4b:2f:5d:5d:f1:32:92:42:d0:fa:f3:da:30:ef:ad:11:5c:ce:
40:5e:60:ea:c7:6a:c8:4a:3a:38:c8:dd:62:40:91:5b:36:7b:
1e:7a:89:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:23:45 2024 by rpki-client on console-fra.rpki-client.org