Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/PMn2nWtWSMoN2uq9t3LUhc0Vg50.roa
File: PMn2nWtWSMoN2uq9t3LUhc0Vg50.roa (raw, json)
Hash identifier: vt6DcxTRDn5XWGHV1dGmD6iJVMlndaK8HecHjGVe8zI=
Subject key identifier: 3C:C9:F6:9D:6B:56:48:CA:0D:DA:EA:BD:B7:72:D4:85:CD:15:83:9D
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 01884293D735527DEF845FFC257E692791A8
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/PMn2nWtWSMoN2uq9t3LUhc0Vg50.roa
Signing time: Mon 22 May 2023 08:29:25 +0000
ROA not before: Mon 22 May 2023 08:29:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64267
IP address blocks: 195.180.137.0/24 maxlen: 24
195.180.149.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:42:93:d7:35:52:7d:ef:84:5f:fc:25:7e:69:27:91:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: May 22 08:29:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3cc9f69d6b5648ca0ddaeabdb772d485cd15839d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:07:bf:87:cc:06:eb:69:66:9a:dd:9f:49:2d:
4d:68:ed:f2:04:24:38:a4:25:1d:5f:1f:b5:b8:c0:
cb:15:bf:ec:b6:5c:05:9b:77:13:f2:2f:ec:84:85:
50:05:d4:c7:dc:13:9d:14:b9:88:7d:ff:94:19:51:
4b:3b:3a:77:88:2f:a8:ed:41:4f:d1:70:d1:2a:75:
3f:bb:3f:0a:85:8a:ee:09:5c:03:3d:0c:25:37:ab:
ba:cb:bf:72:30:b6:d4:0b:23:5f:35:c1:61:33:44:
22:32:5a:00:76:fb:ce:43:50:65:da:36:f6:24:af:
6a:fd:ab:52:cc:8a:ee:38:49:bf:8c:d2:10:50:e4:
8f:08:68:c0:61:94:d5:65:e2:64:ce:3d:11:49:85:
a3:ed:25:38:92:a2:b2:ab:d5:5d:1e:86:b8:90:cd:
cd:9b:2e:9a:ab:f5:72:e8:a0:77:95:40:b6:26:6c:
80:6f:b0:9a:48:ab:5b:30:1b:7f:90:36:8e:c0:73:
e0:a7:54:9c:28:b5:c8:e6:1c:86:4a:1f:99:f9:c5:
68:c3:53:1c:52:17:7d:66:b4:f4:fb:93:8d:2f:2a:
9b:a9:b3:27:79:47:fb:42:07:3e:4a:39:2a:c0:8e:
83:d0:d0:74:05:79:d5:b1:b6:3a:6c:6c:ec:82:c0:
eb:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:C9:F6:9D:6B:56:48:CA:0D:DA:EA:BD:B7:72:D4:85:CD:15:83:9D
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/PMn2nWtWSMoN2uq9t3LUhc0Vg50.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.180.137.0/24
195.180.149.0/24
Signature Algorithm: sha256WithRSAEncryption
38:4a:3f:a8:fd:66:0d:e4:71:df:9a:da:80:f8:6c:25:88:85:
e9:89:c8:58:95:c5:13:14:fb:92:55:3f:36:f9:65:8c:06:68:
d3:7b:dd:c7:9d:56:1c:31:3b:7c:fd:de:a6:5f:62:58:fe:70:
51:d7:4b:c6:d7:50:cc:d9:06:d7:6a:96:6b:80:86:c3:fb:a3:
f7:d7:83:9d:13:0d:a9:5f:c9:38:d8:ed:c9:ef:2c:cc:14:22:
26:0d:7f:b6:15:da:c0:ce:e8:8b:61:f1:52:1d:4d:1c:5b:5d:
ee:2c:b1:c0:6c:42:ee:df:7d:2b:7e:77:1d:13:43:92:be:5f:
a1:f3:bd:3f:1d:09:cb:bb:f1:a5:b0:da:f2:e0:ab:a0:17:8a:
67:d0:1c:8e:e9:c0:e0:8c:2e:40:41:ef:c9:1e:81:65:5a:d2:
f1:88:eb:eb:9f:1f:1d:ae:2f:8a:22:3a:89:a4:58:00:1a:cc:
80:ee:83:c0:d4:65:cc:e3:85:f2:a6:66:7e:6a:56:0f:88:c7:
87:bd:19:5a:34:5c:86:c1:20:59:d6:4d:e4:24:02:86:ac:6e:
5d:2f:13:ec:11:88:71:77:75:3c:53:d4:9f:c9:c5:e4:e3:c9:
70:57:34:04:c8:88:f8:62:88:b0:ca:89:74:d5:21:ff:0f:ac:
59:0f:74:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:12 2024 by rpki-client on console-fra.rpki-client.org