Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/0lqNphBi_sWNvvNXEgaBuZESgN8.roa
File: 0lqNphBi_sWNvvNXEgaBuZESgN8.roa (raw, json)
Hash identifier: Ym2trlxaku79YNOUxTGOt1ThZbslcpQTGWvS6B9sPTc=
Subject key identifier: D2:5A:8D:A6:10:62:FE:C5:8D:BE:F3:57:12:06:81:B9:91:12:80:DF
Certificate issuer: /CN=e501815c6f98f3a2b6184afebf18ea341be882ea
Certificate serial: 018AF709B7E46356D1E287F640338C01F9C1
Authority key identifier: E5:01:81:5C:6F:98:F3:A2:B6:18:4A:FE:BF:18:EA:34:1B:E8:82:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5QGBXG-Y86K2GEr-vxjqNBvoguo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/0lqNphBi_sWNvvNXEgaBuZESgN8.roa
Signing time: Tue 03 Oct 2023 19:35:23 +0000
ROA not before: Tue 03 Oct 2023 19:35:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42055
IP address blocks: 87.251.2.0/24 maxlen: 24
87.251.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 25 Oct 2023 00:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f7:09:b7:e4:63:56:d1:e2:87:f6:40:33:8c:01:f9:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e501815c6f98f3a2b6184afebf18ea341be882ea
Validity
Not Before: Oct 3 19:35:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d25a8da61062fec58dbef357120681b9911280df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b4:2b:41:95:9c:49:b9:1b:c7:79:49:de:b4:
78:d4:e2:e8:98:f8:15:bb:9b:f2:3a:83:c1:85:df:
04:30:6f:d6:2f:61:e0:7a:d4:79:ce:0a:c5:bc:ee:
b3:84:5b:7d:65:bb:bf:af:2b:42:75:5e:1f:16:ca:
66:7f:57:9f:73:55:f8:c6:4b:3e:c4:58:00:8f:b6:
64:34:39:0d:94:ed:3b:70:d9:21:5f:d6:d4:89:54:
ac:dd:3a:c5:6c:76:c8:f5:8b:a0:ba:2b:e0:06:93:
8f:64:83:4e:38:7d:8d:6c:c3:54:cc:ba:03:aa:03:
ef:c1:e7:d9:8e:09:d2:ff:f6:6c:c0:fe:02:3c:7f:
a6:87:ae:7c:8b:e9:06:36:08:bb:fe:21:d3:35:87:
b9:bb:81:b2:0d:25:7e:14:41:80:5d:ba:97:b7:58:
c4:65:aa:1f:01:b5:e5:f8:a2:97:12:e0:aa:91:f5:
96:5c:2f:cf:0c:e3:1f:a4:55:26:f8:41:2c:c1:3f:
45:e0:8a:14:1b:6f:f7:c1:b9:1d:15:84:de:ba:fe:
83:65:6e:4e:54:35:fc:00:c5:83:17:b4:f5:68:0e:
48:e2:d5:25:12:66:e2:33:04:f7:c8:a6:bc:1c:9c:
9f:69:5e:74:64:84:d5:e5:66:f2:4b:15:1d:6d:38:
b5:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:5A:8D:A6:10:62:FE:C5:8D:BE:F3:57:12:06:81:B9:91:12:80:DF
X509v3 Authority Key Identifier:
keyid:E5:01:81:5C:6F:98:F3:A2:B6:18:4A:FE:BF:18:EA:34:1B:E8:82:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5QGBXG-Y86K2GEr-vxjqNBvoguo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/0lqNphBi_sWNvvNXEgaBuZESgN8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/5QGBXG-Y86K2GEr-vxjqNBvoguo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.251.2.0/24
87.251.7.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:b7:19:6e:f3:d6:d1:56:53:74:54:f6:90:12:21:42:a3:12:
45:4a:9f:2f:c4:f8:46:f8:82:32:85:73:b2:e2:53:ac:4f:d1:
4d:a1:77:f9:97:74:1a:94:3c:0e:5c:96:84:c6:99:e9:22:81:
90:89:49:29:19:ff:96:f1:29:a4:ed:7d:e2:36:7c:e3:a8:f9:
06:f8:87:a3:1e:90:40:bc:33:ff:4a:2d:21:60:fb:83:fb:05:
c2:b1:8b:98:9e:85:dd:e7:f5:79:1f:09:31:af:17:d4:5f:e1:
f4:03:a2:b7:f1:c4:86:29:98:bf:f4:b1:95:6e:9f:15:fa:52:
ca:31:2a:d8:ee:ec:6f:51:dc:d2:9c:64:1b:26:fb:e6:d6:4c:
fe:24:88:25:34:9f:10:0a:ff:fb:db:de:59:47:3a:c7:f2:18:
8a:cd:68:ef:aa:5e:95:81:e3:3d:74:e8:9d:3d:51:82:0d:00:
74:0b:f4:a5:1d:68:ef:7e:93:f4:b6:e1:24:29:b3:72:ef:9d:
0d:34:8e:29:64:4c:fd:81:30:71:b9:55:72:05:0c:50:f4:a7:
3c:ad:3f:97:08:c9:87:6a:6c:04:b6:01:74:47:79:6f:9a:da:
df:f1:9b:85:03:ac:d9:bc:59:ca:d2:ec:d0:a8:a8:7e:12:cb:
37:0a:35:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:31 2024 by rpki-client on console-fra.rpki-client.org