Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/LRj_5rj7IQPtqDtR5bgUnQZlPxI.roa
File: LRj_5rj7IQPtqDtR5bgUnQZlPxI.roa (raw, json)
Hash identifier: q19xuEKa1+4HNc9xe6UGY5DvwRt+CRy10C1kSByxh1Y=
Subject key identifier: 2D:18:FF:E6:B8:FB:21:03:ED:A8:3B:51:E5:B8:14:9D:06:65:3F:12
Certificate issuer: /CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2
Certificate serial: 018C86F31328C59CD5BD100B24BA14897ECE
Authority key identifier: 52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/LRj_5rj7IQPtqDtR5bgUnQZlPxI.roa
Signing time: Wed 20 Dec 2023 11:18:46 +0000
ROA not before: Wed 20 Dec 2023 11:18:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42708
IP address blocks: 195.191.145.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:86:f3:13:28:c5:9c:d5:bd:10:0b:24:ba:14:89:7e:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2
Validity
Not Before: Dec 20 11:18:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2d18ffe6b8fb2103eda83b51e5b8149d06653f12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d9:90:61:dc:56:0e:86:a3:8b:54:53:62:99:
6d:f4:b6:d6:2e:2d:35:76:b1:50:d3:ad:1a:a5:03:
ad:5e:5d:ce:66:28:b9:e4:66:59:71:ba:50:bf:9a:
74:14:10:7e:83:5c:0d:a0:f9:a9:16:42:c4:ee:95:
90:7a:ea:a4:44:93:59:c2:9f:77:cf:bc:4a:8e:82:
48:4b:71:71:f8:9a:dc:3a:5d:cd:05:50:a4:a7:df:
2a:67:8f:30:eb:3a:aa:24:fb:15:ee:84:c0:2d:24:
7f:89:d5:87:e2:6b:22:eb:12:6e:07:ae:07:41:b2:
aa:9e:88:3c:49:86:d1:77:12:6e:4f:10:2d:3b:4f:
04:1a:2a:3e:5e:65:25:5f:d1:10:80:33:86:e0:df:
f4:eb:52:b4:2a:0a:da:d3:29:e9:1a:0e:89:26:da:
ee:c2:77:b6:05:92:3f:38:37:b8:aa:4d:60:35:b7:
3c:02:2b:c6:ae:9c:2c:e3:d4:61:48:f5:16:cc:5d:
55:8d:12:14:c3:b3:38:55:f3:71:2c:49:c5:84:1a:
36:6a:40:29:f3:06:0e:f0:14:4f:bd:70:e2:d8:1e:
82:ad:81:cf:0d:50:bc:d7:6a:86:1a:74:99:2f:d0:
b5:15:45:eb:11:03:71:12:d6:84:97:7a:50:58:ed:
a3:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:18:FF:E6:B8:FB:21:03:ED:A8:3B:51:E5:B8:14:9D:06:65:3F:12
X509v3 Authority Key Identifier:
keyid:52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/LRj_5rj7IQPtqDtR5bgUnQZlPxI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/UtycIYtRDAe8Zlmwn70yr-aKv9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.191.145.0/24
Signature Algorithm: sha256WithRSAEncryption
03:07:74:28:08:c3:93:2a:51:d0:d7:dc:e8:fd:2e:f0:07:76:
7f:11:70:ee:ba:67:88:e3:99:e3:9d:42:79:c4:0d:85:e9:aa:
81:5a:f7:25:e7:11:83:15:6b:f3:3f:1d:dc:c2:ab:08:1d:02:
98:c3:16:d3:77:c7:4c:f7:b4:a9:f2:63:eb:0d:61:e7:f9:f8:
dd:74:17:5a:bf:55:de:37:1b:8c:c1:e1:b2:11:18:4c:29:32:
86:26:ee:ae:d0:7e:7e:a1:a4:d4:93:1d:b9:a5:41:1a:e1:b7:
32:3e:24:e6:03:b3:ba:15:eb:96:bd:15:20:06:40:85:da:d2:
27:35:fc:66:cb:f9:be:f6:83:7c:cf:7e:cb:df:28:b6:e5:7b:
9c:cd:f8:fb:80:3a:27:da:23:a0:09:f3:bf:c2:41:0d:82:54:
72:d0:61:7b:b1:19:8e:15:ee:15:d2:2c:ce:40:99:95:09:b8:
e1:c4:ca:40:9e:5c:9c:7f:ec:2a:fb:3c:01:75:fc:20:5c:48:
7a:60:97:15:2f:e5:cf:72:6f:e7:f2:18:95:0c:8c:8f:55:8c:
2c:c7:33:43:76:09:19:c0:7d:e9:ab:37:56:8b:53:c8:00:c2:
e6:d2:a4:ea:4f:67:d3:d7:6c:aa:4b:d3:de:f8:be:15:30:7a:
1f:2f:04:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:40 2024 by rpki-client on console-fra.rpki-client.org