Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/a3fbf8-45a7-49c2-a4b8-8e1514ccaa4a/1/PgcvZ1fZCJdAy92u4oUXDVWPiGQ.roa
File: PgcvZ1fZCJdAy92u4oUXDVWPiGQ.roa (raw, json)
Hash identifier: OGkcChzBbrrzWKt9UIiUUKuC6nW/GTuvA51Wdezd17M=
Subject key identifier: 3E:07:2F:67:57:D9:08:97:40:CB:DD:AE:E2:85:17:0D:55:8F:88:64
Certificate issuer: /CN=ad054036dad32d17a8c916dc2dfbb3ce8a36452c
Certificate serial: 01856F4B9933221447EE959E7EC010298AFA
Authority key identifier: AD:05:40:36:DA:D3:2D:17:A8:C9:16:DC:2D:FB:B3:CE:8A:36:45:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQVANtrTLReoyRbcLfuzzoo2RSw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/a3fbf8-45a7-49c2-a4b8-8e1514ccaa4a/1/PgcvZ1fZCJdAy92u4oUXDVWPiGQ.roa
Signing time: Sun 01 Jan 2023 21:45:03 +0000
ROA not before: Sun 01 Jan 2023 21:45:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13278
IP address blocks: 195.234.165.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:99:33:22:14:47:ee:95:9e:7e:c0:10:29:8a:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad054036dad32d17a8c916dc2dfbb3ce8a36452c
Validity
Not Before: Jan 1 21:45:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3e072f6757d9089740cbddaee285170d558f8864
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:dd:38:84:e4:ec:92:b3:c0:01:53:93:49:b0:
d4:19:aa:f2:4e:64:7a:6d:74:90:66:fc:41:06:cd:
7a:b5:c6:ad:ab:0c:be:be:99:25:9b:75:e6:e8:54:
77:cf:9b:d2:25:42:e8:a3:2a:bf:39:22:13:fe:24:
14:ff:88:c8:7c:5d:7c:12:0e:47:11:8b:f0:ef:c0:
8e:2e:ef:35:29:f7:00:9b:ca:a9:3a:bf:9d:1c:a2:
ae:2a:89:5d:d4:d1:89:11:54:1e:47:82:c6:50:af:
10:f7:53:df:01:01:93:b5:4d:c2:ce:46:46:54:fa:
db:85:58:d8:85:04:c9:58:6e:55:cd:de:3e:a3:6f:
5e:dc:e4:33:72:63:2a:ef:c2:32:7f:ce:aa:bf:ce:
96:5c:b8:f8:60:d6:06:03:7e:20:33:56:5d:57:fc:
fc:76:67:68:0a:2a:1c:38:a4:89:58:f3:b5:5f:b5:
c0:ba:34:0f:3e:94:ee:70:f6:e8:0d:0c:37:09:00:
0a:f1:8b:fa:51:e1:f9:2f:c4:63:bb:af:80:f8:cf:
e1:31:03:6a:d4:c4:6a:ec:36:ef:71:77:4d:a0:fb:
6b:96:6f:58:6f:58:9d:4f:d2:68:d7:6a:79:98:c7:
47:b2:6e:68:c3:7d:bb:9f:f1:ee:3d:a3:a7:da:46:
56:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:07:2F:67:57:D9:08:97:40:CB:DD:AE:E2:85:17:0D:55:8F:88:64
X509v3 Authority Key Identifier:
keyid:AD:05:40:36:DA:D3:2D:17:A8:C9:16:DC:2D:FB:B3:CE:8A:36:45:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQVANtrTLReoyRbcLfuzzoo2RSw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/a3fbf8-45a7-49c2-a4b8-8e1514ccaa4a/1/PgcvZ1fZCJdAy92u4oUXDVWPiGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/a3fbf8-45a7-49c2-a4b8-8e1514ccaa4a/1/rQVANtrTLReoyRbcLfuzzoo2RSw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.234.165.0/24
Signature Algorithm: sha256WithRSAEncryption
13:91:f0:fa:b4:11:c3:f0:ea:cd:0b:22:61:50:ec:8e:83:c2:
75:6e:4b:82:54:13:ec:fa:88:60:2e:ba:29:85:10:38:24:6c:
1f:29:88:6c:2b:63:8e:97:67:ce:d4:03:4b:14:47:12:c7:d5:
38:46:b8:7a:79:56:14:49:62:a7:70:82:0b:a1:cb:ca:66:93:
53:7e:2d:75:6b:98:39:94:26:bc:d7:e7:c7:bc:a5:51:b6:8f:
09:13:5a:07:88:f9:81:b4:61:ae:41:e6:46:b1:0a:8e:33:c3:
87:0a:f9:54:bb:2b:ba:79:1f:b2:4f:ca:88:4f:20:43:66:5e:
fc:30:61:16:fd:cd:ef:4c:e0:cf:05:42:89:c0:fd:ea:ad:11:
57:eb:3c:76:90:e2:10:06:b4:48:65:70:c5:7d:60:c0:ed:3f:
99:ef:be:6a:37:ed:99:5d:fd:bf:ed:d5:fe:fe:8a:4f:92:44:
ae:f0:71:7e:70:d5:48:51:3e:76:c8:31:b1:92:ef:7b:6c:ad:
dc:20:25:a4:22:1f:5d:26:09:03:a0:71:cd:22:0f:cc:ac:d6:
99:83:4f:65:42:c5:fa:4e:af:95:fb:59:d8:b1:3b:b5:39:3e:
5c:c9:20:bd:18:59:67:af:54:c2:de:5d:a1:16:bc:92:7d:3b:
d2:fd:06:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:06 2024 by rpki-client on console-fra.rpki-client.org