Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f50ecd-1c16-4bd3-bd0e-c84bfd4ee878/1/Z1G4_0AB-fJxJ-nKDiwA3bu-mQs.roa
File: Z1G4_0AB-fJxJ-nKDiwA3bu-mQs.roa (raw, json)
Hash identifier: LaHLnKaThZ+vZF4Zlr1s7KiOjzYGS1Uv50OlzXzDve8=
Subject key identifier: 67:51:B8:FF:40:01:F9:F2:71:27:E9:CA:0E:2C:00:DD:BB:BE:99:0B
Certificate issuer: /CN=c5ebb8b79422fb2d6d8a82db7f1ac0b6aa59b37f
Certificate serial: 01856F4B69C22B5F94680B4F14FD911741B9
Authority key identifier: C5:EB:B8:B7:94:22:FB:2D:6D:8A:82:DB:7F:1A:C0:B6:AA:59:B3:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xeu4t5Qi-y1tioLbfxrAtqpZs38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f50ecd-1c16-4bd3-bd0e-c84bfd4ee878/1/Z1G4_0AB-fJxJ-nKDiwA3bu-mQs.roa
Signing time: Sun 01 Jan 2023 21:44:51 +0000
ROA not before: Sun 01 Jan 2023 21:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34239
IP address blocks: 195.95.226.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:69:c2:2b:5f:94:68:0b:4f:14:fd:91:17:41:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5ebb8b79422fb2d6d8a82db7f1ac0b6aa59b37f
Validity
Not Before: Jan 1 21:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6751b8ff4001f9f27127e9ca0e2c00ddbbbe990b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:32:f3:a0:be:b9:0d:e3:3e:19:d1:b7:f6:26:
fc:e5:8d:c6:26:3b:78:0f:8a:59:0b:3a:e5:73:55:
90:ec:45:2b:15:fa:fe:b9:d2:53:9e:5a:d1:c7:9c:
a7:6e:f5:b2:67:92:33:35:07:c1:68:ae:6d:86:27:
17:ce:24:3f:e2:d0:32:9e:25:5d:94:a7:b3:b0:00:
78:d6:72:37:94:20:20:e0:50:3f:d2:15:9f:05:b4:
cc:e9:b0:74:a9:b9:7a:a5:83:8f:76:f7:9d:49:04:
be:19:c3:91:17:2d:49:c4:98:7b:e0:de:1d:9e:63:
b8:89:ca:a6:74:09:86:8c:2c:6f:c3:d4:85:d3:c0:
a6:fd:3e:f4:96:c0:99:6b:76:05:1e:e4:11:cf:2b:
a7:cc:06:f1:8c:14:00:04:4d:0f:b0:cc:ee:e9:43:
80:09:18:07:04:10:1c:7b:2f:62:fd:52:ea:98:a2:
4f:1f:44:c8:13:1c:10:af:eb:c0:1b:85:ea:7e:2e:
68:df:fe:f0:1a:09:16:96:4c:c4:e5:d7:c6:a0:87:
25:a7:54:cd:b3:82:02:95:a6:50:0d:eb:8e:e7:9c:
bd:b4:d3:c6:20:4f:32:49:88:9f:b1:b4:39:48:df:
4b:f2:91:b4:22:42:f1:32:cf:e0:d5:82:35:c8:ae:
19:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:51:B8:FF:40:01:F9:F2:71:27:E9:CA:0E:2C:00:DD:BB:BE:99:0B
X509v3 Authority Key Identifier:
keyid:C5:EB:B8:B7:94:22:FB:2D:6D:8A:82:DB:7F:1A:C0:B6:AA:59:B3:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xeu4t5Qi-y1tioLbfxrAtqpZs38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f50ecd-1c16-4bd3-bd0e-c84bfd4ee878/1/Z1G4_0AB-fJxJ-nKDiwA3bu-mQs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f50ecd-1c16-4bd3-bd0e-c84bfd4ee878/1/xeu4t5Qi-y1tioLbfxrAtqpZs38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.226.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:2b:cb:6d:32:fc:ee:db:22:ae:39:c2:41:8b:f0:95:a7:cf:
d6:2d:84:a8:49:f7:c7:07:3e:02:94:1e:38:9c:37:1c:a1:b1:
50:00:b6:29:a6:d4:1b:b8:aa:1c:5b:60:9a:71:1f:7c:44:c8:
b2:c1:ba:b7:2f:13:12:a2:05:92:dd:f2:60:c8:62:da:51:39:
bb:86:d9:2e:93:63:07:25:7f:3e:bb:6a:04:98:ab:3e:34:1c:
b9:eb:4e:6d:f4:50:48:6a:a2:96:c8:05:c8:68:f3:b0:15:b2:
89:0b:18:5e:ed:4b:42:db:b6:4e:16:df:17:a4:06:70:1d:24:
89:21:08:31:98:27:c2:f6:82:98:be:96:db:54:06:a0:b7:6c:
39:fe:eb:ac:c3:6f:6c:45:d5:5d:fe:d0:8b:59:a6:42:88:46:
4a:54:ff:aa:e7:3d:2b:3d:84:8b:83:03:c3:12:9b:a5:e5:a7:
94:33:cb:6c:d4:1c:d9:2a:f3:04:78:89:d5:19:82:ac:9a:cc:
b8:ec:d5:60:44:6b:c8:99:44:3c:16:4e:e4:41:d0:d5:f0:0b:
6c:b3:87:f9:d4:6f:c7:43:c9:4e:5b:9e:c2:83:0b:31:0d:57:
9a:e9:d1:d4:aa:82:9d:d5:92:d0:e0:f8:8e:6f:7a:b0:51:3c:
b3:61:0a:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:18:54 2024 by rpki-client on console-ams.rpki-client.org