Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/dX2qjGVRm7TxqvEAXRHdXmSUu68.roa
File: dX2qjGVRm7TxqvEAXRHdXmSUu68.roa (raw, json)
Hash identifier: yK+gSngjQ75bYkAUCmQ/pYN533/BhXOh1vyly3bwcO0=
Subject key identifier: 75:7D:AA:8C:65:51:9B:B4:F1:AA:F1:00:5D:11:DD:5E:64:94:BB:AF
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 018571B9F81D0B0FD84A483D43C3B8EC8BC6
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/dX2qjGVRm7TxqvEAXRHdXmSUu68.roa
Signing time: Mon 02 Jan 2023 09:04:51 +0000
ROA not before: Mon 02 Jan 2023 09:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202735
IP address blocks: 195.146.60.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b9:f8:1d:0b:0f:d8:4a:48:3d:43:c3:b8:ec:8b:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Jan 2 09:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=757daa8c65519bb4f1aaf1005d11dd5e6494bbaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d3:4d:42:7c:b6:2a:c9:2e:94:9c:10:0a:c8:
84:7b:89:59:b0:94:02:54:18:39:d5:7d:4c:9c:c3:
80:be:7f:05:03:c5:4b:a0:bf:d9:72:7e:b7:5f:85:
b7:44:57:f8:9f:cf:81:96:a3:36:30:a8:3a:eb:6c:
26:49:00:60:ac:1a:1d:95:b2:17:d8:89:08:d7:0d:
6f:f1:15:38:08:63:e7:46:3e:c9:b7:10:47:62:20:
54:13:43:f7:38:57:57:95:03:c1:8c:11:13:37:25:
75:6b:8c:5d:3a:e1:7b:12:29:86:d4:cd:53:e3:e2:
3b:c4:2c:cb:69:6c:f5:41:cd:59:2b:a5:04:96:be:
f5:03:77:01:0b:99:72:5d:d0:04:a4:65:53:44:af:
a6:d4:79:2b:b1:47:ca:7a:fb:64:e4:2c:40:1e:dc:
6d:5d:b6:0d:02:70:bc:33:11:f6:b8:d6:a6:63:8c:
a7:0f:5b:ef:60:55:a1:a3:81:5c:76:6e:f2:3d:af:
54:bc:b0:2d:a8:0b:b1:f4:af:ce:f9:66:44:e4:9e:
b9:ed:b7:c1:9d:5f:ce:4b:25:73:03:43:b0:77:b7:
07:b3:3e:c5:dc:29:54:3e:e9:35:d0:c8:41:d3:a1:
99:fe:10:fb:f0:7a:33:35:09:8a:2b:a5:a5:dc:92:
4f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:7D:AA:8C:65:51:9B:B4:F1:AA:F1:00:5D:11:DD:5E:64:94:BB:AF
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/dX2qjGVRm7TxqvEAXRHdXmSUu68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.146.60.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:4a:bd:ab:c9:20:26:2f:f0:c9:2c:cb:9a:c3:26:0b:63:db:
ba:4d:fc:ee:b8:7a:d3:39:b4:08:b5:de:1a:52:ab:19:13:5a:
48:2e:ec:2d:ed:2e:4f:31:b9:c9:f2:cb:22:4c:75:e6:dc:8c:
5e:d5:a4:f7:f7:58:e5:76:80:5d:61:36:d1:1d:af:09:3b:8d:
b0:8c:d4:97:7d:43:7c:6b:3b:42:a4:46:17:bb:fe:b8:60:73:
09:d4:8f:d5:9a:93:34:dc:9a:cb:99:13:8f:5e:79:3d:d1:80:
e2:71:0d:92:a5:5d:c7:41:8b:0c:85:36:21:f9:e3:43:a2:22:
ef:19:79:90:30:8a:f4:d0:56:b5:f7:27:09:16:97:c4:f8:fe:
43:38:01:f1:64:ef:7c:f4:10:b5:ce:ac:78:99:c0:8a:00:77:
10:fb:b1:6e:bf:f7:2b:48:1f:42:a1:64:a8:3f:6e:0c:8e:28:
5e:4c:4c:ea:ee:f2:45:00:55:ac:16:94:6c:66:77:a6:44:c8:
31:8c:5b:c7:a9:23:18:c7:56:20:14:2d:51:9e:55:d4:33:8c:
8a:63:fb:75:6e:9c:bb:1d:95:77:22:91:2a:30:1f:a9:2c:90:
85:1d:b9:fa:86:e3:ae:0e:ec:98:a0:5e:32:12:2f:05:61:92:
78:5d:2e:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:47 2024 by rpki-client on console-fra.rpki-client.org