Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/3ea478-a503-47d3-88f5-49be8d90f59e/1/xdRYmS2Jvn_aTnhelz_xJzUo_HA.roa
File: xdRYmS2Jvn_aTnhelz_xJzUo_HA.roa (raw, json)
Hash identifier: f/E9EIHZJNax+loTfNd77PY0Q6XjnGwi7cSPd0F9/xQ=
Subject key identifier: C5:D4:58:99:2D:89:BE:7F:DA:4E:78:5E:97:3F:F1:27:35:28:FC:70
Certificate issuer: /CN=0dd6efbe54671d71a59051e29a2448cd6af8d467
Certificate serial: 01856D788F91F9E2B16762AEEDBA886A2039
Authority key identifier: 0D:D6:EF:BE:54:67:1D:71:A5:90:51:E2:9A:24:48:CD:6A:F8:D4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DdbvvlRnHXGlkFHimiRIzWr41Gc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/3ea478-a503-47d3-88f5-49be8d90f59e/1/xdRYmS2Jvn_aTnhelz_xJzUo_HA.roa
Signing time: Sun 01 Jan 2023 13:14:55 +0000
ROA not before: Sun 01 Jan 2023 13:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42888
IP address blocks: 195.130.193.0/24 maxlen: 24
2001:67c:2144::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:78:8f:91:f9:e2:b1:67:62:ae:ed:ba:88:6a:20:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0dd6efbe54671d71a59051e29a2448cd6af8d467
Validity
Not Before: Jan 1 13:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c5d458992d89be7fda4e785e973ff1273528fc70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:59:39:03:ec:68:28:e8:b2:70:e3:ea:e7:e2:
0f:d7:e2:fc:b1:81:3a:54:ba:50:15:5c:ae:47:68:
43:13:b1:c6:d5:62:74:9f:ee:5f:76:36:38:68:71:
cc:6d:78:2f:c2:fb:80:57:1b:7f:b5:ae:fa:6c:fd:
42:fe:65:16:8b:a2:0e:0b:07:b4:73:c3:7a:c5:f8:
c6:14:e0:90:44:26:48:17:7f:0b:23:c3:9f:6b:4c:
f1:d1:74:07:f7:8b:5c:0c:48:ff:5d:9f:b6:4a:bd:
71:62:dd:80:fc:27:c0:7e:d3:d9:13:63:1a:5c:5b:
02:39:b2:6e:c0:a0:ce:1d:b8:fa:5d:cb:e3:1e:10:
2a:7d:48:cb:4d:0d:4e:f6:39:fa:fe:0c:3c:72:60:
7a:c8:a9:12:75:5d:e2:f7:8b:7f:ea:5d:6d:38:8b:
9c:83:c6:9d:26:f5:51:96:bc:16:e5:cf:b2:69:5a:
a6:db:a9:72:b1:73:65:82:48:8e:04:50:15:74:1f:
83:3b:b3:cd:e0:27:99:18:ba:22:e9:c3:1c:4d:de:
b9:dd:33:dc:c6:a7:28:39:c0:8c:47:3b:00:8f:af:
55:64:3f:37:b0:bf:d3:bb:da:84:2e:38:04:dc:f2:
3d:37:a9:ce:5b:79:fa:9d:eb:3b:a4:51:a8:fe:37:
05:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:D4:58:99:2D:89:BE:7F:DA:4E:78:5E:97:3F:F1:27:35:28:FC:70
X509v3 Authority Key Identifier:
keyid:0D:D6:EF:BE:54:67:1D:71:A5:90:51:E2:9A:24:48:CD:6A:F8:D4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DdbvvlRnHXGlkFHimiRIzWr41Gc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/3ea478-a503-47d3-88f5-49be8d90f59e/1/xdRYmS2Jvn_aTnhelz_xJzUo_HA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/3ea478-a503-47d3-88f5-49be8d90f59e/1/DdbvvlRnHXGlkFHimiRIzWr41Gc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.130.193.0/24
IPv6:
2001:67c:2144::/48
Signature Algorithm: sha256WithRSAEncryption
47:77:5a:6b:7e:7e:9e:66:64:d5:4a:c9:52:ef:71:73:8e:e6:
1d:3f:33:9b:73:c2:9f:9a:3f:f7:75:2a:79:50:7b:a6:7a:0f:
fd:f8:c1:3d:a9:3c:42:f6:0c:51:14:14:74:42:c4:b8:e8:f9:
2c:ab:e0:c4:f4:cf:41:b5:8b:51:3a:66:19:3b:58:be:8c:da:
fb:a0:6c:93:c7:1d:81:c3:65:02:fa:93:48:d6:a8:5f:6a:1c:
ba:a6:90:91:66:1a:99:6e:2f:ef:77:6f:e7:10:4c:36:43:40:
30:78:3d:f4:33:8d:80:4b:b1:c1:8d:a3:d2:05:e2:db:6b:bb:
83:65:51:6c:de:68:09:67:9e:f0:8b:92:a0:d3:e2:d4:88:b6:
ba:0e:d2:fe:63:cf:8d:3e:5c:a4:c7:7b:02:0f:a7:b8:c1:b7:
d8:34:68:62:ef:81:57:99:0b:13:e4:fc:c7:cd:ec:4f:56:b0:
83:28:81:44:a9:e1:7a:31:2f:0f:d5:0b:fc:15:b5:41:bb:26:
8e:b2:49:b5:38:f5:4e:c2:36:35:44:51:f6:6a:72:8c:13:8f:
32:d2:c3:a0:20:df:17:b6:cf:f9:40:25:1a:75:80:a6:db:e8:
52:aa:26:2b:ad:9e:95:b7:d2:2a:71:af:d0:2a:ae:16:49:b3:
6b:64:10:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:43 2024 by rpki-client on console-ams.rpki-client.org