Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/1zUpHCaubpXvViLEWGEYj3R7ayY.roa
File: 1zUpHCaubpXvViLEWGEYj3R7ayY.roa (raw, json)
Hash identifier: TFGmXY84LHw5hNfcZH6rglwYibDZ8Dwvm516IeiPX/8=
Subject key identifier: D7:35:29:1C:26:AE:6E:95:EF:56:22:C4:58:61:18:8F:74:7B:6B:26
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 01856E38C5D8F37C079A219A3F222B2F2D75
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/1zUpHCaubpXvViLEWGEYj3R7ayY.roa
Signing time: Sun 01 Jan 2023 16:44:52 +0000
ROA not before: Sun 01 Jan 2023 16:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6807
IP address blocks: 195.178.155.0/24 maxlen: 24
212.111.194.0/24 maxlen: 24
2a01:5c40:3::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:38:c5:d8:f3:7c:07:9a:21:9a:3f:22:2b:2f:2d:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Jan 1 16:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d735291c26ae6e95ef5622c45861188f747b6b26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:47:55:78:90:02:00:98:81:0f:7c:e5:db:fe:
98:be:cc:28:77:23:06:ef:c0:0c:84:cc:8e:0f:24:
67:5a:f8:d6:2b:c9:40:99:fd:65:b4:0d:aa:70:19:
94:64:e1:e3:ec:93:c2:0a:87:e7:9b:b0:ae:87:ff:
d7:f3:57:0b:91:b7:a9:29:65:d3:88:05:7f:82:0e:
8c:31:64:55:49:36:c9:27:64:96:67:7f:f7:dd:3c:
51:d1:10:bc:b7:1d:5c:7a:ad:91:85:0f:39:16:be:
ac:38:8c:63:d3:22:5d:cf:18:3a:3d:d6:8a:15:24:
df:57:54:1b:28:f2:40:52:ce:29:cb:8a:40:99:d3:
3b:f3:a7:8d:f3:62:47:93:d3:46:aa:27:64:74:d1:
c4:7f:a8:cf:be:dc:55:0b:00:15:e6:55:c5:11:a9:
f0:cd:bc:14:f4:cf:4f:8f:02:39:af:16:4f:2c:9a:
a7:48:c3:67:eb:71:8e:a4:5b:b5:c4:40:ff:dc:5b:
80:cd:b1:f7:be:24:79:4b:03:1f:2b:ca:3c:99:b2:
40:b7:d2:c5:52:dc:72:8c:1f:83:73:8b:c7:a7:e0:
f2:6e:03:0a:2a:13:e7:23:25:86:da:33:c9:50:66:
2b:2f:42:da:f1:5e:39:17:87:83:2a:95:52:7d:0d:
bb:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:35:29:1C:26:AE:6E:95:EF:56:22:C4:58:61:18:8F:74:7B:6B:26
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/1zUpHCaubpXvViLEWGEYj3R7ayY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.178.155.0/24
212.111.194.0/24
IPv6:
2a01:5c40:3::/48
Signature Algorithm: sha256WithRSAEncryption
4b:95:d2:b9:cd:79:da:c3:00:b5:25:26:71:2d:30:96:9e:39:
cc:3b:5a:91:09:57:ae:70:20:ec:f8:83:fa:ea:40:ee:b8:4d:
04:3b:67:8a:72:5c:4e:63:44:2c:10:c5:ef:29:e1:4e:45:17:
17:e6:e1:54:7f:74:1b:4b:bb:da:28:3e:f5:8d:b3:a3:d3:73:
84:a5:4e:f1:5c:98:6b:16:a8:7e:cc:0b:99:8c:26:9d:b4:13:
29:ae:ed:3f:fb:15:eb:a6:b9:9d:8b:4f:fc:5f:98:c3:fd:27:
3a:6e:8a:82:b7:c1:91:e0:c7:e1:c7:cb:fa:04:75:10:92:74:
81:d8:a8:12:c1:87:9a:2f:aa:42:93:90:14:2f:3d:82:03:db:
67:fc:29:0b:0e:f8:ca:60:ff:58:36:be:bb:33:71:5e:1e:1f:
91:38:41:03:8e:40:b9:cd:94:de:e2:8d:d0:88:ca:f7:d7:de:
20:45:b4:5f:67:d7:fb:12:63:ef:1b:60:95:f7:ef:b1:10:a9:
26:aa:60:28:ed:65:db:dc:aa:eb:7b:79:b7:88:5a:b6:c9:97:
1b:ee:8e:ad:0d:48:77:28:60:33:74:b1:10:7b:5d:21:ca:9b:
48:cc:94:7e:b5:88:e7:49:7e:c9:98:d2:db:d7:5c:6c:fc:3e:
5e:d7:c8:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:38 2024 by rpki-client on console-ams.rpki-client.org