Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/XQ-PQe29EgJzjjm3LyugeeeDHiw.roa
File: XQ-PQe29EgJzjjm3LyugeeeDHiw.roa (raw, json)
Hash identifier: txhXF4lP6FvNdzBrWvN2PoYl/+IcjtUJWgvXUJVqY3A=
Subject key identifier: 5D:0F:8F:41:ED:BD:12:02:73:8E:39:B7:2F:2B:A0:79:E7:83:1E:2C
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 01856E38CA5EF8B39CD0F88017C84EBD6514
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/XQ-PQe29EgJzjjm3LyugeeeDHiw.roa
Signing time: Sun 01 Jan 2023 16:44:53 +0000
ROA not before: Sun 01 Jan 2023 16:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 195.178.141.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Jan 2023 12:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:38:ca:5e:f8:b3:9c:d0:f8:80:17:c8:4e:bd:65:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Jan 1 16:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5d0f8f41edbd1202738e39b72f2ba079e7831e2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a5:ef:90:4f:bc:21:f1:4c:47:13:8e:3c:3e:
0f:11:61:3d:e6:63:12:87:2f:55:0b:ba:4d:c0:54:
c0:52:98:33:72:ea:a0:f5:0f:07:59:91:b5:c4:20:
6d:9a:52:09:07:da:07:36:84:bd:95:7d:0e:47:6f:
7c:46:8b:7c:84:39:01:1b:e9:b2:a0:18:c2:38:a7:
cf:4c:89:51:df:1a:6e:51:b4:db:e9:69:77:99:4c:
ea:51:8e:ac:f3:64:1a:3a:84:e1:7c:b4:2a:28:eb:
e5:f1:2b:87:f8:0f:eb:16:4d:6e:b3:04:0b:3d:1c:
92:07:09:a6:66:5f:a0:a9:0d:8e:fc:3f:7f:4a:d0:
2f:98:f2:ab:6a:51:6a:61:de:c1:2e:b6:78:da:03:
6b:e1:a9:a7:0a:3b:c8:f8:fb:14:0a:d9:56:d2:04:
07:49:09:5a:bf:39:c0:83:72:b0:48:87:6d:6b:29:
41:8f:29:72:a6:76:bc:ce:3c:f9:49:9d:d2:a3:51:
5b:d0:12:7a:c2:b7:59:d7:4e:48:ac:1e:54:09:e7:
fc:0c:34:08:e7:04:9a:26:81:cd:73:e9:bc:01:62:
ad:e1:ea:dc:7b:ed:fa:21:19:59:90:41:8b:fb:a6:
40:34:b6:d7:a1:29:f8:f5:df:94:0f:e6:a0:71:57:
8e:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:0F:8F:41:ED:BD:12:02:73:8E:39:B7:2F:2B:A0:79:E7:83:1E:2C
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/XQ-PQe29EgJzjjm3LyugeeeDHiw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.178.141.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:37:c4:19:a6:89:16:ac:e1:e9:b5:75:81:6e:19:66:b8:64:
4b:93:ea:5e:c0:4c:ac:ba:cc:8f:5d:42:3c:2e:3a:4a:8d:4d:
41:8c:27:b8:56:b1:e6:b1:a2:59:d0:8f:7f:5d:7d:6c:2b:dc:
68:f7:60:fc:5e:23:a7:56:d3:92:cb:ea:0b:bf:18:1c:63:ed:
a5:c2:5a:9b:74:43:8c:5a:68:f6:b7:8d:57:90:c8:d2:43:af:
6e:5c:eb:b4:8e:eb:9b:0c:97:87:ab:13:0c:91:4e:b8:7f:c9:
cb:ee:46:82:ab:be:32:96:a4:f3:83:70:86:33:ae:76:4f:cb:
7f:61:81:f3:07:44:3d:e5:63:e8:7b:a0:de:3f:61:cc:00:c7:
ce:92:b6:d7:b2:14:50:18:79:4e:5a:8d:c8:4a:a7:2c:09:c0:
1e:95:91:84:51:5c:a8:ba:09:99:ad:d8:0c:12:47:3d:84:39:
ec:88:3d:b8:cc:59:31:b1:d9:ca:5a:57:ee:de:b3:b1:a1:f8:
53:45:31:a3:2d:89:c8:be:f2:65:13:2b:f0:1c:40:69:b8:e8:
f7:97:6e:31:64:1b:69:92:71:14:4f:0f:c4:9c:58:22:49:07:
3b:f3:a3:c1:18:7b:0f:2a:f1:a6:64:3b:3d:89:e7:3e:a3:c2:
52:78:d6:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:42 2024 by rpki-client on console-fra.rpki-client.org