Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/l5sVhj0-LexEzjPnjIQSw1-9P8c.roa
File: l5sVhj0-LexEzjPnjIQSw1-9P8c.roa (raw, json)
Hash identifier: wQ5/t1pXtIg+8lDCAqoj6WfC9uJDPnVYOfRmrOuD41E=
Subject key identifier: 97:9B:15:86:3D:3E:2D:EC:44:CE:33:E7:8C:84:12:C3:5F:BD:3F:C7
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 01891C092BF483A3E011E6EBA2E328AD622A
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/l5sVhj0-LexEzjPnjIQSw1-9P8c.roa
Signing time: Mon 03 Jul 2023 13:55:10 +0000
ROA not before: Mon 03 Jul 2023 13:55:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 195.178.143.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 01 Aug 2023 10:39:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1c:09:2b:f4:83:a3:e0:11:e6:eb:a2:e3:28:ad:62:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Jul 3 13:55:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=979b15863d3e2dec44ce33e78c8412c35fbd3fc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:02:c8:fc:72:de:72:2a:d2:bc:42:ff:15:c9:
c6:f9:72:a9:d9:19:6a:f2:58:2f:93:ab:bf:c6:ae:
f2:4d:09:f4:1e:53:91:cf:7f:5e:aa:98:c9:31:b4:
24:94:9d:fb:32:b4:20:97:f3:a4:e0:f5:1f:ac:5a:
b5:cc:dd:f2:90:aa:fa:89:a6:6f:79:a2:33:e5:0e:
41:4b:c8:a0:44:8c:cd:2f:4d:b9:fe:d8:a8:df:c5:
00:8c:e9:11:2a:6c:c5:32:2a:90:89:9e:ab:32:2d:
63:a7:0c:cc:6e:1c:0f:ca:21:4b:4a:23:be:3e:3c:
b8:01:1e:f4:1e:7d:88:44:ad:34:08:e4:1f:0b:a5:
82:d3:a2:61:3f:f2:6b:82:5e:a1:11:1d:73:e0:59:
33:ad:0a:91:71:b1:7c:fd:2f:0e:8d:5b:b6:56:d1:
45:77:4c:6a:78:77:11:2d:df:7a:16:ef:d5:05:ad:
73:27:bb:7b:4c:86:03:24:45:04:3d:1e:eb:f0:ca:
9b:3a:eb:70:14:37:49:5c:b3:b0:6c:5d:e9:a8:63:
0e:ba:be:92:c5:e1:cc:3b:cf:89:2a:9e:ed:25:08:
93:39:8a:2e:08:7c:95:ec:0d:3d:4d:da:ab:7e:40:
7e:9f:41:67:54:35:9b:95:8d:a1:57:19:8f:63:ac:
44:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:9B:15:86:3D:3E:2D:EC:44:CE:33:E7:8C:84:12:C3:5F:BD:3F:C7
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/l5sVhj0-LexEzjPnjIQSw1-9P8c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.178.143.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:ca:16:a4:6c:d7:0f:ea:ac:fb:b6:b1:ab:f0:4a:36:40:0d:
b6:7e:51:f6:7a:1d:6a:f0:33:df:6b:ee:3e:bf:85:26:a3:34:
ce:4d:86:cb:05:8a:3b:6a:88:cc:95:d7:fb:f9:c4:d3:40:72:
98:d2:57:46:af:22:2b:5b:73:70:4b:b7:31:77:22:75:18:71:
b5:b7:5c:a8:00:96:fb:d9:47:e9:c9:d6:ff:15:84:d4:a2:60:
4c:10:c0:61:7f:aa:1a:a8:f2:a4:34:ce:10:b0:f7:9e:18:c8:
60:6e:b4:aa:80:2b:8a:d9:04:36:a2:59:72:8f:ba:9f:cd:a2:
e1:cf:86:18:de:ec:6e:11:1e:15:be:be:81:39:b7:e0:6e:af:
bd:12:48:c5:ca:3a:bf:d1:4b:09:30:25:08:a0:cb:b0:dc:dc:
57:3b:d3:bb:42:26:73:92:e5:4f:6f:a1:91:de:fd:da:fe:20:
f7:8b:59:a4:69:64:f0:61:d7:e2:f4:3a:c0:50:25:5e:61:a4:
dc:60:be:71:88:c1:9c:e3:a7:26:3c:64:84:58:a3:7a:1e:9a:
43:e4:5e:35:f2:03:48:7d:98:78:c1:6d:62:59:44:21:45:d3:
a4:9f:a2:25:b3:10:7d:d8:a8:51:9d:66:14:48:16:f7:ca:16:
c4:e5:ab:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:38 2024 by rpki-client on console-ams.rpki-client.org