Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/20caee-fd68-4ddc-b22e-4433608aa5d5/1/7k-idOKDh9FkFfXkGGCuBHUN5_E.roa
File: 7k-idOKDh9FkFfXkGGCuBHUN5_E.roa (raw, json)
Hash identifier: R8uGxhUJFlKK/WfrvTjckwxHfdmoxAMV7B3/WX4SBnI=
Subject key identifier: EE:4F:A2:74:E2:83:87:D1:64:15:F5:E4:18:60:AE:04:75:0D:E7:F1
Certificate issuer: /CN=9cc23310c915a4fe095e1b74a066d1cdee47843f
Certificate serial: 01857C1272B75087729ACD15DD1891A0F047
Authority key identifier: 9C:C2:33:10:C9:15:A4:FE:09:5E:1B:74:A0:66:D1:CD:EE:47:84:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nMIzEMkVpP4JXht0oGbRze5HhD8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/20caee-fd68-4ddc-b22e-4433608aa5d5/1/7k-idOKDh9FkFfXkGGCuBHUN5_E.roa
Signing time: Wed 04 Jan 2023 09:17:41 +0000
ROA not before: Wed 04 Jan 2023 09:17:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5413
IP address blocks: 195.49.180.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:7c:12:72:b7:50:87:72:9a:cd:15:dd:18:91:a0:f0:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cc23310c915a4fe095e1b74a066d1cdee47843f
Validity
Not Before: Jan 4 09:17:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ee4fa274e28387d16415f5e41860ae04750de7f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:3e:37:ab:7b:5a:56:91:7e:19:95:81:e2:89:
76:9e:7b:62:c5:34:18:f1:f7:d8:1d:28:ac:81:27:
8a:20:7c:3f:ed:b9:c0:f2:ea:2f:6e:e4:32:1d:6c:
6b:c2:d2:67:36:68:82:a6:1d:94:60:95:73:fc:b7:
22:98:c1:5e:54:f5:a3:d9:9b:4d:ce:98:da:fa:bf:
f2:e0:39:db:5e:02:75:55:e0:09:ab:0c:25:c5:d4:
f9:2d:0f:b6:81:cd:b5:0a:0d:e3:5e:7c:c3:58:e6:
bf:fc:1a:bc:52:4c:bf:c8:da:2d:40:d4:3d:c6:6e:
f5:50:02:c1:84:ae:6d:27:c4:37:80:5a:89:1b:50:
d4:f5:38:ee:f8:c0:8b:b9:df:19:99:b2:36:b9:35:
89:84:a8:d5:11:71:e5:8d:8a:da:5a:b2:9d:62:96:
ef:5a:6d:96:56:cb:2c:44:27:43:fc:f7:48:e5:2c:
1e:60:da:e1:bf:45:ba:6e:c1:15:58:37:17:18:ee:
21:82:1a:c2:ff:30:08:94:17:dc:c6:1d:43:46:cd:
cc:49:df:31:1b:f0:61:99:98:29:9e:53:d7:61:b8:
f9:e9:2a:5d:5e:f8:9c:73:c2:9c:7b:68:e9:58:34:
01:42:3b:77:95:00:52:cf:a3:fc:20:b3:ba:4a:7e:
15:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:4F:A2:74:E2:83:87:D1:64:15:F5:E4:18:60:AE:04:75:0D:E7:F1
X509v3 Authority Key Identifier:
keyid:9C:C2:33:10:C9:15:A4:FE:09:5E:1B:74:A0:66:D1:CD:EE:47:84:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nMIzEMkVpP4JXht0oGbRze5HhD8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/20caee-fd68-4ddc-b22e-4433608aa5d5/1/7k-idOKDh9FkFfXkGGCuBHUN5_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/20caee-fd68-4ddc-b22e-4433608aa5d5/1/nMIzEMkVpP4JXht0oGbRze5HhD8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.49.180.0/22
Signature Algorithm: sha256WithRSAEncryption
25:7e:ca:e4:51:71:81:08:0a:9c:80:a8:08:9f:3e:45:64:85:
cf:3c:39:24:af:f9:62:ed:4b:33:8e:e4:ee:b7:60:20:f9:36:
a2:f5:c1:54:2d:6f:57:fb:91:2a:2a:03:96:7b:e0:37:c9:b6:
8d:05:7f:99:99:c0:7c:f6:ea:49:39:13:b3:d1:99:7e:96:b0:
f0:34:05:e9:67:cb:27:4e:b8:fd:c5:9f:90:cb:6a:1d:ec:e1:
45:e3:ca:16:21:cf:5b:9e:ac:cb:c1:b0:0d:40:67:3c:6a:76:
a8:c0:62:ba:4e:89:43:dd:08:2d:25:18:14:8e:4a:a3:4e:7c:
40:51:df:30:11:84:45:5d:56:5e:aa:e7:4a:e2:28:a9:b8:e6:
fb:d0:50:72:00:db:df:0d:dc:1d:58:36:86:8b:54:6e:63:ac:
ee:68:89:7a:3b:f1:48:27:b5:aa:58:84:e5:c3:66:27:b1:67:
85:11:42:5e:3c:a3:1f:74:f9:b7:86:e9:ce:1c:51:0c:51:00:
73:ec:55:34:0b:40:96:23:d8:57:ea:dd:12:7b:3f:77:41:18:
8f:ed:c7:57:41:37:f6:13:7c:77:f6:8b:ea:15:4b:20:77:2c:
06:a3:46:ba:fd:06:f1:b5:5c:af:28:c0:ff:6f:be:a3:fe:58:
88:3f:37:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:54 2024 by rpki-client on console-fra.rpki-client.org