Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/76778e-5f56-48ee-a9de-e8b011ea8897/1/xigT3vi2qBAp7fVgA7xGNU1xUng.roa
File: xigT3vi2qBAp7fVgA7xGNU1xUng.roa (raw, json)
Hash identifier: +nps9yOfxP6VqIOjbpinKdCzCfpcdAWJXyINYlGh/Kg=
Subject key identifier: C6:28:13:DE:F8:B6:A8:10:29:ED:F5:60:03:BC:46:35:4D:71:52:78
Certificate issuer: /CN=4d34750be2173cb9b086a77c6dea54b4a8469af3
Certificate serial: 018CC9BC85966584C57CA7623A00034613CB
Authority key identifier: 4D:34:75:0B:E2:17:3C:B9:B0:86:A7:7C:6D:EA:54:B4:A8:46:9A:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TTR1C-IXPLmwhqd8bepUtKhGmvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/76778e-5f56-48ee-a9de-e8b011ea8897/1/xigT3vi2qBAp7fVgA7xGNU1xUng.roa
Signing time: Tue 02 Jan 2024 10:33:44 +0000
ROA not before: Tue 02 Jan 2024 10:33:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197999
IP address blocks: 195.66.91.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 11:47:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:85:96:65:84:c5:7c:a7:62:3a:00:03:46:13:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d34750be2173cb9b086a77c6dea54b4a8469af3
Validity
Not Before: Jan 2 10:33:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c62813def8b6a81029edf56003bc46354d715278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e5:61:53:ea:c2:08:d4:26:c6:c0:7f:b6:27:
6f:79:79:dd:ff:79:2e:ab:99:f6:75:bc:56:03:d6:
04:f8:8d:8f:be:9e:c7:97:37:ba:9f:72:46:fe:18:
2c:b7:88:b1:76:ea:67:9d:1a:e4:83:1b:cb:0f:18:
6a:72:2b:95:42:84:61:c4:02:92:07:a9:4f:44:8a:
06:1b:7b:3e:5b:68:c7:94:f5:d6:45:e9:ee:e2:5f:
3c:ea:4b:8f:51:af:2e:60:88:23:7e:94:14:b9:c7:
cb:45:5e:2d:a4:a5:f7:58:91:99:f1:91:0e:11:88:
c7:31:7d:4a:51:0d:d0:a8:4f:2c:87:c4:b7:d0:21:
db:bc:33:84:e9:aa:12:ee:66:5e:3a:3a:cf:1f:f4:
0a:85:6a:c2:aa:07:6e:33:61:ba:b5:07:d3:fe:5f:
64:58:ea:e3:a9:f2:03:ea:95:7a:fa:ed:26:39:26:
d1:fd:ea:66:61:3a:06:7a:56:73:8a:a8:86:73:cd:
71:76:62:8b:3e:82:c5:85:e4:b3:2b:94:2d:ad:6b:
e1:94:7e:82:81:76:7a:67:10:4b:01:0b:de:62:18:
e7:89:c8:7f:9c:06:57:32:8a:15:ef:fa:21:50:a5:
19:37:88:0b:d9:95:74:27:fa:f4:19:78:64:87:8d:
2e:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:28:13:DE:F8:B6:A8:10:29:ED:F5:60:03:BC:46:35:4D:71:52:78
X509v3 Authority Key Identifier:
keyid:4D:34:75:0B:E2:17:3C:B9:B0:86:A7:7C:6D:EA:54:B4:A8:46:9A:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TTR1C-IXPLmwhqd8bepUtKhGmvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/76778e-5f56-48ee-a9de-e8b011ea8897/1/xigT3vi2qBAp7fVgA7xGNU1xUng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/76778e-5f56-48ee-a9de-e8b011ea8897/1/TTR1C-IXPLmwhqd8bepUtKhGmvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.66.91.0/24
Signature Algorithm: sha256WithRSAEncryption
89:1d:66:51:e2:93:5e:85:73:d0:95:85:4f:0e:7b:3a:bc:6d:
68:52:70:ad:23:e7:5c:03:22:89:0a:fb:1e:73:28:1e:40:98:
fb:9f:6b:00:e3:61:5f:8f:8e:39:49:ad:14:2e:57:3b:7d:be:
76:b5:c1:93:fd:48:2c:f8:35:67:25:6d:27:80:fd:c5:ca:42:
2f:39:eb:40:9a:29:a4:35:02:6a:92:3d:bf:bb:83:63:ec:a3:
91:1a:94:41:2b:20:80:6f:61:3c:80:84:99:94:b8:94:0c:37:
c8:83:ae:33:3f:b1:e3:4e:6c:76:28:9a:4c:4c:2c:b1:32:c8:
d6:b3:5d:ed:1d:73:4e:07:23:34:d6:b8:24:a8:c1:db:ee:4d:
a1:91:cf:df:12:ab:a3:ca:61:e6:ce:5e:59:33:a0:d7:61:b9:
d4:d5:42:08:2e:e3:64:65:be:6c:68:ae:f1:8b:b7:38:b7:9b:
74:c8:2c:c1:b4:9a:58:17:47:1e:92:d0:c0:8f:9f:33:38:db:
01:36:b3:01:4b:f0:53:77:f7:8f:a2:62:79:e3:e9:46:6a:de:
2d:d3:93:92:24:03:e8:80:35:2b:c5:01:29:cd:ad:01:c2:43:
42:26:e7:ef:35:d3:f5:05:f6:40:54:89:be:f2:71:94:ac:dc:
05:7b:de:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:14:54 2025 by rpki-client