Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/LxjCm2rsUU0X7sp6fwcYbdn2SGY.roa
File: LxjCm2rsUU0X7sp6fwcYbdn2SGY.roa (raw, json)
Hash identifier: bltHvCZbVAEWvvjlrhxGJ8ThXfe6h0umxQAKtcVyLNc=
Subject key identifier: 2F:18:C2:9B:6A:EC:51:4D:17:EE:CA:7A:7F:07:18:6D:D9:F6:48:66
Certificate issuer: /CN=60dc5a00368d8ae1fba995431f03a4131add8a9a
Certificate serial: 01899827B87E83FA3B1CCD40D9948300243A
Authority key identifier: 60:DC:5A:00:36:8D:8A:E1:FB:A9:95:43:1F:03:A4:13:1A:DD:8A:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YNxaADaNiuH7qZVDHwOkExrdipo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/LxjCm2rsUU0X7sp6fwcYbdn2SGY.roa
Signing time: Thu 27 Jul 2023 16:21:27 +0000
ROA not before: Thu 27 Jul 2023 16:21:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43973
IP address blocks: 195.189.100.0/22 maxlen: 22
195.189.100.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:98:27:b8:7e:83:fa:3b:1c:cd:40:d9:94:83:00:24:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60dc5a00368d8ae1fba995431f03a4131add8a9a
Validity
Not Before: Jul 27 16:21:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2f18c29b6aec514d17eeca7a7f07186dd9f64866
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:71:81:4d:61:a7:9b:58:77:de:f9:4f:2d:d3:
65:4e:c0:3b:00:81:03:3f:a3:3d:df:f9:50:54:a0:
39:aa:b7:3a:0c:4b:a9:43:db:44:d4:0a:0f:b4:25:
4a:ef:fa:68:98:19:52:b8:79:e5:23:b3:87:05:83:
40:36:c0:fe:b5:b9:82:b0:8e:94:c6:de:d0:7a:1d:
9f:7e:df:7e:04:0e:e7:36:2c:31:d1:4c:fd:87:ee:
c9:65:ad:cd:bd:d6:d6:12:1b:8f:e8:ea:fe:92:62:
18:75:9c:77:b9:78:90:53:a5:6a:71:a8:ed:65:e7:
f2:c0:65:8f:c0:db:57:ed:b0:d2:e7:68:ec:0a:5c:
50:b3:9d:6f:76:1d:d6:00:86:b3:14:1a:73:76:67:
14:35:78:f7:e6:5a:c9:7e:1a:c0:de:3e:0c:bb:99:
45:29:95:ee:ba:6d:f2:8e:cb:1c:9e:1c:43:6c:59:
0c:97:b8:d9:7b:d5:b4:f2:7e:15:4e:10:15:37:61:
af:ed:d4:2a:4c:8d:82:77:56:c7:d5:38:4e:a9:48:
0f:87:2e:d6:1a:15:bc:cc:c7:65:c6:63:67:8e:44:
83:37:28:e0:a5:4d:25:95:62:13:0d:7f:d4:cc:96:
8d:de:fa:94:78:20:45:70:1d:61:6b:90:4a:94:9b:
01:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:18:C2:9B:6A:EC:51:4D:17:EE:CA:7A:7F:07:18:6D:D9:F6:48:66
X509v3 Authority Key Identifier:
keyid:60:DC:5A:00:36:8D:8A:E1:FB:A9:95:43:1F:03:A4:13:1A:DD:8A:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YNxaADaNiuH7qZVDHwOkExrdipo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/LxjCm2rsUU0X7sp6fwcYbdn2SGY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/YNxaADaNiuH7qZVDHwOkExrdipo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.189.100.0/22
Signature Algorithm: sha256WithRSAEncryption
03:4d:3e:9d:17:6a:0b:b3:62:64:aa:51:be:d6:34:72:2e:1a:
20:83:b0:3c:19:ad:8c:e6:18:4d:be:f7:59:2b:96:0c:22:f8:
79:42:cb:8c:1f:da:ad:da:a9:e7:e3:37:6e:f0:5b:ef:50:51:
11:50:d0:a8:b2:52:36:43:59:c0:7c:a7:a2:b9:af:a7:3f:86:
b2:8c:36:4a:6e:b6:d7:62:6d:99:e6:53:cc:d7:f8:46:e9:f0:
a2:07:94:86:13:e4:5c:36:af:22:7e:04:1b:55:c6:af:79:1e:
13:ea:35:2c:11:62:35:4c:c3:7d:cb:3e:63:44:08:8e:cf:90:
bd:1e:38:34:65:1a:84:09:e9:35:25:0d:cf:5b:25:ce:98:e2:
cb:4a:df:05:d8:97:44:41:4b:e8:de:71:32:6b:4d:aa:13:82:
e0:90:51:6b:c0:bc:48:11:3b:aa:1b:27:28:cb:92:78:7e:75:
19:da:98:b7:11:74:75:53:f5:cf:d6:41:a3:c1:61:27:3f:af:
a1:2e:cd:86:21:ac:48:d5:e1:67:d3:fd:ad:41:13:83:62:e8:
20:c2:6f:e3:38:ba:e1:49:e9:7d:ea:f6:86:ad:84:04:cb:30:
bf:8d:96:26:a1:37:6b:1e:30:48:25:60:e8:32:00:9e:1b:4c:
01:d0:ab:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:01 2024 by rpki-client on console-fra.rpki-client.org