Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/e7c7eb-f7c6-43b7-a6ff-63e020feecf9/1/v0MTyV5_REZTzbeawFTkiLzLVjs.roa
File: v0MTyV5_REZTzbeawFTkiLzLVjs.roa (raw, json)
Hash identifier: ooq9mxXIYMtyoauhshpHVjpwVKqt2FwU/o4F5U9jjl4=
Subject key identifier: BF:43:13:C9:5E:7F:44:46:53:CD:B7:9A:C0:54:E4:88:BC:CB:56:3B
Certificate issuer: /CN=49de578dac792d95e217d9871e04f66973bb7eb0
Certificate serial: 018C5851989B4A43451590FDA5DCB1EDADA4
Authority key identifier: 49:DE:57:8D:AC:79:2D:95:E2:17:D9:87:1E:04:F6:69:73:BB:7E:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sd5Xjax5LZXiF9mHHgT2aXO7frA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/e7c7eb-f7c6-43b7-a6ff-63e020feecf9/1/v0MTyV5_REZTzbeawFTkiLzLVjs.roa
Signing time: Mon 11 Dec 2023 09:59:51 +0000
ROA not before: Mon 11 Dec 2023 09:59:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56971
IP address blocks: 195.211.124.0/24 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:58:51:98:9b:4a:43:45:15:90:fd:a5:dc:b1:ed:ad:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49de578dac792d95e217d9871e04f66973bb7eb0
Validity
Not Before: Dec 11 09:59:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf4313c95e7f444653cdb79ac054e488bccb563b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:be:59:6f:9b:c2:32:25:fe:71:6f:6d:78:f7:
f4:46:eb:15:73:fe:a5:3a:b3:ea:a7:c0:77:5b:94:
ea:4e:6a:66:ab:1c:8b:ec:6b:e8:73:e5:e8:fd:e3:
8d:1a:4e:52:5b:29:ea:be:21:60:0a:73:00:12:c8:
eb:d1:a6:ee:58:9e:ce:c9:17:94:36:d0:dd:4d:c2:
de:30:81:b6:4a:83:13:e8:12:de:47:58:c0:d8:e4:
f8:f4:1d:85:80:ce:c0:f9:e1:79:02:e9:db:5c:f1:
a7:23:00:6a:5a:75:95:01:f3:75:8f:c4:1a:5f:87:
a3:2c:27:dd:9a:5f:e1:ba:ce:e3:79:59:87:99:b2:
97:ef:55:90:1b:8a:1d:47:62:ea:f8:a6:c8:32:41:
52:e5:58:d3:8e:77:d2:44:2a:ef:4f:cd:25:51:31:
22:e2:8b:54:8c:7d:50:43:10:2f:42:ac:49:22:1d:
39:60:04:be:26:91:82:9b:ee:32:24:12:62:92:59:
73:71:d1:6f:8e:08:cb:1f:65:4e:09:46:48:2c:af:
35:e2:96:33:1e:d5:ff:45:8e:93:ed:81:b0:6e:3c:
75:2d:05:df:08:05:62:9c:91:56:1b:88:a4:c1:83:
54:bf:eb:7b:d5:b6:2d:9e:67:db:a1:fd:41:64:c6:
c2:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:43:13:C9:5E:7F:44:46:53:CD:B7:9A:C0:54:E4:88:BC:CB:56:3B
X509v3 Authority Key Identifier:
keyid:49:DE:57:8D:AC:79:2D:95:E2:17:D9:87:1E:04:F6:69:73:BB:7E:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sd5Xjax5LZXiF9mHHgT2aXO7frA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/e7c7eb-f7c6-43b7-a6ff-63e020feecf9/1/v0MTyV5_REZTzbeawFTkiLzLVjs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/e7c7eb-f7c6-43b7-a6ff-63e020feecf9/1/Sd5Xjax5LZXiF9mHHgT2aXO7frA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.211.124.0/24
Signature Algorithm: sha256WithRSAEncryption
80:7b:34:88:60:71:7e:90:5e:e0:4b:b2:20:cb:e6:81:6f:54:
ce:e1:58:6d:f2:fb:c5:6c:a5:9f:d3:f6:77:23:b6:68:11:69:
ee:90:b3:e4:12:ee:bd:d8:da:c2:89:d4:8d:99:01:86:1c:88:
b0:0f:d9:44:88:3b:75:13:e4:f1:07:1b:03:aa:22:b3:38:a3:
61:18:f2:d9:44:14:69:c2:2f:1c:2e:94:d7:3a:4a:09:f8:3a:
22:c0:49:f9:fa:20:12:71:c6:82:b9:98:8e:d5:76:f6:7b:1a:
73:ad:6d:40:75:53:66:16:69:c0:98:99:a3:2f:08:d7:a9:0b:
b9:a6:5d:e6:c3:c2:34:2b:17:1d:67:e1:17:f3:97:25:d9:e5:
a5:db:cd:78:e3:39:4d:fe:54:2f:4f:ed:73:7b:e9:29:71:e9:
04:fb:98:83:e5:3a:e7:22:03:d0:00:49:f0:fb:d7:81:cc:d6:
dd:d8:2b:48:9e:d5:72:4a:cf:53:73:10:7c:65:ea:0b:52:c5:
13:a7:93:78:99:e8:53:85:ec:4f:84:88:a6:e7:8b:a7:29:9f:
9a:8e:a5:97:e7:9d:0e:a9:a8:4e:ca:1a:f0:2f:6e:cc:34:27:
71:3b:eb:3e:2e:a7:64:a8:ed:77:13:2f:23:ce:55:9b:2f:dd:
c2:2c:4f:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:29:56 2024 by rpki-client on console-ams.rpki-client.org