Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/c8d54b-e586-4595-93e2-868babc6dd32/1/x2t2LmnNgXXl8Yrk3UTjiGWXkBA.roa
File: x2t2LmnNgXXl8Yrk3UTjiGWXkBA.roa (raw, json)
Hash identifier: 5q3/88wMkxpzpVonX5nev0dpsAlkPdTkDNRVXATC7co=
Subject key identifier: C7:6B:76:2E:69:CD:81:75:E5:F1:8A:E4:DD:44:E3:88:65:97:90:10
Certificate issuer: /CN=7cf589a31174b884a64fd091ad5c2cba5545bbdc
Certificate serial: 0185723A31B4E4C6A066E903D26EF0BC05E9
Authority key identifier: 7C:F5:89:A3:11:74:B8:84:A6:4F:D0:91:AD:5C:2C:BA:55:45:BB:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fPWJoxF0uISmT9CRrVwsulVFu9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/c8d54b-e586-4595-93e2-868babc6dd32/1/x2t2LmnNgXXl8Yrk3UTjiGWXkBA.roa
Signing time: Mon 02 Jan 2023 11:24:54 +0000
ROA not before: Mon 02 Jan 2023 11:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 195.64.125.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:3a:31:b4:e4:c6:a0:66:e9:03:d2:6e:f0:bc:05:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7cf589a31174b884a64fd091ad5c2cba5545bbdc
Validity
Not Before: Jan 2 11:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c76b762e69cd8175e5f18ae4dd44e38865979010
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:0d:51:4d:25:6a:de:0e:74:44:20:13:cc:23:
8b:6a:cb:f3:d6:03:ca:00:25:dc:6f:6f:13:76:16:
18:55:42:17:bf:6b:3a:56:65:aa:b5:06:d3:0f:c4:
7d:ce:69:19:cd:93:dc:21:a4:09:c9:a6:22:a5:07:
2a:bb:ca:ed:07:e5:22:0f:ea:6c:bb:e4:6c:2d:a6:
b5:cd:58:c3:79:61:25:98:e9:a8:72:8a:2e:07:e2:
d0:0f:3e:2b:84:bd:9d:6c:cf:8f:20:27:a8:ec:98:
d8:f1:7d:48:84:30:7b:62:2c:90:27:e8:e5:7f:47:
85:f3:dc:17:90:37:22:0d:df:81:ed:f9:31:23:a6:
a8:02:23:7b:af:0d:72:d9:85:21:ca:d3:4b:d7:9a:
55:e2:2b:6a:ea:f0:6c:c1:9e:d8:82:17:be:a1:e2:
60:37:b5:82:d6:96:21:d4:53:27:34:ad:86:25:43:
7d:3b:89:92:f0:15:31:25:ba:22:32:32:19:7b:a3:
82:e9:3f:d2:ff:67:e1:98:8c:0d:cb:5f:2d:a2:a9:
ed:fb:b7:77:5e:43:6c:22:0c:6e:26:45:41:3d:18:
05:2f:75:bf:15:f0:56:39:78:46:a9:e7:53:91:9e:
08:78:1c:58:35:17:84:f2:a5:df:2c:9f:39:40:ad:
bd:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:6B:76:2E:69:CD:81:75:E5:F1:8A:E4:DD:44:E3:88:65:97:90:10
X509v3 Authority Key Identifier:
keyid:7C:F5:89:A3:11:74:B8:84:A6:4F:D0:91:AD:5C:2C:BA:55:45:BB:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fPWJoxF0uISmT9CRrVwsulVFu9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/c8d54b-e586-4595-93e2-868babc6dd32/1/x2t2LmnNgXXl8Yrk3UTjiGWXkBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/c8d54b-e586-4595-93e2-868babc6dd32/1/fPWJoxF0uISmT9CRrVwsulVFu9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.125.0/24
Signature Algorithm: sha256WithRSAEncryption
99:50:1f:2f:65:2c:14:a3:3d:e7:86:9c:2e:60:54:55:8d:6d:
17:62:62:63:90:11:96:05:de:73:3a:2b:e5:18:c5:52:0a:1c:
a0:c8:7e:af:a7:ac:ae:0d:01:ba:aa:af:56:90:fe:d3:cf:95:
b5:80:02:88:70:31:c7:ba:94:bb:f1:90:29:fb:4a:9e:e3:74:
6f:9c:c2:5c:2d:97:d1:16:20:3b:44:8d:d4:e1:46:5c:67:3e:
98:8f:b5:3e:03:a6:bc:5d:3f:23:14:df:c0:d7:20:49:02:0a:
72:e3:bd:c3:a7:c3:15:e4:b7:1d:77:e2:0f:51:40:51:31:78:
43:bb:fb:c0:4f:f9:fc:8f:30:70:cd:8f:79:fe:b5:4a:27:3e:
f2:f3:36:b8:55:44:24:70:9d:d2:ec:ef:1b:46:89:11:1c:3b:
2b:a1:37:8c:5a:c0:d2:fb:71:44:3a:92:4d:8d:51:6d:d9:ab:
df:be:23:c0:62:74:7a:de:af:ff:dc:04:ba:1b:1e:77:6a:e0:
5f:03:c8:a7:78:3d:bc:a0:bd:c6:4f:c7:37:50:1e:12:93:d4:
f0:ac:a5:6a:97:77:25:dc:b6:e6:2b:ff:f6:0b:33:d4:8b:f0:
bf:33:4a:60:3d:ee:1d:dc:00:9e:55:fb:93:20:15:93:e7:a2:
da:37:97:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:14:20 2024 by rpki-client on console-ams.rpki-client.org