Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/W2255E0zbjrKna6lhU6-zL78glE.roa
File: W2255E0zbjrKna6lhU6-zL78glE.roa (raw, json)
Hash identifier: Qkt7c/sKWJyPeBtrHXBjlBrEbEId6s203IerD8WX3tQ=
Subject key identifier: 5B:6D:B9:E4:4D:33:6E:3A:CA:9D:AE:A5:85:4E:BE:CC:BE:FC:82:51
Certificate issuer: /CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Certificate serial: 0192227F1C880AF92823EF60C06F6FF3A719
Authority key identifier: 65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/W2255E0zbjrKna6lhU6-zL78glE.roa
Signing time: Tue 24 Sep 2024 05:26:48 +0000
ROA not before: Tue 24 Sep 2024 05:26:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44620
IP address blocks: 195.216.161.0/24 maxlen: 24
213.182.222.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 30 Sep 2024 13:06:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:22:7f:1c:88:0a:f9:28:23:ef:60:c0:6f:6f:f3:a7:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Validity
Not Before: Sep 24 05:26:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5b6db9e44d336e3aca9daea5854ebeccbefc8251
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:41:6d:76:de:22:3c:1b:a2:34:ab:db:fe:5e:
74:eb:bf:ac:54:85:6e:38:61:06:64:2c:9c:cd:aa:
c3:eb:ec:36:2a:c9:d2:3c:dc:9e:f2:7c:38:1c:dd:
e6:67:13:6f:bf:c8:ed:c1:ec:d6:c7:7f:48:0f:88:
b5:1d:15:9e:ec:be:b2:eb:d7:29:8f:10:b8:b8:80:
e7:9e:5e:73:29:5a:d7:8b:50:63:1b:8b:ee:da:fc:
b2:a2:3c:98:6c:20:d6:9c:4b:21:aa:29:e7:73:ee:
31:e5:bf:83:34:06:75:a9:1d:fe:e3:8c:2c:df:2d:
6d:f9:c9:aa:bc:ca:39:60:69:f1:04:a3:71:8c:e6:
82:2c:4f:bb:b8:df:e4:cf:6e:a4:e6:92:dd:84:4e:
91:4b:bf:3b:a9:fb:08:6c:67:36:2e:90:ba:d1:19:
8d:91:b5:db:e9:e7:fb:9b:0e:4f:bf:60:45:22:f3:
11:39:79:e7:8e:48:3f:be:82:81:6e:2d:b5:25:e4:
5d:21:5e:78:db:ab:78:c2:be:1d:65:38:ac:e3:d3:
cf:b8:9e:e4:53:63:e1:e9:17:69:43:fa:04:29:99:
74:e3:3e:dc:1e:68:53:1a:37:33:8b:77:cd:a7:e8:
d0:9c:7c:ef:03:59:c1:ef:04:2b:41:28:1a:b0:b5:
97:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:6D:B9:E4:4D:33:6E:3A:CA:9D:AE:A5:85:4E:BE:CC:BE:FC:82:51
X509v3 Authority Key Identifier:
keyid:65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/W2255E0zbjrKna6lhU6-zL78glE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.216.161.0/24
213.182.222.0/24
Signature Algorithm: sha256WithRSAEncryption
90:97:8a:f1:88:c6:03:ce:c7:b4:b8:01:a0:5e:0b:fa:af:f7:
b3:89:8e:c4:5b:06:b9:a3:4e:52:a6:b0:f2:38:92:31:dd:7d:
41:84:30:5a:10:7c:91:18:b8:7c:6d:cc:f1:ac:e4:94:15:62:
ed:20:8e:5a:96:a3:dc:fa:5c:35:cf:71:e5:4d:a4:a3:f8:28:
bb:23:93:a1:c6:fb:76:d0:f6:cb:84:e6:fa:75:cb:ba:9e:3c:
88:e8:cc:74:1b:e8:23:07:75:6f:9f:13:2d:82:c1:82:2d:18:
ed:d1:ac:af:72:f7:06:9c:d6:2b:60:f2:99:5a:a0:9e:b7:cf:
94:8a:ab:be:b6:44:3e:f9:15:9c:ad:f1:84:64:a2:6d:48:0f:
11:72:7d:db:45:74:fa:30:20:7f:9a:30:44:51:ab:74:47:e2:
10:9c:1d:07:0e:fb:2b:9d:c9:f6:71:a1:2a:47:38:d3:26:3b:
d5:4c:98:42:1f:0a:26:7b:4f:be:d9:e7:2c:78:87:fb:06:d0:
32:87:e6:11:c9:4d:96:92:dd:a5:c8:b8:59:86:cd:6f:f4:4a:
ed:ee:f1:ea:3c:b2:49:9a:18:54:95:24:67:e1:0a:e1:aa:b0:
6b:5f:ee:46:77:c7:13:dc:9b:2e:56:f7:58:4d:59:cb:de:6e:
87:db:cb:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 30 15:37:23 2024 by rpki-client on console-fra.rpki-client.org