Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ePwtegx5zGlq5IxyT51wCEvjSr0.roa
File: ePwtegx5zGlq5IxyT51wCEvjSr0.roa (raw, json)
Hash identifier: pmTqTXiS9EmH3gVOeWN3ap2mw/DtmtVKGIQvjnOlbeQ=
Subject key identifier: 78:FC:2D:7A:0C:79:CC:69:6A:E4:8C:72:4F:9D:70:08:4B:E3:4A:BD
Certificate issuer: /CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Certificate serial: 01856FD4F35D851B6D766D0C370E5B7020FB
Authority key identifier: 65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ePwtegx5zGlq5IxyT51wCEvjSr0.roa
Signing time: Mon 02 Jan 2023 00:15:05 +0000
ROA not before: Mon 02 Jan 2023 00:15:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31863
IP address blocks: 195.216.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d4:f3:5d:85:1b:6d:76:6d:0c:37:0e:5b:70:20:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Validity
Not Before: Jan 2 00:15:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=78fc2d7a0c79cc696ae48c724f9d70084be34abd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d2:10:03:f5:33:e6:d7:be:e9:dd:b3:19:36:
1a:49:c2:0b:d2:15:00:5b:4c:b3:90:11:94:4d:da:
a5:82:0f:bf:c9:ee:e4:a0:aa:27:3d:6c:b4:fe:fe:
cc:62:8b:2f:2c:78:ab:e5:26:50:ca:07:95:14:da:
60:b0:e7:5a:29:f0:2a:03:13:32:fd:ea:d4:a7:2a:
d0:d1:b3:10:8c:7a:10:4b:f0:0a:91:36:d4:d8:c8:
5e:ff:21:ca:dd:71:3f:57:ec:59:50:72:2f:49:a2:
5c:f1:2a:06:37:3e:e8:04:d3:a0:ef:3d:ce:16:7d:
9e:ff:80:ee:10:dc:7d:f6:13:5b:25:f3:65:a1:55:
b7:55:65:8e:8e:1d:5d:17:92:64:0f:d3:73:ac:cf:
09:a7:49:6b:c6:74:70:15:d9:19:8c:6d:9d:bf:bd:
5a:db:8e:68:f6:de:b7:70:c0:34:07:54:dc:4b:9f:
03:03:a6:9f:1a:d5:cf:46:3b:60:2f:71:32:5d:11:
5f:ef:17:bc:e5:98:39:7c:94:7b:25:7c:40:f5:81:
0b:6d:4f:09:80:5c:3d:c8:ea:ab:3b:a3:a8:3b:18:
95:10:bb:e5:d2:1d:6f:e3:40:cb:e7:ca:6b:f6:51:
a0:02:fa:ab:8e:ac:c6:a8:84:7b:02:e8:fe:cc:85:
f1:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:FC:2D:7A:0C:79:CC:69:6A:E4:8C:72:4F:9D:70:08:4B:E3:4A:BD
X509v3 Authority Key Identifier:
keyid:65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ePwtegx5zGlq5IxyT51wCEvjSr0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.216.190.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:ae:f8:33:a6:2d:e0:f9:b0:7c:d6:bd:dc:54:5a:d8:bb:46:
92:ae:60:d4:84:fa:94:c5:e4:2f:c0:41:38:04:8f:27:7b:6d:
c2:32:7c:82:e3:a6:be:a9:29:08:7b:19:8a:65:6c:31:0e:5f:
25:78:7b:21:3f:c4:63:7a:1c:f4:c9:68:2d:2d:c0:25:73:e3:
99:e6:36:56:7b:66:f9:24:9c:e8:61:7d:23:48:06:b5:b5:8c:
fa:b6:ac:e7:f5:23:0c:ed:92:c1:ec:d8:1e:f2:16:6f:bb:58:
f3:6f:0e:b6:65:ed:87:81:60:29:59:23:c2:1f:33:2f:2b:7b:
f6:49:b5:bf:55:b1:7d:89:86:fd:10:b0:32:ed:db:92:50:5b:
5c:94:f7:b0:a0:c5:75:ff:b2:ad:43:4a:2a:f0:43:e3:e0:cf:
00:37:49:b2:66:0f:7d:5a:9e:ec:ed:e7:ee:7e:4a:a6:d4:60:
d6:13:7a:5f:d5:a6:3c:d7:e0:cb:5a:b7:eb:22:51:ce:9e:02:
f8:98:8d:5b:8a:02:a5:43:07:70:5e:5c:79:8b:bf:be:0e:87:
96:f6:ba:31:0c:8d:c6:47:0d:a6:3c:e9:18:b1:7f:64:4e:d5:
53:5f:76:d3:84:69:c0:a7:e2:3d:ba:b7:06:86:12:11:68:38:
29:f0:ac:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:43 2024 by rpki-client on console-ams.rpki-client.org