Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/e8fc9a-3b92-4798-8cfd-c6bdb1830694/1/SX_rUqOYFMW7koUDTkfd1Bn8PK4.roa
File: SX_rUqOYFMW7koUDTkfd1Bn8PK4.roa (raw, json)
Hash identifier: Lm3XGl85364wvifnyC9jqeUHS61ijRUHaksxT1EAgDw=
Subject key identifier: 49:7F:EB:52:A3:98:14:C5:BB:92:85:03:4E:47:DD:D4:19:FC:3C:AE
Certificate issuer: /CN=5032f297789a194a8b507805f35d42ee78c0d4c3
Certificate serial: 018571B9E52B2FC0A9E1DBCDE5DBA80D84F3
Authority key identifier: 50:32:F2:97:78:9A:19:4A:8B:50:78:05:F3:5D:42:EE:78:C0:D4:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UDLyl3iaGUqLUHgF811C7njA1MM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/e8fc9a-3b92-4798-8cfd-c6bdb1830694/1/SX_rUqOYFMW7koUDTkfd1Bn8PK4.roa
Signing time: Mon 02 Jan 2023 09:04:46 +0000
ROA not before: Mon 02 Jan 2023 09:04:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41037
IP address blocks: 195.95.174.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b9:e5:2b:2f:c0:a9:e1:db:cd:e5:db:a8:0d:84:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5032f297789a194a8b507805f35d42ee78c0d4c3
Validity
Not Before: Jan 2 09:04:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=497feb52a39814c5bb9285034e47ddd419fc3cae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:de:dd:85:b8:71:9c:3c:60:43:f4:6f:68:8b:
83:b5:96:e8:96:02:3c:ee:45:65:b8:df:77:90:e6:
47:79:b1:54:e6:a9:19:a4:2a:d9:d2:4c:f5:ee:ed:
c1:86:59:f7:33:0e:1a:db:db:fb:6d:50:9d:fe:af:
d9:21:00:a8:7c:ff:f1:94:f2:49:28:a2:f7:bb:dd:
66:1b:fd:50:31:5d:02:dc:ef:e4:bc:c5:f5:2a:cf:
e7:5e:0d:da:38:97:24:39:d1:fb:ef:25:38:e9:f3:
e1:62:62:d1:26:e8:75:3c:b1:11:e0:98:5c:42:ac:
eb:ca:2e:2a:de:de:c9:f0:4a:81:0f:ef:72:32:d2:
99:dc:7b:cc:f8:0a:03:d2:0e:df:8a:ed:4c:b3:7d:
80:03:76:cc:6a:5a:1d:d9:51:29:95:b3:9b:f3:93:
f4:93:87:7c:41:7f:39:1d:6a:0a:38:ed:ba:1a:f1:
2a:79:5f:7e:25:42:09:e2:54:71:e5:17:7b:ab:0a:
0c:52:56:c2:e7:1e:9c:95:c1:0e:b5:fa:13:07:c5:
96:d6:38:c8:e9:7b:42:e8:4d:13:a1:c5:ae:af:a1:
11:40:6b:e7:39:de:62:db:10:32:a4:cc:6e:cd:77:
30:c7:68:09:5f:6b:96:58:88:91:52:21:2e:6d:e8:
7c:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:7F:EB:52:A3:98:14:C5:BB:92:85:03:4E:47:DD:D4:19:FC:3C:AE
X509v3 Authority Key Identifier:
keyid:50:32:F2:97:78:9A:19:4A:8B:50:78:05:F3:5D:42:EE:78:C0:D4:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UDLyl3iaGUqLUHgF811C7njA1MM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/e8fc9a-3b92-4798-8cfd-c6bdb1830694/1/SX_rUqOYFMW7koUDTkfd1Bn8PK4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/e8fc9a-3b92-4798-8cfd-c6bdb1830694/1/UDLyl3iaGUqLUHgF811C7njA1MM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.174.0/24
Signature Algorithm: sha256WithRSAEncryption
59:0e:94:e5:ad:1d:99:04:92:f8:3b:ac:0f:49:d6:6c:01:81:
25:d9:d5:11:17:04:57:32:07:56:79:98:3d:df:cd:6f:4b:5d:
0a:8d:92:79:fc:80:1f:cb:16:1b:41:1a:57:92:68:e3:09:fb:
8e:a2:9b:d9:81:c8:34:27:50:6a:e4:59:88:87:78:25:ac:f6:
96:ae:0a:1b:35:33:ba:63:f9:29:85:e8:38:09:49:97:ba:bf:
cf:5b:cc:f6:67:4f:59:11:14:bc:48:cc:cd:c0:88:1c:09:72:
c7:bd:c0:1e:ed:3e:f1:31:40:c2:47:b2:08:60:6e:65:91:8e:
0b:49:07:bd:a8:ad:d4:ee:92:a5:2f:2d:b5:73:36:30:49:db:
05:ba:bc:ea:22:56:e7:44:75:c1:0e:32:f1:18:dc:1f:31:13:
f8:0b:56:87:a5:10:c2:81:d6:27:41:7e:02:a4:7e:e1:4f:8b:
c2:c1:20:6a:13:a8:68:03:61:12:fc:3e:d0:d7:a6:dd:d5:da:
d9:1a:4c:a1:47:56:79:6a:5d:00:0c:bf:0d:0f:a2:06:7d:f4:
a6:74:19:37:7c:b9:f7:b5:d1:21:47:28:c8:46:5b:23:9b:8f:
5f:ef:36:28:31:58:f4:ae:7e:07:0a:24:21:c7:a6:80:4d:7c:
6d:06:96:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:14 2024 by rpki-client on console-fra.rpki-client.org