Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/f089b2-ddee-4262-9eaa-5ddcbf511e22/1/Lxa-druxdFwEzmGZfii7bjcCpMg.roa
File: Lxa-druxdFwEzmGZfii7bjcCpMg.roa (raw, json)
Hash identifier: i1hO0aC3amtAR5y18pMiP033os77k2Sxm0EHoKdjAr8=
Subject key identifier: 2F:16:BE:76:BB:B1:74:5C:04:CE:61:99:7E:28:BB:6E:37:02:A4:C8
Certificate issuer: /CN=bf08490ee29b3b3c293bdd7322b5a33ad840d801
Certificate serial: 018570674BD9AD56617451CFCE800905BAAA
Authority key identifier: BF:08:49:0E:E2:9B:3B:3C:29:3B:DD:73:22:B5:A3:3A:D8:40:D8:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vwhJDuKbOzwpO91zIrWjOthA2AE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/f089b2-ddee-4262-9eaa-5ddcbf511e22/1/Lxa-druxdFwEzmGZfii7bjcCpMg.roa
Signing time: Mon 02 Jan 2023 02:54:55 +0000
ROA not before: Mon 02 Jan 2023 02:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6830
IP address blocks: 195.254.164.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:4b:d9:ad:56:61:74:51:cf:ce:80:09:05:ba:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf08490ee29b3b3c293bdd7322b5a33ad840d801
Validity
Not Before: Jan 2 02:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2f16be76bbb1745c04ce61997e28bb6e3702a4c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:98:3d:d9:3a:7c:da:1b:73:ab:ec:d7:4f:da:
37:b6:f4:13:fa:8d:5b:10:19:7b:d9:98:fa:7f:e3:
71:1b:c1:a5:19:02:57:91:71:1a:7a:60:ec:26:4c:
d8:63:7a:69:b2:d9:5e:ea:92:d2:88:c9:70:f6:1e:
26:6a:f6:ac:51:92:a3:f5:73:f7:70:9c:0a:4a:6c:
ea:4a:cf:4b:ca:99:aa:d9:d5:63:4e:9f:f0:51:88:
f2:8b:37:a3:eb:3e:5f:95:09:3c:b9:6d:b1:c5:b7:
4f:da:3b:79:3d:e9:4f:08:4e:19:0e:80:ce:d1:34:
d8:84:c8:41:a1:36:34:d0:40:89:f8:06:2e:bc:2a:
b9:d6:a4:67:f7:10:95:f6:7d:69:c5:6b:44:f3:01:
f9:67:5b:26:18:f6:4b:13:f8:6b:16:6f:ef:d3:0d:
e0:9d:fd:42:06:02:7a:c9:5a:d8:2d:ec:3b:47:b4:
da:f5:c5:19:9c:ed:aa:69:a5:a7:d2:51:e1:ed:9a:
d4:35:61:51:6c:91:cc:83:30:0a:4d:bd:e8:40:48:
bd:67:b1:db:e3:68:ca:d1:b0:5c:c3:c0:10:07:5a:
76:e1:05:56:f0:70:8c:83:99:88:ec:ff:2c:d8:26:
1a:d0:02:e0:93:d8:26:5a:e1:31:a9:56:e9:75:f5:
6f:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:16:BE:76:BB:B1:74:5C:04:CE:61:99:7E:28:BB:6E:37:02:A4:C8
X509v3 Authority Key Identifier:
keyid:BF:08:49:0E:E2:9B:3B:3C:29:3B:DD:73:22:B5:A3:3A:D8:40:D8:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vwhJDuKbOzwpO91zIrWjOthA2AE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/f089b2-ddee-4262-9eaa-5ddcbf511e22/1/Lxa-druxdFwEzmGZfii7bjcCpMg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/f089b2-ddee-4262-9eaa-5ddcbf511e22/1/vwhJDuKbOzwpO91zIrWjOthA2AE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.254.164.0/24
Signature Algorithm: sha256WithRSAEncryption
48:34:df:44:ca:2f:25:b7:59:ac:a7:f7:76:7f:65:b8:3b:e3:
38:86:5b:52:fd:7b:d5:82:52:dc:9e:45:74:ce:fe:77:b9:b5:
72:11:3c:e2:26:1b:93:19:74:1f:72:9c:76:26:2e:9a:53:e6:
49:42:a3:66:c5:5b:57:97:51:c0:83:86:49:3c:64:a8:d1:82:
de:f9:9e:7e:34:21:f6:f4:16:21:8a:e7:59:22:18:3e:b9:97:
e1:2b:eb:56:81:20:ed:e5:2a:4a:82:c9:70:bf:bc:3e:38:b9:
7c:0b:e9:ea:be:c0:dc:ea:ff:bc:66:cd:ab:80:83:3d:a5:04:
50:03:8b:b1:7b:c2:f9:32:f9:e6:f2:cd:54:f5:7d:21:7c:84:
23:da:b0:f1:73:0c:db:bc:00:4d:0c:a6:2f:fc:bf:da:36:d2:
c0:a1:28:4a:91:93:9f:8e:43:69:7c:c6:dd:bc:2d:5a:f9:01:
18:b5:1a:3c:ad:eb:fa:1e:ab:6e:ed:1c:fd:ab:9c:15:73:e0:
68:1a:5e:00:dc:f4:0a:38:55:55:76:20:d1:ac:55:40:da:0f:
db:1d:16:4d:ed:0a:de:b4:f5:ce:aa:18:ff:75:7b:f4:31:4a:
9d:cc:53:17:01:72:1f:b0:98:ff:47:39:ec:d1:15:bd:67:1c:
5c:84:51:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:31 2023 by rpki-client on console-ams.rpki-client.org