Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/oFo4fxOwaiVfLv_5OWYUVZbq-yY.roa
File: oFo4fxOwaiVfLv_5OWYUVZbq-yY.roa (raw, json)
Hash identifier: RidI39IygRA2soEibGVdiJ8BvtihRCFx4SzlNlTaeAY=
Subject key identifier: A0:5A:38:7F:13:B0:6A:25:5F:2E:FF:F9:39:66:14:55:96:EA:FB:26
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 0185720C40425449B6AD8E41AEA6C38D52C7
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/oFo4fxOwaiVfLv_5OWYUVZbq-yY.roa
Signing time: Mon 02 Jan 2023 10:34:43 +0000
ROA not before: Mon 02 Jan 2023 10:34:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 5.181.200.0/24 maxlen: 24
195.88.213.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:40:42:54:49:b6:ad:8e:41:ae:a6:c3:8d:52:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Jan 2 10:34:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a05a387f13b06a255f2efff93966145596eafb26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:1f:b9:26:e9:f4:9f:a5:db:d8:50:64:22:22:
6b:72:a3:03:0f:57:a6:88:6d:56:ea:0a:2c:b6:0f:
fb:b6:e2:06:37:31:8a:8a:d0:f2:ba:50:ac:00:c7:
83:1c:3f:58:1f:3c:12:27:d4:83:b0:9f:d1:46:95:
f9:be:76:9e:e9:b7:54:4e:dd:99:b5:09:c9:1d:6b:
eb:8f:f5:f6:d4:b1:ce:f7:91:35:9a:b2:28:47:87:
5e:de:41:b6:29:25:65:be:59:08:af:2d:5f:8a:d4:
90:79:2a:22:de:26:4b:42:b3:e9:93:e8:1f:a5:b3:
db:4d:e2:8c:7f:46:c8:f1:48:bc:b3:d6:1a:61:b8:
8e:cd:d2:51:60:c4:8a:5e:9b:39:36:bc:09:e9:55:
1b:49:c4:1f:0d:44:19:17:ad:be:c8:04:0e:93:cd:
36:5f:b1:f2:59:0b:7b:c2:58:8b:81:a1:a7:ce:60:
80:ed:95:cb:34:93:b4:4c:a7:bb:ac:f5:49:b0:6a:
ca:a6:41:cf:39:28:26:b2:f1:02:2f:ed:aa:ef:95:
e5:d7:be:21:ab:b9:29:4a:df:76:d0:e2:b3:ab:a6:
da:00:16:cc:98:94:c1:60:9d:ce:e3:0d:0d:0c:20:
a2:b7:1c:6b:d4:3c:22:66:38:68:42:1e:67:ba:54:
95:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:5A:38:7F:13:B0:6A:25:5F:2E:FF:F9:39:66:14:55:96:EA:FB:26
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/oFo4fxOwaiVfLv_5OWYUVZbq-yY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.200.0/24
195.88.213.0/24
Signature Algorithm: sha256WithRSAEncryption
35:d5:0a:08:1f:8f:85:17:c8:bf:83:9a:fc:b9:70:a1:4a:38:
39:91:25:61:75:a4:27:a1:a3:5d:67:78:04:d8:e8:d1:97:26:
dc:8a:bf:15:cb:c9:fc:63:d5:f6:d5:2e:38:2a:4d:61:79:7b:
25:f3:e4:b9:05:b8:e6:57:f5:77:ff:de:0c:8a:8d:2e:9d:85:
90:65:f1:27:93:07:0b:7e:52:34:cf:2b:ff:4d:53:7c:8b:4e:
b4:bb:42:8c:5a:e2:3e:b7:43:95:98:9f:00:f1:64:a6:a1:a9:
b4:45:12:87:ed:08:aa:6f:e1:ec:83:00:8b:45:9c:9d:b6:e5:
c9:bd:40:0f:f3:14:a0:57:2a:e3:ba:84:c7:0f:6d:cc:49:82:
5d:a9:e2:99:c3:13:dc:3a:73:d4:37:9f:09:56:26:d8:5e:0c:
5a:9a:e7:8e:22:56:b3:77:34:c4:a5:91:6f:d3:27:54:d5:c6:
ee:dd:a7:d0:b8:1a:10:bc:06:b4:c6:51:c8:6c:ee:b9:a8:4f:
2a:3e:bd:ea:aa:2b:c2:79:30:2e:b2:16:f4:5c:07:b2:3e:47:
2f:e1:9f:9d:39:67:8e:02:ff:b3:29:3e:3a:e8:8b:c3:3e:9e:
0e:93:2a:6e:9c:48:ac:05:f7:36:15:e4:50:1d:6a:d4:03:60:
07:05:12:07
-----BEGIN CERTIFICATE-----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Generated at Fri Aug 4 04:36:28 2023 by rpki-client on console-fra.rpki-client.org