Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/b4f29a-a709-42ba-9632-58e4f24fabea/1/XJmmTfwsWZxCLV9WNQNVk5mknLs.roa
File: XJmmTfwsWZxCLV9WNQNVk5mknLs.roa (raw, json)
Hash identifier: z3GkBHH+93gLklP+gPWxxDf0q3mj4ucYHi6rrxhKhb8=
Subject key identifier: 5C:99:A6:4D:FC:2C:59:9C:42:2D:5F:56:35:03:55:93:99:A4:9C:BB
Certificate issuer: /CN=9ecb222b8126a21df32d015e4c4853957d1d9744
Certificate serial: 0186EFEEC2EE5DC4B293B85DBC91B5499AD9
Authority key identifier: 9E:CB:22:2B:81:26:A2:1D:F3:2D:01:5E:4C:48:53:95:7D:1D:97:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nssiK4Emoh3zLQFeTEhTlX0dl0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/b4f29a-a709-42ba-9632-58e4f24fabea/1/XJmmTfwsWZxCLV9WNQNVk5mknLs.roa
Signing time: Fri 17 Mar 2023 14:17:27 +0000
ROA not before: Fri 17 Mar 2023 14:17:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30781
IP address blocks: 195.95.135.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:32:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ef:ee:c2:ee:5d:c4:b2:93:b8:5d:bc:91:b5:49:9a:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ecb222b8126a21df32d015e4c4853957d1d9744
Validity
Not Before: Mar 17 14:17:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5c99a64dfc2c599c422d5f563503559399a49cbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:2e:41:62:08:50:39:54:c1:c5:2c:2d:b5:be:
1b:a3:8a:df:5e:18:bf:1d:2c:dd:af:a1:f2:ab:15:
ad:b9:41:1b:66:1c:fa:39:c9:5f:73:77:0d:d2:ac:
bc:62:ca:39:0e:f9:3d:96:8b:4d:27:02:5a:53:de:
91:65:69:33:cb:b1:a7:62:d3:27:39:38:6b:52:14:
02:67:8f:8b:9a:44:bd:bf:9d:b5:73:62:0b:d8:29:
65:fa:8f:21:cf:3b:aa:8c:6e:28:45:84:3d:7b:45:
2b:99:9e:13:92:7a:28:5d:62:a1:24:1a:c0:d4:56:
30:3d:ce:4f:a2:27:5c:d6:46:24:40:55:e4:71:46:
a4:e9:cc:e4:0e:0d:4b:f0:4b:18:7f:7f:21:1b:4e:
74:2e:60:07:70:d4:5f:0a:9c:67:75:c9:3f:d4:ba:
22:33:6c:86:62:29:74:82:12:dc:f7:50:1f:5f:c5:
bb:bd:96:e5:01:df:47:c7:a9:c9:e2:e0:03:d3:0d:
39:f0:5e:72:f4:59:3c:b2:b0:fb:42:ac:e7:a9:d6:
ad:b3:16:37:80:95:cd:1b:80:82:fa:18:e4:d9:b4:
e6:e4:88:b9:af:1d:38:f8:7d:ba:bf:bb:5a:a9:ef:
5d:cb:33:fe:e2:59:b9:31:ee:12:8f:f6:72:d1:f1:
29:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:99:A6:4D:FC:2C:59:9C:42:2D:5F:56:35:03:55:93:99:A4:9C:BB
X509v3 Authority Key Identifier:
keyid:9E:CB:22:2B:81:26:A2:1D:F3:2D:01:5E:4C:48:53:95:7D:1D:97:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nssiK4Emoh3zLQFeTEhTlX0dl0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/b4f29a-a709-42ba-9632-58e4f24fabea/1/XJmmTfwsWZxCLV9WNQNVk5mknLs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/b4f29a-a709-42ba-9632-58e4f24fabea/1/nssiK4Emoh3zLQFeTEhTlX0dl0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.135.0/24
Signature Algorithm: sha256WithRSAEncryption
94:67:3e:de:43:fd:b1:7e:b6:84:eb:69:f4:dd:f2:9d:25:62:
a9:8c:11:96:8c:8a:ed:4f:c5:de:73:3d:32:d0:3f:77:a2:43:
3e:0c:04:9c:1c:45:30:95:fc:ab:6c:08:88:42:56:b7:68:56:
44:94:35:a3:bf:46:30:e3:0c:3d:79:56:0c:54:f2:c7:2c:ca:
9b:4b:fe:77:25:4f:7e:e9:4b:73:b3:42:c1:c5:b2:1b:24:51:
4c:ac:34:7b:bb:56:12:a6:54:5b:47:b6:2c:37:eb:a0:d8:d6:
ba:2d:98:05:20:1c:e1:44:ab:73:b7:59:70:8b:8f:d0:a4:d0:
8a:05:a2:73:e2:cd:3a:73:d9:ab:48:92:6d:db:cc:35:b0:dc:
77:c8:c4:90:df:64:97:b8:16:ce:d9:5f:69:e4:dd:1b:28:c7:
d6:14:f1:1f:ad:9c:b3:ae:22:d8:1a:26:bd:aa:d9:0e:38:5f:
97:87:b8:3c:c5:b6:ba:ea:08:22:03:29:ec:e9:c2:ff:3b:e0:
4a:d0:2b:f4:36:12:5e:c5:22:38:9c:9d:00:b5:a8:19:40:0a:
e4:91:f8:cd:aa:92:59:77:e8:14:6c:24:b4:c3:17:22:a1:f9:
25:b5:91:38:22:e5:ab:dc:47:bf:91:00:f6:6e:65:6d:87:3c:
ab:e5:d2:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:14 2024 by rpki-client on console-ams.rpki-client.org