Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/5Skkql0vvzp49QKsOL2Jen-31EM.roa
File: 5Skkql0vvzp49QKsOL2Jen-31EM.roa (raw, json)
Hash identifier: ipIKTzATwqU0X2FFfzw4U0KNg+WfuXjIgj9IDwGYqlI=
Subject key identifier: E5:29:24:AA:5D:2F:BF:3A:78:F5:02:AC:38:BD:89:7A:7F:B7:D4:43
Certificate issuer: /CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Certificate serial: 01856F5DC61C229A6B8A22F218AA2260F1AA
Authority key identifier: 87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/5Skkql0vvzp49QKsOL2Jen-31EM.roa
Signing time: Sun 01 Jan 2023 22:04:54 +0000
ROA not before: Sun 01 Jan 2023 22:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15824
IP address blocks: 195.3.108.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:c6:1c:22:9a:6b:8a:22:f2:18:aa:22:60:f1:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Validity
Not Before: Jan 1 22:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e52924aa5d2fbf3a78f502ac38bd897a7fb7d443
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:61:eb:24:b0:02:70:93:41:5e:f4:c7:7f:ff:
a8:31:e2:f2:60:de:2a:00:31:43:42:b9:72:e2:b5:
a9:f8:66:5c:f8:ea:dd:55:5e:a6:2b:70:b3:bc:e4:
37:42:91:17:37:88:b3:14:a7:57:ae:5b:5f:90:4d:
04:34:d4:63:44:f1:8b:f3:98:ed:da:77:2a:68:e3:
5a:36:47:c3:b6:dc:5d:1d:d2:00:76:81:92:64:44:
de:51:2a:60:56:05:0e:e9:46:2a:24:a2:a4:7c:9e:
e2:47:d3:b3:48:a6:4f:96:76:f9:86:35:55:b4:66:
9e:22:a3:a2:52:5b:51:55:04:c7:f3:c1:6b:3f:0e:
58:9e:b4:bd:4e:ad:e2:0a:74:d1:db:8e:be:d1:a1:
f7:26:1a:30:d6:04:8a:38:1d:ea:da:e7:60:00:87:
f3:ad:14:1b:22:d6:ac:87:ce:a5:b8:19:b1:99:cc:
2b:26:4a:26:b9:a8:9e:87:4e:15:d4:4b:13:ef:ce:
a1:c3:81:18:e8:10:14:fb:eb:96:13:73:e7:f5:dc:
ed:c5:2f:74:d5:87:22:4a:1a:53:c6:a5:a9:bd:3e:
89:8d:2d:3b:14:96:1f:63:e8:a5:c9:d0:3e:26:ac:
2f:42:f5:0c:25:fe:e4:31:45:45:aa:45:be:d4:ed:
8d:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:29:24:AA:5D:2F:BF:3A:78:F5:02:AC:38:BD:89:7A:7F:B7:D4:43
X509v3 Authority Key Identifier:
keyid:87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/5Skkql0vvzp49QKsOL2Jen-31EM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.3.108.0/23
Signature Algorithm: sha256WithRSAEncryption
51:e0:dc:5d:db:47:4f:1a:a7:7f:40:51:48:98:4c:1b:6f:72:
a8:2c:8a:c9:ba:19:e0:3a:64:81:2d:84:7a:88:de:35:d9:71:
d7:73:d8:e0:92:79:18:7c:60:59:e6:69:8c:12:b0:5b:f4:5c:
32:7a:0e:8c:89:88:23:73:35:26:27:03:b8:44:3d:1c:e0:24:
bf:e4:06:6c:66:46:0c:f3:e9:a2:d4:86:90:af:65:5a:78:74:
e7:91:df:a9:1c:d2:af:b7:ac:80:0a:1e:74:f1:17:7e:60:01:
88:48:37:16:bb:fd:f4:b8:a9:8e:42:61:66:2c:69:35:9b:10:
e9:a1:1f:08:92:47:71:05:35:d6:1b:2f:8e:68:fa:c3:29:7d:
2b:72:17:01:d9:9d:a6:f0:ab:8f:50:a7:7e:08:20:01:0b:4e:
93:60:34:bf:1d:2b:d2:8a:7c:77:4f:50:02:a9:56:97:87:77:
05:6b:a8:05:0c:b5:65:b1:2b:8e:ff:2c:b2:d1:14:e5:9d:f7:
70:29:03:16:b7:d7:12:73:35:76:04:b2:96:f5:c2:43:ca:f3:
c7:75:5c:b0:b5:76:a4:90:57:08:52:96:ee:a1:a9:cc:7f:92:
15:fe:9a:da:df:a8:71:42:7a:d0:86:1b:63:ee:1b:0c:60:8b:
83:97:91:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:16 2024 by rpki-client on console-ams.rpki-client.org