Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/7XGEkzTlCsXf_W21L2ZXN_0Ardo.roa
File: 7XGEkzTlCsXf_W21L2ZXN_0Ardo.roa (raw, json)
Hash identifier: r6So6cK8PP3z6WItWjAXH9jT2LrZwnBa4Yw4AH96viI=
Subject key identifier: ED:71:84:93:34:E5:0A:C5:DF:FD:6D:B5:2F:66:57:37:FD:00:AD:DA
Certificate issuer: /CN=c398060f1bf22f0999cb071b1b42696dbc43e10c
Certificate serial: 0185723A361E3CF680A023A3F98315E9972C
Authority key identifier: C3:98:06:0F:1B:F2:2F:09:99:CB:07:1B:1B:42:69:6D:BC:43:E1:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w5gGDxvyLwmZywcbG0JpbbxD4Qw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/7XGEkzTlCsXf_W21L2ZXN_0Ardo.roa
Signing time: Mon 02 Jan 2023 11:24:55 +0000
ROA not before: Mon 02 Jan 2023 11:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59542
IP address blocks: 193.173.196.0/24 maxlen: 24
145.7.49.0/24 maxlen: 24
145.7.56.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:3a:36:1e:3c:f6:80:a0:23:a3:f9:83:15:e9:97:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c398060f1bf22f0999cb071b1b42696dbc43e10c
Validity
Not Before: Jan 2 11:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ed71849334e50ac5dffd6db52f665737fd00adda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d3:d7:91:6f:30:38:2d:1a:8a:a9:f0:58:73:
bb:7e:dd:a8:74:93:9c:4b:72:6b:11:df:86:79:1f:
d3:72:ea:07:36:49:ed:37:de:64:44:31:b6:ee:66:
59:3b:df:62:98:a8:79:07:2a:bf:5f:18:ce:52:bb:
da:95:6e:88:29:07:4b:37:ce:93:ba:10:93:d6:c8:
79:dc:20:57:5c:2b:16:99:bc:43:4b:4e:03:fb:b4:
1e:07:2c:ff:2c:d1:a4:8a:84:31:ae:ff:07:6e:33:
6c:16:50:e8:dd:75:7c:47:aa:41:f8:2b:62:a3:01:
b9:af:f9:53:c8:b5:6d:aa:ab:8f:77:a6:f4:e0:3a:
96:cd:3b:de:f6:1e:e0:72:20:0f:fd:09:c8:16:1c:
e9:12:42:c6:5c:1e:c7:b2:f6:17:55:20:0a:2c:1f:
c8:73:4d:11:64:95:69:9c:cf:27:af:1e:5e:21:bb:
92:4a:73:9f:08:a5:d7:fc:df:f6:84:b2:74:a9:11:
c0:c9:5e:94:c1:31:39:5b:ac:97:b8:dc:9f:ee:5c:
31:b4:02:35:e3:f2:32:49:28:3e:7b:14:b8:a7:b9:
51:da:43:40:2c:16:6a:99:77:2b:c4:8a:ed:5a:6b:
9a:84:bd:fc:09:2f:e9:54:9b:8e:98:ab:71:60:ca:
bc:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:71:84:93:34:E5:0A:C5:DF:FD:6D:B5:2F:66:57:37:FD:00:AD:DA
X509v3 Authority Key Identifier:
keyid:C3:98:06:0F:1B:F2:2F:09:99:CB:07:1B:1B:42:69:6D:BC:43:E1:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w5gGDxvyLwmZywcbG0JpbbxD4Qw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/7XGEkzTlCsXf_W21L2ZXN_0Ardo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/w5gGDxvyLwmZywcbG0JpbbxD4Qw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.7.49.0/24
145.7.56.0/21
193.173.196.0/24
Signature Algorithm: sha256WithRSAEncryption
87:09:f8:fc:d7:35:48:21:9b:c5:1f:c9:da:6e:1c:b1:9c:68:
9a:0f:47:c0:51:3a:65:17:95:56:c1:dc:49:bb:7a:f6:47:17:
dd:98:f9:7d:c4:6c:96:d6:ab:c2:48:d3:6b:47:7f:0b:95:5b:
10:ec:27:52:c6:ba:52:5a:cb:f9:b6:b9:5e:72:d2:b3:2a:16:
a3:ae:cd:0e:43:de:21:03:a1:ba:ee:84:22:73:ca:2a:6c:46:
1a:29:a9:df:69:90:29:ba:83:eb:e8:da:26:bc:53:ca:c0:6a:
0e:bc:cd:6f:b0:de:04:ab:84:3d:b6:a4:89:fe:5b:44:26:5e:
c7:92:1a:04:9b:4a:ed:d7:64:dc:f6:ea:c8:1e:6b:d8:c8:fc:
a0:fa:2a:f9:e7:51:59:b1:7a:45:dd:59:39:28:79:19:9e:c3:
88:74:0d:3b:b6:89:25:ff:e7:24:80:7f:1d:fd:39:56:eb:54:
22:6d:7b:21:26:35:f4:bb:ab:02:2e:72:35:57:01:54:60:02:
e8:25:b2:9e:cd:5a:12:fd:ce:64:28:03:4d:86:b3:e1:65:df:
0b:ed:07:b5:ca:a2:c8:63:a6:d7:05:2c:e8:c7:55:02:67:ea:
0a:26:d2:ba:73:b7:51:27:c6:24:ad:be:b9:c7:20:4f:14:ce:
31:b2:e4:71
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYVyOjYePPaAoCOj+YMV6ZcsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzOTgwNjBmMWJmMjJmMDk5OWNiMDcxYjFiNDI2OTZkYmM0
M2UxMGMwHhcNMjMwMTAyMTEyNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZDcxODQ5MzM0ZTUwYWM1ZGZmZDZkYjUyZjY2NTczN2ZkMDBhZGRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzNPXkW8wOC0aiqnwWHO7ft2odJOc
S3JrEd+GeR/TcuoHNkntN95kRDG27mZZO99imKh5Byq/XxjOUrvalW6IKQdLN86T
uhCT1sh53CBXXCsWmbxDS04D+7QeByz/LNGkioQxrv8HbjNsFlDo3XV8R6pB+Cti
owG5r/lTyLVtqquPd6b04DqWzTve9h7gciAP/QnIFhzpEkLGXB7HsvYXVSAKLB/I
c00RZJVpnM8nrx5eIbuSSnOfCKXX/N/2hLJ0qRHAyV6UwTE5W6yXuNyf7lwxtAI1
4/IySSg+exS4p7lR2kNALBZqmXcrxIrtWmuahL38CS/pVJuOmKtxYMq8zwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFO1xhJM05QrF3/1ttS9mVzf9AK3aMB8GA1UdIwQY
MBaAFMOYBg8b8i8JmcsHGxtCaW28Q+EMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzVnR0R4dnlMd21aeXdjYkcwSnBiYnhENFF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC8zYmZjMzEtZGMzMi00NTQxLTg0NjAt
YzkyN2I4YzJjN2M0LzEvN1hHRWt6VGxDc1hmX1cyMUwyWlhOXzBBcmRvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC8zYmZjMzEtZGMzMi00NTQxLTg0NjAtYzkyN2I4YzJjN2M0
LzEvdzVnR0R4dnlMd21aeXdjYkcwSnBiYnhENFF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAkQcxAwQD
kQc4AwQAwa3EMA0GCSqGSIb3DQEBCwUAA4IBAQCHCfj81zVIIZvFH8nabhyxnGia
D0fAUTplF5VWwdxJu3r2RxfdmPl9xGyW1qvCSNNrR38LlVsQ7CdSxrpSWsv5trle
ctKzKhajrs0OQ94hA6G67oQic8oqbEYaKanfaZApuoPr6NomvFPKwGoOvM1vsN4E
q4Q9tqSJ/ltEJl7HkhoEm0rt12Tc9urIHmvYyPyg+ir551FZsXpF3Vk5KHkZnsOI
dA07tokl/+ckgH8d/TlW61QibXshJjX0u6sCLnI1VwFUYALoJbKezVoS/c5kKANN
hrPhZd8L7Qe1yqLIY6bXBSzox1UCZ+oKJtK6c7dRJ8Ykrb65xyBPFM4xsuRx
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:51 2024 by rpki-client on console-ams.rpki-client.org