Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/3SwTfCyTDyOTDbWdyy_NLsoiO9g.roa
File: 3SwTfCyTDyOTDbWdyy_NLsoiO9g.roa (raw, json)
Hash identifier: pIdJfC7ylZXUrgekxQ7VyxRdBDycud1fD3ll9yDtxI0=
Subject key identifier: DD:2C:13:7C:2C:93:0F:23:93:0D:B5:9D:CB:2F:CD:2E:CA:22:3B:D8
Certificate issuer: /CN=58ad60da52671e9083cf39864eca2aa23241be9e
Certificate serial: 018BC98DD5D7751F883DB158C2ED01D0BCD6
Authority key identifier: 58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/3SwTfCyTDyOTDbWdyy_NLsoiO9g.roa
Signing time: Mon 13 Nov 2023 16:39:57 +0000
ROA not before: Mon 13 Nov 2023 16:39:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44092
IP address blocks: 195.96.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:c9:8d:d5:d7:75:1f:88:3d:b1:58:c2:ed:01:d0:bc:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58ad60da52671e9083cf39864eca2aa23241be9e
Validity
Not Before: Nov 13 16:39:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dd2c137c2c930f23930db59dcb2fcd2eca223bd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:0e:34:20:ec:a3:48:80:66:74:92:27:a5:7b:
83:f7:f2:2e:6b:89:da:48:82:d1:3e:81:d4:a1:0e:
36:56:17:14:d7:23:a9:9c:d5:0f:4d:8a:2d:f8:b7:
26:8d:6a:6b:b5:fa:91:36:19:10:38:df:0d:85:49:
9b:ea:76:94:3b:1d:05:75:d5:65:72:b4:ad:61:b6:
9b:2f:61:3e:7e:dc:29:a3:a3:e8:17:54:16:7f:10:
af:1f:5c:71:d3:dd:a8:51:36:e0:97:f9:b5:0d:5e:
21:f0:52:51:95:fd:78:f5:88:8a:44:8b:2e:00:17:
30:c2:87:e5:d4:c9:57:0c:f6:a5:c3:c6:ff:22:d7:
3e:20:c9:22:06:86:e3:cb:eb:d5:28:32:3e:2e:b1:
5f:3e:74:9d:26:89:71:02:dc:a4:5c:59:90:ad:77:
c3:48:e4:e2:38:d2:ec:71:9d:26:d5:d8:23:1c:72:
0d:12:37:b5:d4:16:ef:74:a6:3c:1a:01:f3:d6:31:
98:ff:19:8e:6a:6c:f7:f3:49:63:6f:a8:98:2f:c0:
ad:34:31:39:8d:70:0a:42:b5:ce:3b:70:b7:0c:55:
7c:e6:3e:ab:3f:da:37:4a:8a:8b:a0:53:14:7f:5d:
3a:a0:e1:54:f8:d6:1a:31:9d:7b:58:29:1b:61:bb:
7c:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:2C:13:7C:2C:93:0F:23:93:0D:B5:9D:CB:2F:CD:2E:CA:22:3B:D8
X509v3 Authority Key Identifier:
keyid:58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/3SwTfCyTDyOTDbWdyy_NLsoiO9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.129.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:ec:d8:7b:04:19:02:2c:41:23:db:41:c3:80:4e:cb:77:53:
e6:db:64:c8:dd:4a:ab:34:9a:54:93:d0:5c:fa:5c:c6:49:08:
21:3b:f1:4c:8e:4a:f5:22:65:5d:af:9e:da:e4:f6:06:03:63:
88:f7:dd:7d:ff:84:e7:75:b3:7f:7b:a9:51:5a:80:37:56:c9:
24:19:92:2d:30:84:03:2f:30:8d:67:d2:e0:37:57:b7:63:d1:
c7:73:bc:9a:32:a1:42:c0:be:f6:ff:8b:37:91:ef:f1:d0:8c:
2e:a3:73:a6:0c:65:d7:0f:c7:4d:18:fd:53:cb:f8:c2:ff:0c:
80:8b:2c:6b:5e:66:f5:57:42:e4:7a:cc:67:6f:e8:1c:0b:e9:
a0:f7:1c:15:23:66:fc:da:77:82:8a:1b:d7:83:72:da:53:0c:
ef:2d:ed:60:a7:0f:e0:30:66:8d:a2:67:b4:91:0f:cc:92:85:
6c:7e:75:ef:87:08:44:4f:b7:2a:4d:be:a5:31:a5:6f:a9:3d:
37:44:21:6b:a6:7b:92:2b:ab:55:c6:50:0e:15:8d:7e:cf:4d:
73:56:ad:84:9e:c7:a8:a3:c7:09:aa:3b:f3:f1:8b:61:0b:ed:
9b:03:50:5e:d6:48:4d:22:8b:c8:89:f5:9f:0b:a5:36:4d:f3:
e6:86:7e:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:07 2024 by rpki-client on console-ams.rpki-client.org