Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/3a45ed-b0b8-4a16-9eec-223f5220a7d3/1/5Xj0MNOYnWn5RaMr0nyYdSerOZk.roa
File: 5Xj0MNOYnWn5RaMr0nyYdSerOZk.roa (raw, json)
Hash identifier: MS+zPIpesL4IkVJHeKfrmbnhlTJCLcShx9sSmGsveeI=
Subject key identifier: E5:78:F4:30:D3:98:9D:69:F9:45:A3:2B:D2:7C:98:75:27:AB:39:99
Certificate issuer: /CN=b76115d13a586ada3d9cc5df9ae03e5bab4f4dc0
Certificate serial: 01856B2E795DE6769BDE70364DA6F350FEB2
Authority key identifier: B7:61:15:D1:3A:58:6A:DA:3D:9C:C5:DF:9A:E0:3E:5B:AB:4F:4D:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t2EV0TpYato9nMXfmuA-W6tPTcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/3a45ed-b0b8-4a16-9eec-223f5220a7d3/1/5Xj0MNOYnWn5RaMr0nyYdSerOZk.roa
Signing time: Sun 01 Jan 2023 02:34:45 +0000
ROA not before: Sun 01 Jan 2023 02:34:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24971
IP address blocks: 195.140.252.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:2e:79:5d:e6:76:9b:de:70:36:4d:a6:f3:50:fe:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b76115d13a586ada3d9cc5df9ae03e5bab4f4dc0
Validity
Not Before: Jan 1 02:34:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e578f430d3989d69f945a32bd27c987527ab3999
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:0f:e0:cd:d4:dd:e7:d8:e3:7e:3d:3c:55:07:
48:73:f0:f6:f4:f1:5b:d1:93:ae:35:23:88:a4:14:
19:ce:a7:6d:92:75:b5:ed:c5:31:8c:97:17:c9:4c:
35:b4:9f:2a:af:1a:a6:0c:bd:34:ee:72:17:1d:91:
2a:b6:84:ab:bc:02:2e:18:43:0d:a1:da:5a:61:9e:
fd:7d:6d:96:bf:c5:f7:6c:51:89:60:09:e0:17:83:
55:b5:e3:e8:d5:73:a4:35:90:de:fe:db:a3:db:79:
78:cd:70:8b:28:ef:ea:a8:a0:93:87:5e:c1:0d:9f:
6d:70:b4:bf:da:41:04:71:41:9b:95:ae:d4:f9:98:
ee:1b:57:0c:20:0d:9e:ab:e2:cb:46:00:fe:02:f8:
48:45:fc:d9:51:05:51:6a:af:df:63:c3:9f:2e:a6:
79:19:d1:3b:62:ea:d8:ea:a6:c6:c1:56:db:70:3f:
5b:58:f0:54:19:3e:51:0f:f9:f2:a9:cf:5c:0e:af:
6e:e5:4a:27:0f:c9:66:80:cb:82:a8:eb:c0:bb:15:
18:6a:9b:3a:ba:93:a6:8a:01:7e:43:17:df:1b:b3:
ed:8b:a5:21:88:e1:c7:e6:90:d3:38:8e:a4:8f:93:
bc:5b:11:d1:e0:66:03:45:57:02:18:bf:4f:4e:e8:
20:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:78:F4:30:D3:98:9D:69:F9:45:A3:2B:D2:7C:98:75:27:AB:39:99
X509v3 Authority Key Identifier:
keyid:B7:61:15:D1:3A:58:6A:DA:3D:9C:C5:DF:9A:E0:3E:5B:AB:4F:4D:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t2EV0TpYato9nMXfmuA-W6tPTcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/3a45ed-b0b8-4a16-9eec-223f5220a7d3/1/5Xj0MNOYnWn5RaMr0nyYdSerOZk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/3a45ed-b0b8-4a16-9eec-223f5220a7d3/1/t2EV0TpYato9nMXfmuA-W6tPTcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.140.252.0/22
Signature Algorithm: sha256WithRSAEncryption
31:2d:42:a7:bc:8a:16:14:56:a0:ca:cd:cc:e4:e2:a3:f3:6b:
c1:7d:90:fd:a6:e0:97:a0:2f:b0:b5:fe:2d:2d:a6:5d:44:06:
7a:ad:5a:20:8e:9d:2d:56:62:36:68:dc:59:2a:38:70:4d:ce:
b4:f9:86:9b:79:d1:37:10:04:4b:0a:5e:ff:4f:f8:6d:2d:b5:
84:7b:66:f1:d7:30:e5:b0:e5:25:da:3c:44:3f:07:a3:dd:3d:
bd:2f:ee:6f:fd:3f:b0:a8:94:4b:65:96:8d:e7:3d:ac:37:a1:
93:51:53:37:fc:39:f2:c9:af:5e:55:db:f9:0c:d0:1f:3a:ef:
bb:84:d9:59:e8:de:dd:6b:62:ce:3e:33:a5:54:b7:84:72:93:
d0:d7:58:c3:1e:a7:cd:55:51:ae:c2:3b:2a:73:6a:24:80:85:
57:b5:69:eb:4e:95:8a:77:18:64:31:5c:0b:02:66:78:43:24:
71:c7:09:83:c1:28:79:62:ee:df:03:38:6d:34:ac:36:35:8c:
d9:37:16:45:36:3d:c2:0e:c4:9f:7a:a7:ef:36:03:31:2b:70:
37:72:57:30:65:a3:d2:6d:ce:5f:60:81:36:96:84:77:08:49:
0e:71:0c:b1:c8:9a:75:a3:36:b5:96:e9:44:0b:a6:f5:b1:b1:
78:0f:33:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:41 2024 by rpki-client on console-ams.rpki-client.org