Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/a2cf05-939a-401f-8407-c39853672dd7/1/pQ-ArY4QxCoRusqp0M-nr2O0ZfI.roa
File: pQ-ArY4QxCoRusqp0M-nr2O0ZfI.roa (raw, json)
Hash identifier: G+xK0FDRhKAXrNWXfTyE1lXXVxAfcfStm8m7DiCKJik=
Subject key identifier: A5:0F:80:AD:8E:10:C4:2A:11:BA:CA:A9:D0:CF:A7:AF:63:B4:65:F2
Certificate issuer: /CN=d5de6c65ecf201d9a356dfc4501337ee8d965382
Certificate serial: 0187BA0B16A487F470E90A9DCA28B6769836
Authority key identifier: D5:DE:6C:65:EC:F2:01:D9:A3:56:DF:C4:50:13:37:EE:8D:96:53:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1d5sZezyAdmjVt_EUBM37o2WU4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/a2cf05-939a-401f-8407-c39853672dd7/1/pQ-ArY4QxCoRusqp0M-nr2O0ZfI.roa
Signing time: Tue 25 Apr 2023 20:11:41 +0000
ROA not before: Tue 25 Apr 2023 20:11:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 195.225.97.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:ba:0b:16:a4:87:f4:70:e9:0a:9d:ca:28:b6:76:98:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5de6c65ecf201d9a356dfc4501337ee8d965382
Validity
Not Before: Apr 25 20:11:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a50f80ad8e10c42a11bacaa9d0cfa7af63b465f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ab:e8:b7:c1:25:96:de:52:b9:4e:8b:73:8d:
6e:a9:54:8e:76:c1:fe:39:d4:9f:ba:7e:21:0c:22:
c8:f5:3c:49:6a:99:87:cb:31:b5:f2:c6:2e:0e:61:
dd:23:50:d1:d7:cd:c3:b9:56:b5:70:55:a9:40:87:
ac:3d:4c:fd:a3:17:46:e4:56:dd:e4:20:0c:4e:04:
5a:b4:6d:70:07:30:5c:51:8b:35:35:70:b9:64:f3:
63:bc:76:8f:12:f0:79:4e:e7:49:a9:d1:79:ab:3f:
f1:15:0e:65:49:b3:a5:d3:9d:f4:74:c8:ae:98:db:
07:1d:ae:56:92:60:2a:63:14:b9:07:68:2a:95:d7:
fc:d5:da:05:15:ab:f7:7a:79:e5:a2:69:78:89:c2:
86:28:b0:83:78:9c:0a:f6:d2:94:be:af:6e:2f:19:
69:48:84:97:aa:92:72:fb:83:6e:f8:7f:e5:a8:b7:
c3:0e:3f:68:1e:a4:9c:85:1f:db:d7:1b:06:0a:74:
ad:80:42:d6:5b:1b:4a:c9:06:99:d3:76:4e:45:be:
ce:8e:6f:9a:22:8d:d3:6b:0f:0f:79:d7:67:56:a2:
4c:60:d2:3a:90:12:94:6a:ae:5a:4b:cd:1c:c5:11:
1c:18:8c:ec:69:0b:05:2d:7e:bc:5b:5f:92:0f:81:
3c:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:0F:80:AD:8E:10:C4:2A:11:BA:CA:A9:D0:CF:A7:AF:63:B4:65:F2
X509v3 Authority Key Identifier:
keyid:D5:DE:6C:65:EC:F2:01:D9:A3:56:DF:C4:50:13:37:EE:8D:96:53:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d5sZezyAdmjVt_EUBM37o2WU4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/a2cf05-939a-401f-8407-c39853672dd7/1/pQ-ArY4QxCoRusqp0M-nr2O0ZfI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/a2cf05-939a-401f-8407-c39853672dd7/1/1d5sZezyAdmjVt_EUBM37o2WU4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.225.97.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:12:93:05:2f:48:59:0a:67:9d:0f:e4:8d:d5:98:5b:a6:50:
99:af:6b:80:42:57:3f:52:45:f4:15:56:1d:9d:05:2a:80:ff:
db:49:84:2f:4e:12:76:f3:74:0a:d8:6d:1e:0a:b1:d3:0c:66:
7b:5a:db:9c:5f:de:2e:db:8d:a1:54:f5:38:1d:27:79:32:34:
80:3c:34:41:39:8d:26:42:8a:d8:cf:69:82:99:e9:89:89:a4:
b1:9a:60:f3:08:3e:64:32:78:80:cc:31:f6:23:52:f8:bd:f3:
fc:ec:e7:7b:ba:f4:d5:bc:ae:b1:0b:37:0e:81:2a:b2:a6:17:
29:77:6c:42:a5:0d:8c:3b:99:0e:93:b5:21:7f:b6:58:35:41:
21:f4:16:c5:3a:75:70:50:ce:8d:1c:7f:69:76:f6:1e:e3:74:
35:f8:69:81:19:55:61:b9:4e:4d:66:8e:b3:82:c6:1c:9e:db:
ef:47:91:26:f8:05:a8:d5:33:06:a6:38:52:79:20:56:43:9a:
ae:90:a3:9a:92:f3:18:4c:6a:9d:9e:03:fe:c0:8c:26:cc:a3:
e4:ec:28:91:ff:83:ea:cf:d8:f7:b3:c1:82:73:34:f5:d5:4f:
15:2b:73:65:9f:31:02:c6:e7:45:ae:29:f9:67:7a:2c:75:92:
c7:ee:45:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:31 2023 by rpki-client on console-ams.rpki-client.org