Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/e0cf43-e4c0-46f7-bde8-16fd5ba4f0e4/1/07ZkUxCSj2U5BS0TiWaubkWqIoc.roa
File: 07ZkUxCSj2U5BS0TiWaubkWqIoc.roa (raw, json)
Hash identifier: H9m4sz7BuB2LuASTlBsoTOybDKcIco2pDkrPrf2aEqU=
Subject key identifier: D3:B6:64:53:10:92:8F:65:39:05:2D:13:89:66:AE:6E:45:AA:22:87
Certificate issuer: /CN=495e500149ce8d71b9604b589e0c32fea07a98b8
Certificate serial: 018ED0E7F855A56CF6F0C0F9CFE899E0F428
Authority key identifier: 49:5E:50:01:49:CE:8D:71:B9:60:4B:58:9E:0C:32:FE:A0:7A:98:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SV5QAUnOjXG5YEtYngwy_qB6mLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/e0cf43-e4c0-46f7-bde8-16fd5ba4f0e4/1/07ZkUxCSj2U5BS0TiWaubkWqIoc.roa
Signing time: Fri 12 Apr 2024 06:04:07 +0000
ROA not before: Fri 12 Apr 2024 06:04:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 195.182.25.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 20 Apr 2024 08:11:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:d0:e7:f8:55:a5:6c:f6:f0:c0:f9:cf:e8:99:e0:f4:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=495e500149ce8d71b9604b589e0c32fea07a98b8
Validity
Not Before: Apr 12 06:04:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d3b6645310928f6539052d138966ae6e45aa2287
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:09:04:a4:b9:02:23:e8:a4:c3:dc:85:44:a6:
9f:87:f4:c3:d8:cf:fe:aa:bd:42:03:20:58:5d:be:
0a:ac:89:29:52:9c:06:50:17:a9:4d:79:c1:16:20:
f8:fa:12:a2:a6:63:1c:03:e5:5c:ce:a1:f9:07:22:
fd:d0:49:0d:ae:df:b5:64:7e:2e:35:fa:3f:6b:db:
77:12:03:ae:fd:ad:6a:62:1f:12:c2:6b:f6:2a:75:
bc:6b:aa:d8:44:39:92:09:f0:ed:cc:93:0f:8e:1e:
25:ce:00:a1:0f:66:fc:d4:a2:21:aa:c0:ac:ef:da:
57:8b:23:33:b6:4d:cd:f0:32:c1:33:28:d3:7d:03:
ec:21:e5:a6:18:7b:27:25:64:bb:6a:ee:27:98:98:
8d:af:10:c6:0a:ad:d3:ef:31:d2:e9:06:3b:f7:84:
f9:d9:67:5f:e7:f6:f2:ff:c8:83:9e:53:d5:55:8b:
90:b8:b6:6e:11:89:67:da:e5:a6:e0:0f:66:67:a7:
ce:3e:e0:fe:13:57:33:17:ab:16:e2:96:0e:d1:da:
3d:0c:05:0a:a2:b5:c6:c6:ec:26:ad:42:9d:f4:ca:
15:68:12:e5:97:55:ac:22:9e:0e:b2:f3:60:c1:dd:
aa:33:f7:7a:28:ec:3f:7d:72:67:2b:21:51:47:41:
de:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:B6:64:53:10:92:8F:65:39:05:2D:13:89:66:AE:6E:45:AA:22:87
X509v3 Authority Key Identifier:
keyid:49:5E:50:01:49:CE:8D:71:B9:60:4B:58:9E:0C:32:FE:A0:7A:98:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SV5QAUnOjXG5YEtYngwy_qB6mLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/e0cf43-e4c0-46f7-bde8-16fd5ba4f0e4/1/07ZkUxCSj2U5BS0TiWaubkWqIoc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/e0cf43-e4c0-46f7-bde8-16fd5ba4f0e4/1/SV5QAUnOjXG5YEtYngwy_qB6mLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.182.25.0/24
Signature Algorithm: sha256WithRSAEncryption
54:42:37:cb:d1:cc:1f:c4:f2:68:43:8f:b7:8a:63:9b:02:88:
4f:55:d0:d8:1e:e3:fe:34:d0:88:38:93:f5:a8:70:3e:34:3a:
7a:b1:3d:33:d8:22:74:35:ac:b0:1d:9b:e2:4c:2d:e5:b4:c2:
f5:0f:95:4f:9c:68:41:ee:ea:aa:e8:3d:cc:b1:a7:7b:07:24:
4e:c8:36:e1:be:86:fd:22:1a:11:1d:ab:a1:4a:40:bb:77:93:
33:cb:19:5e:f5:bb:ed:51:66:9d:e8:6b:3e:d8:fa:aa:55:77:
62:b6:70:ec:4c:61:f0:36:0a:03:df:69:2f:10:62:a3:d6:5c:
c2:ec:75:04:3e:81:75:3b:c3:26:71:37:57:cf:44:da:ba:53:
6f:e5:1b:60:79:db:4c:61:e9:b7:c3:cf:1f:7b:4c:fd:7c:1b:
1d:a5:54:54:87:b8:0c:84:e0:eb:1a:92:7f:78:d0:77:24:83:
85:e1:7b:56:ca:e5:03:ba:ff:1a:f4:60:5b:70:a8:af:31:88:
6e:c9:49:43:2f:6b:65:1a:0d:bd:85:5c:de:65:0e:80:75:77:
98:6b:b7:50:f6:94:f6:2f:96:46:ba:5f:d2:72:85:f6:9d:b6:
21:b2:a0:fe:8a:8f:ec:f0:cf:0a:b3:7f:85:6a:30:98:6b:1f:
5e:89:c3:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:50 2024 by rpki-client on console-fra.rpki-client.org