Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3b433e-4c88-43f2-8bf2-2468836f154b/1/XU0bLykMKjGil4N_Zd6IWKQOcXM.roa
File: XU0bLykMKjGil4N_Zd6IWKQOcXM.roa (raw, json)
Hash identifier: fbLoLuv7sHqZU92OnvgWloU0M8B3PqXYy6hKd+c+bGE=
Subject key identifier: 5D:4D:1B:2F:29:0C:2A:31:A2:97:83:7F:65:DE:88:58:A4:0E:71:73
Certificate issuer: /CN=0c16bb527a52859e0f69b88d2fedede1bde9ff2d
Certificate serial: 018B4A000032C26C7540395CE157D22EAAC5
Authority key identifier: 0C:16:BB:52:7A:52:85:9E:0F:69:B8:8D:2F:ED:ED:E1:BD:E9:FF:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DBa7UnpShZ4PabiNL-3t4b3p_y0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3b433e-4c88-43f2-8bf2-2468836f154b/1/XU0bLykMKjGil4N_Zd6IWKQOcXM.roa
Signing time: Thu 19 Oct 2023 22:13:15 +0000
ROA not before: Thu 19 Oct 2023 22:13:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 63018
IP address blocks: 193.105.95.0/24 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:4a:00:00:32:c2:6c:75:40:39:5c:e1:57:d2:2e:aa:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c16bb527a52859e0f69b88d2fedede1bde9ff2d
Validity
Not Before: Oct 19 22:13:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5d4d1b2f290c2a31a297837f65de8858a40e7173
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d6:24:53:0d:c8:f5:43:47:57:1e:4a:e4:a9:
ef:85:9c:cb:78:f6:66:68:f5:5e:c5:5d:b2:2d:de:
34:04:1b:76:5f:c7:83:93:5d:da:2b:ac:0b:2e:9a:
a9:79:a7:f8:61:e1:4e:36:fd:69:f3:7c:3a:29:87:
57:83:7e:0f:1e:43:8a:23:f7:57:62:09:d7:e0:7b:
45:94:77:f8:4b:f0:7e:d9:8b:1e:ad:61:df:56:cb:
3f:ab:49:34:a9:dd:20:9e:79:64:45:c4:cc:3d:60:
4c:b9:85:a1:e1:4a:34:05:2e:8a:b5:40:86:9d:09:
a8:5b:00:3f:d2:65:66:1a:52:57:50:aa:d3:8b:3b:
37:c0:25:29:28:c3:10:ed:2d:66:8c:88:7b:83:70:
82:79:1c:cd:5e:da:d1:9e:a6:03:f2:89:16:cb:ee:
d5:df:05:f3:d5:42:7c:f9:ef:99:f1:46:d4:42:3e:
7c:2f:68:4c:ff:d8:bd:aa:7b:c8:5e:80:70:53:e0:
04:40:4c:56:02:a7:e6:63:7a:40:45:60:c9:17:3c:
b7:ae:92:a4:0b:99:6e:94:0a:fc:b4:db:38:27:16:
a6:4d:67:78:43:4e:ee:6f:c4:af:f6:32:30:94:a1:
39:79:30:b9:c4:8e:f2:f8:12:71:cc:15:c2:f0:e6:
c5:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:4D:1B:2F:29:0C:2A:31:A2:97:83:7F:65:DE:88:58:A4:0E:71:73
X509v3 Authority Key Identifier:
keyid:0C:16:BB:52:7A:52:85:9E:0F:69:B8:8D:2F:ED:ED:E1:BD:E9:FF:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DBa7UnpShZ4PabiNL-3t4b3p_y0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3b433e-4c88-43f2-8bf2-2468836f154b/1/XU0bLykMKjGil4N_Zd6IWKQOcXM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3b433e-4c88-43f2-8bf2-2468836f154b/1/DBa7UnpShZ4PabiNL-3t4b3p_y0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.95.0/24
Signature Algorithm: sha256WithRSAEncryption
24:96:61:c7:dd:61:4c:60:1a:52:76:5c:f8:ef:73:84:0b:5f:
61:25:c7:2e:0c:75:f3:cb:43:ac:62:4d:9a:29:39:e1:15:05:
30:26:e0:3e:36:14:75:b6:90:e8:7f:d3:3a:ff:02:e9:8f:40:
c9:84:c7:a2:27:40:ae:f2:f0:b2:9f:a7:fb:5e:fe:44:1e:78:
7e:3e:62:a8:23:9f:47:ab:13:2b:a0:10:f1:0b:2b:e8:c7:fd:
13:d8:7a:b6:4e:e2:da:28:1d:98:03:34:db:50:45:10:7d:6e:
20:92:62:58:9f:5e:13:f8:09:6a:de:6e:03:1c:27:d4:40:9d:
1c:47:6e:a2:d2:dd:ac:1a:0b:9b:ff:83:46:88:42:3f:3b:53:
15:71:9f:de:af:07:9a:a4:d6:b6:0f:4f:d3:76:ad:33:c3:1b:
3c:fb:2d:58:82:81:48:e6:00:09:1e:52:7d:a4:a1:1e:6a:d0:
61:44:21:fe:1d:78:76:9e:df:d3:cc:72:16:03:8b:22:b6:5b:
60:1f:ed:48:25:d1:35:62:96:4a:d4:d0:e3:a7:f9:46:ee:8c:
05:4d:15:60:aa:56:c7:61:74:b0:7c:60:dc:d3:0b:18:33:91:
03:41:df:90:04:84:00:00:a7:f2:76:44:2e:c9:fe:f5:52:43:
24:e2:97:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:01:18 2024 by rpki-client on console.sobornost.net