Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/068c4a-76c0-4fbe-a9ee-0df73c2f6a9f/1/c03_RsSexkOeHpQ6tTKPjFX_R0c.roa
File: c03_RsSexkOeHpQ6tTKPjFX_R0c.roa (raw, json)
Hash identifier: hW4/A/T53CvyMwdcidJNtGb+pwwLPvlwe6LvnWXIg24=
Subject key identifier: 73:4D:FF:46:C4:9E:C6:43:9E:1E:94:3A:B5:32:8F:8C:55:FF:47:47
Certificate issuer: /CN=a15df6cd829d95f63d931d5dcf91cc8ba50f90b0
Certificate serial: 018570028B92383049215DBA550BF2FFBA53
Authority key identifier: A1:5D:F6:CD:82:9D:95:F6:3D:93:1D:5D:CF:91:CC:8B:A5:0F:90:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oV32zYKdlfY9kx1dz5HMi6UPkLA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/068c4a-76c0-4fbe-a9ee-0df73c2f6a9f/1/c03_RsSexkOeHpQ6tTKPjFX_R0c.roa
Signing time: Mon 02 Jan 2023 01:04:52 +0000
ROA not before: Mon 02 Jan 2023 01:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24940
IP address blocks: 195.248.224.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:8b:92:38:30:49:21:5d:ba:55:0b:f2:ff:ba:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a15df6cd829d95f63d931d5dcf91cc8ba50f90b0
Validity
Not Before: Jan 2 01:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=734dff46c49ec6439e1e943ab5328f8c55ff4747
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:e7:d5:e4:e8:a6:ef:4b:d7:95:f2:cb:ac:74:
6f:a5:24:78:1a:c3:ce:2f:05:fd:e3:9c:96:9f:d1:
4f:00:da:3c:85:d2:4e:35:d2:dd:a1:cd:b0:05:cd:
0f:e6:5a:97:a5:68:57:01:37:ed:85:09:f0:7e:09:
5d:2d:ba:5d:bf:0b:f6:60:ee:44:c3:b3:4d:51:7e:
6d:63:17:ac:5d:6a:13:cd:06:34:83:e4:c2:4a:bd:
eb:5b:c0:e3:66:e8:8f:f8:5e:6c:d5:26:43:4d:69:
94:ea:6e:05:82:87:0e:c3:5a:c9:ae:9b:fb:37:83:
ef:67:c6:a6:36:ad:89:f2:45:8f:a8:71:a5:30:11:
b5:62:3f:d1:11:e2:d6:3c:03:15:30:fe:c4:8e:cf:
c5:ff:3c:67:62:4b:8b:83:f5:53:f7:eb:5a:fe:83:
d2:eb:b0:06:24:2e:0d:ce:53:e4:9f:eb:a5:06:3b:
4f:c6:fc:e2:93:ed:d7:c3:c3:38:9c:01:c1:a7:c4:
3c:4a:ea:50:f9:b1:5f:79:cc:fb:ba:c0:d4:a7:bd:
92:3d:f8:7f:6f:31:9b:81:85:dd:23:e1:87:6c:36:
17:dc:b2:e3:d5:11:86:e3:eb:7b:21:ee:4f:47:20:
ae:9e:13:7b:7f:6e:ff:aa:e8:b9:47:4c:a5:1d:55:
a8:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:4D:FF:46:C4:9E:C6:43:9E:1E:94:3A:B5:32:8F:8C:55:FF:47:47
X509v3 Authority Key Identifier:
keyid:A1:5D:F6:CD:82:9D:95:F6:3D:93:1D:5D:CF:91:CC:8B:A5:0F:90:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oV32zYKdlfY9kx1dz5HMi6UPkLA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/068c4a-76c0-4fbe-a9ee-0df73c2f6a9f/1/c03_RsSexkOeHpQ6tTKPjFX_R0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/068c4a-76c0-4fbe-a9ee-0df73c2f6a9f/1/oV32zYKdlfY9kx1dz5HMi6UPkLA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.248.224.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:6b:56:88:c8:b4:0a:73:59:f2:39:42:99:49:77:11:e1:72:
e0:ee:d1:1f:fe:ae:dc:6a:67:a3:66:94:07:9c:9f:ff:01:32:
15:3e:24:e4:7a:de:22:d9:68:27:ca:2b:fa:a2:18:e6:0a:24:
6b:f7:8e:d2:97:69:7b:d0:8c:d8:58:00:ff:50:e5:2b:4d:3e:
ad:44:82:53:6b:50:90:31:7b:59:45:5d:84:62:af:1a:d5:be:
5a:a0:d4:a6:bf:80:90:70:1b:52:30:96:a0:6d:20:a5:cf:d6:
fd:7d:bf:66:f6:5d:ad:99:3b:c5:bc:57:4c:08:f5:2d:71:e8:
c0:83:f3:fa:50:46:d4:0c:71:c5:b2:90:89:58:80:54:03:13:
e4:b7:83:ad:ce:11:db:75:c6:0d:85:54:81:bb:b1:1a:9f:57:
75:09:8e:97:b1:46:28:c9:8b:72:39:96:18:fb:6c:04:9f:88:
4c:c2:85:5a:ff:5e:61:87:a0:b1:50:2f:f6:76:32:ed:bd:49:
c0:eb:e8:19:d9:a7:64:33:d5:ca:24:fe:de:22:b0:e7:07:21:
8d:1a:31:bb:75:8a:2d:3c:b5:f8:33:71:35:d8:66:6a:10:e5:
68:55:df:1f:74:cd:a5:64:57:53:5e:03:0a:f9:fd:2f:a4:89:
c9:bd:38:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:01:48 2024 by rpki-client on console.sobornost.net