Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/gW44LWxepRksu49VrlfW3egNa6Q.roa
File: gW44LWxepRksu49VrlfW3egNa6Q.roa (raw, json)
Hash identifier: hFpuiPVElH48cDhygNv6U3Hhsa8nWQuMinr3enDIvn0=
Subject key identifier: 81:6E:38:2D:6C:5E:A5:19:2C:BB:8F:55:AE:57:D6:DD:E8:0D:6B:A4
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 01856D0ADA5535D35150BAD4646833B16719
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/gW44LWxepRksu49VrlfW3egNa6Q.roa
Signing time: Sun 01 Jan 2023 11:15:05 +0000
ROA not before: Sun 01 Jan 2023 11:15:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49011
IP address blocks: 95.174.160.0/19 maxlen: 19
178.19.0.0/20 maxlen: 20
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:da:55:35:d3:51:50:ba:d4:64:68:33:b1:67:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Jan 1 11:15:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=816e382d6c5ea5192cbb8f55ae57d6dde80d6ba4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:13:77:8f:c0:85:a4:b6:82:4f:12:82:ec:a7:
c9:7d:52:02:09:d1:ea:0b:bc:17:44:4d:f0:07:91:
ff:49:12:35:17:79:27:14:e4:ee:c4:fd:b0:1f:57:
ff:9a:78:30:95:45:4a:35:f8:26:dc:89:7e:c7:74:
92:c6:0e:c6:7f:32:36:f5:05:c9:73:95:be:e0:5e:
01:8e:c5:1d:21:f6:07:c8:7a:9b:a1:48:21:c5:24:
a1:07:91:3b:dd:e3:31:f5:50:5b:c8:e3:e0:4e:36:
38:d4:ac:b7:b0:2e:00:4d:47:b5:e5:9d:32:e3:11:
50:db:3d:c8:20:59:c2:82:84:83:ab:e5:14:e3:34:
25:cc:41:3e:e9:f5:e1:8e:5d:01:51:7b:03:42:1b:
a9:5b:ea:63:99:fa:ca:63:74:c9:4b:22:f0:18:8b:
8c:28:d6:e0:3f:f4:43:b0:e5:4c:f5:cd:d6:12:cb:
57:47:66:d7:6a:80:f8:da:f4:6f:fa:25:d0:23:6b:
8f:b5:96:06:14:7f:fb:08:6d:9f:16:da:7c:5a:db:
d5:6e:70:48:84:2c:7b:44:48:04:b3:c4:1a:73:a1:
8f:3a:f2:48:5b:67:1d:6e:ca:59:dc:2e:84:a1:32:
d8:cd:19:66:65:77:45:2c:18:f8:a3:32:46:37:72:
27:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:6E:38:2D:6C:5E:A5:19:2C:BB:8F:55:AE:57:D6:DD:E8:0D:6B:A4
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/gW44LWxepRksu49VrlfW3egNa6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.174.160.0/19
178.19.0.0/20
Signature Algorithm: sha256WithRSAEncryption
0b:e0:54:fe:ed:f0:43:e1:81:25:f7:47:e8:cb:e9:6a:7b:a8:
bc:96:3e:ee:26:b6:4c:75:0f:b5:d4:8f:85:f7:89:5b:a3:19:
24:dd:81:82:f2:b4:f6:40:25:fe:e3:4f:11:f6:90:4c:4e:59:
bf:20:27:28:1c:72:37:f6:81:7e:2f:78:4d:7b:18:25:2b:75:
0b:16:2e:77:69:d6:e7:0c:10:ab:a8:d6:f7:65:94:a8:06:96:
7b:b4:97:9a:88:54:6a:0b:d1:fe:78:dd:a8:46:65:19:34:ff:
ad:73:b7:af:d9:42:59:56:5b:b2:38:15:b0:6c:58:d1:a0:6a:
f4:85:92:e7:35:6e:ae:45:5f:7b:4a:4a:cf:ac:98:3f:8d:cc:
c2:b5:07:58:4b:d5:33:74:2a:3f:c9:96:8b:82:ac:b6:fe:f0:
6d:a1:68:8b:fb:39:59:16:00:10:c1:4b:2b:98:cc:47:22:83:
35:7f:25:01:0c:fe:78:5d:01:44:04:5b:20:e4:9b:24:3c:72:
09:8f:95:dd:97:0f:dd:c2:3d:04:a4:1d:95:a8:36:1c:18:3d:
01:6a:6c:a9:63:c2:2c:51:94:a2:46:20:8b:5d:e0:1f:14:6b:
e8:e3:e8:01:6f:a0:77:87:6e:9d:6a:4b:f4:7f:29:1b:f8:dc:
73:0c:42:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:55 2024 by rpki-client on console-fra.rpki-client.org