Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/0ORl3bo2hP96sFBB64HxC_-iLbw.roa
File: 0ORl3bo2hP96sFBB64HxC_-iLbw.roa (raw, json)
Hash identifier: tOPxiQYmBHi0uhKzUvBT7R/KBbEnHDtQ2Y74Eqx6UPM=
Subject key identifier: D0:E4:65:DD:BA:36:84:FF:7A:B0:50:41:EB:81:F1:0B:FF:A2:2D:BC
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01856CE670624E25B6D1A79681E3DAC7C32C
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/0ORl3bo2hP96sFBB64HxC_-iLbw.roa
Signing time: Sun 01 Jan 2023 10:35:19 +0000
ROA not before: Sun 01 Jan 2023 10:35:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205808
IP address blocks: 95.43.202.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:70:62:4e:25:b6:d1:a7:96:81:e3:da:c7:c3:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 10:35:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d0e465ddba3684ff7ab05041eb81f10bffa22dbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:5b:48:13:98:ec:38:d7:90:e5:58:95:4c:58:
0d:93:cd:60:27:03:a1:04:84:ea:b5:53:07:a6:84:
56:60:a9:7e:a3:bc:11:cc:9e:da:8b:c3:27:36:38:
cb:30:10:80:f8:59:c0:cd:5e:d5:ff:ba:6e:16:33:
4a:25:0b:88:70:51:85:e5:ed:a8:60:ff:59:fc:94:
5f:4e:87:fe:e4:fd:95:28:f6:d9:9e:45:03:58:c6:
f7:49:0c:3d:db:8f:af:38:38:fd:79:8a:32:18:74:
f7:8e:a1:cd:01:d7:b7:16:51:50:53:70:b8:c6:26:
c4:74:81:81:d7:f5:45:44:75:4a:5f:4a:93:dc:a0:
d0:07:fa:0b:07:60:35:7c:6c:3a:8b:a8:49:bd:2d:
60:f4:50:a7:d8:c7:63:a9:9c:4c:a9:2d:dc:0f:04:
0c:9c:69:73:5b:8b:ee:78:f3:a9:94:f7:cb:74:f7:
4d:03:68:95:6a:b6:27:9e:42:37:30:6e:bb:37:c0:
98:f4:25:ea:ac:d4:bc:5d:10:ba:3a:52:9f:ab:c5:
9e:c2:a1:af:04:50:f8:db:c4:c9:a7:1b:61:3a:8c:
ba:46:c9:eb:11:ad:d9:60:5f:dd:c8:6b:3a:09:93:
b8:5b:8f:70:0a:03:38:1a:fe:2f:81:e2:44:86:66:
19:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:E4:65:DD:BA:36:84:FF:7A:B0:50:41:EB:81:F1:0B:FF:A2:2D:BC
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/0ORl3bo2hP96sFBB64HxC_-iLbw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.43.202.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:2a:97:ac:91:f9:0b:10:8a:dc:27:f9:5f:a1:c4:7c:90:da:
03:a7:8f:a3:b5:5f:dc:7b:62:84:ca:62:90:e0:36:49:23:1c:
70:90:88:44:28:82:07:83:8c:ef:38:64:14:62:5e:32:62:88:
58:93:3f:d4:82:af:2d:6a:2b:9d:db:6c:e0:fa:7f:08:98:c7:
0a:01:d7:66:e2:19:3e:a0:43:db:33:ae:60:24:a7:2c:e2:2b:
1f:cb:57:55:ee:a7:a5:5d:02:b9:88:57:5a:7b:19:a8:a9:90:
ed:86:67:f3:a9:b9:fe:74:d4:fa:50:9a:21:0d:ae:b3:1d:8d:
f6:73:0a:63:6e:f0:09:eb:bd:75:64:48:04:a1:b9:4c:f3:0d:
98:fb:2c:c5:17:6c:f7:2c:fe:bb:61:3f:b4:b4:98:cb:11:b2:
bc:ba:8a:b9:72:c8:24:ec:2d:3f:bd:f5:0b:40:bd:29:0c:a6:
e9:3b:18:03:5e:7e:7e:2f:c5:43:17:2c:b4:6d:69:95:01:20:
ea:b4:2c:af:ec:5e:03:ca:3f:95:fb:30:09:1c:9e:2b:ab:86:
62:52:01:f6:19:ea:84:d2:64:9d:fc:70:37:2c:b0:d8:60:4f:
5c:d5:9b:a8:4f:11:7a:a2:c7:23:20:a9:a8:5f:1e:14:00:d6:
ff:4f:9d:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:53 2024 by rpki-client on console-ams.rpki-client.org