Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/eW65Vboe374LMyKbg64fEnGtV8k.roa
File: eW65Vboe374LMyKbg64fEnGtV8k.roa (raw, json)
Hash identifier: Agj4pGR1Sh/ymdKDeUuuV/qw3sjA0scN/uwxwPQ1eNs=
Subject key identifier: 79:6E:B9:55:BA:1E:DF:BE:0B:33:22:9B:83:AE:1F:12:71:AD:57:C9
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 0187D7681812042D410450AA8B18C6BE118E
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/eW65Vboe374LMyKbg64fEnGtV8k.roa
Signing time: Mon 01 May 2023 13:02:16 +0000
ROA not before: Mon 01 May 2023 13:02:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207772
IP address blocks: 95.43.114.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:d7:68:18:12:04:2d:41:04:50:aa:8b:18:c6:be:11:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: May 1 13:02:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=796eb955ba1edfbe0b33229b83ae1f1271ad57c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:15:6a:f8:22:d5:81:29:57:9a:17:36:db:7d:
dc:66:d1:76:5f:fe:76:fb:53:53:82:49:b7:cc:70:
27:27:b7:88:8f:87:36:0b:0d:83:52:8d:b6:43:27:
d0:68:24:07:bc:cd:11:8f:31:66:8c:00:2f:45:a3:
d0:cd:89:69:ad:93:b4:1a:98:cd:df:ef:9b:4f:0c:
53:a1:d8:d8:c9:f1:b6:eb:70:4c:f0:b5:6f:33:89:
a5:6a:51:24:b9:7f:47:97:2d:4a:c7:14:69:c2:01:
44:0b:3f:d2:96:1a:20:35:9c:e1:f8:c3:3f:b9:c6:
bb:54:a1:9e:cb:57:f9:32:c1:68:93:78:5a:fe:25:
82:f1:72:84:61:9d:51:96:4b:73:4b:7b:ca:6c:55:
05:ed:3c:d6:28:5c:ba:ed:52:1b:af:5e:e4:10:aa:
13:7a:95:c3:a3:e5:f1:01:10:15:e3:98:6d:3d:b8:
e3:99:9e:71:06:cb:67:ab:74:36:57:35:b5:41:86:
ea:53:07:ba:ac:2f:32:79:ab:b9:5c:46:0f:db:6a:
b0:3c:b3:38:a6:8b:2a:c1:80:8e:22:3d:bc:7f:23:
83:17:da:3e:01:c7:0c:e0:89:88:43:b8:0e:5a:4f:
f4:70:2b:82:e6:b0:4c:03:11:b6:1d:da:bb:aa:16:
3d:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:6E:B9:55:BA:1E:DF:BE:0B:33:22:9B:83:AE:1F:12:71:AD:57:C9
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/eW65Vboe374LMyKbg64fEnGtV8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.43.114.0/24
Signature Algorithm: sha256WithRSAEncryption
18:1c:69:62:da:16:90:6f:ba:6d:ae:fe:73:a0:4a:6e:15:a3:
3f:0a:40:b0:ee:f4:ad:ce:de:f1:d1:10:18:c9:d2:e7:a1:5c:
fa:1f:de:ac:fa:ef:00:95:32:12:ec:3a:79:8c:ea:f4:e4:2a:
03:5e:9b:60:4c:16:44:d7:bd:99:75:22:af:3d:73:dd:d9:ca:
7c:fe:c4:bb:94:49:91:b3:ef:d4:9d:1a:d9:73:51:18:26:73:
e1:04:a5:81:ba:2d:c4:58:49:19:c1:b8:c6:af:b5:49:4b:11:
9c:df:80:f7:53:45:78:33:8a:cf:2e:b5:a5:42:29:81:19:d7:
45:81:f4:b4:33:fe:6a:21:58:ce:62:ea:04:00:08:5b:5f:06:
31:cc:e1:0d:48:2f:7f:5b:24:b2:65:e6:df:da:9e:dd:9c:a3:
d6:a9:b8:71:60:c2:53:34:03:97:4a:f8:15:69:c8:e1:29:64:
aa:32:c6:8d:05:85:e1:9c:2d:7a:3e:c5:58:69:a0:21:65:9a:
60:cc:49:56:fd:03:b9:42:52:18:58:1b:28:52:06:ca:84:29:
2f:f8:95:b1:f3:89:23:38:e1:86:2d:cc:7f:c9:7f:2f:2c:60:
3c:2d:80:cd:31:50:91:f8:11:0e:85:f8:8d:df:ab:81:e1:d8:
18:a8:a7:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:54 2024 by rpki-client on console-ams.rpki-client.org