Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/2fcbb2-c3c0-4b1e-8ad5-7f5f78346d6f/1/e5dARhZrXt4JAQpUFJXDupcuTZI.roa
File: e5dARhZrXt4JAQpUFJXDupcuTZI.roa (raw, json)
Hash identifier: dI+HurU87TKrrFEd9ZUcgx1XVDVqT/knWNECAvJH/7E=
Subject key identifier: 7B:97:40:46:16:6B:5E:DE:09:01:0A:54:14:95:C3:BA:97:2E:4D:92
Certificate issuer: /CN=b1ffee7dbf7f4566ea9e30546b2c2a2e7336f2f4
Certificate serial: 0185708CA5D92B012FCDB5A3D8F962C0FDC7
Authority key identifier: B1:FF:EE:7D:BF:7F:45:66:EA:9E:30:54:6B:2C:2A:2E:73:36:F2:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sf_ufb9_RWbqnjBUaywqLnM28vQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/2fcbb2-c3c0-4b1e-8ad5-7f5f78346d6f/1/e5dARhZrXt4JAQpUFJXDupcuTZI.roa
Signing time: Mon 02 Jan 2023 03:35:43 +0000
ROA not before: Mon 02 Jan 2023 03:35:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61157
IP address blocks: 95.174.80.0/21 maxlen: 21
2a04:2f80::/42 maxlen: 42
2a04:2f80::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:a5:d9:2b:01:2f:cd:b5:a3:d8:f9:62:c0:fd:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1ffee7dbf7f4566ea9e30546b2c2a2e7336f2f4
Validity
Not Before: Jan 2 03:35:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7b974046166b5ede09010a541495c3ba972e4d92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:37:c2:06:96:fc:98:80:fa:2e:69:5c:a7:30:
5c:38:ad:c9:40:26:ad:a1:ca:ed:75:8c:6a:e8:ae:
ee:9c:07:ec:81:6f:ce:c6:fe:51:60:7e:3b:58:d7:
7b:50:c5:5e:40:d1:e9:dd:fa:f6:6f:3b:34:6c:55:
1f:63:1f:0c:c8:ae:0f:6a:de:56:f3:ce:5b:be:69:
b4:5b:9c:7f:29:a5:64:d2:13:b2:6f:15:d9:f5:d5:
e3:93:81:40:27:3b:c2:9b:26:1e:88:8e:8c:18:17:
0f:a0:3a:fd:c2:bd:37:04:92:b4:b0:03:0c:24:62:
0e:85:de:12:b9:4d:49:fa:ed:85:67:a7:07:fe:55:
c0:8b:12:ab:d4:0c:de:63:c7:f4:b8:d3:79:22:d8:
ea:2b:4e:a0:51:b4:38:76:a5:8f:3f:7a:df:54:a6:
01:95:0c:cc:19:0c:2d:54:0f:eb:c2:df:f6:d0:a6:
3c:ee:31:77:54:5b:25:49:08:f3:41:34:67:b7:47:
e4:2a:3f:bc:0d:69:b8:78:89:38:19:af:34:bb:b5:
b1:f0:75:8a:a9:bc:a2:38:60:c9:d4:7c:5c:56:fd:
17:0c:07:d6:97:9f:e5:c5:ad:40:97:03:6e:81:46:
0e:89:ca:ac:de:ee:78:f4:0f:a4:6c:f9:59:39:a8:
84:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:97:40:46:16:6B:5E:DE:09:01:0A:54:14:95:C3:BA:97:2E:4D:92
X509v3 Authority Key Identifier:
keyid:B1:FF:EE:7D:BF:7F:45:66:EA:9E:30:54:6B:2C:2A:2E:73:36:F2:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sf_ufb9_RWbqnjBUaywqLnM28vQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2fcbb2-c3c0-4b1e-8ad5-7f5f78346d6f/1/e5dARhZrXt4JAQpUFJXDupcuTZI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2fcbb2-c3c0-4b1e-8ad5-7f5f78346d6f/1/sf_ufb9_RWbqnjBUaywqLnM28vQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.174.80.0/21
IPv6:
2a04:2f80::/29
Signature Algorithm: sha256WithRSAEncryption
1d:9e:ef:42:a4:87:48:ec:96:e7:6e:93:a9:db:cd:1c:fc:a9:
05:a3:5a:f3:14:7e:d2:53:7b:04:f3:3c:d6:77:26:40:64:f1:
09:31:ff:32:0e:c9:2e:97:40:9c:ff:f6:58:29:ba:87:17:6f:
83:06:2d:af:5f:3b:09:02:d6:34:b6:25:1b:d3:4f:8e:2b:6a:
39:c6:5a:54:46:46:eb:3b:dd:85:f6:0c:c5:2c:32:e5:e0:8c:
65:a2:28:4d:57:ef:f6:e8:91:1a:47:ec:37:90:80:50:6d:ff:
09:95:c3:00:33:6d:cc:c7:37:e8:6f:66:2c:b7:f4:7c:0d:0c:
26:e3:d2:d1:d3:36:7d:68:a1:e2:ca:70:93:33:9d:99:ec:1a:
76:a3:65:ad:79:37:ba:ff:46:cb:68:90:99:3c:f0:6e:73:c5:
19:30:0b:94:71:29:ab:4c:e7:1c:f5:73:b1:a5:f2:3a:ef:84:
77:7e:0b:0c:7e:ef:13:72:9f:c7:2b:77:2c:1b:33:e0:bc:ec:
86:76:6f:22:5e:00:35:41:75:fb:84:b7:aa:9c:da:1c:b4:ce:
4b:84:53:c9:3b:55:7b:a7:f9:97:9e:c7:50:be:72:24:be:e3:
d7:96:5b:f0:7e:2a:16:2b:55:1e:da:ae:97:00:b8:de:a3:22:
8a:78:2d:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:26 2024 by rpki-client on console-fra.rpki-client.org