Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/UE-XhUTE3B6fKj0F_jgYepxDJwc.roa
File: UE-XhUTE3B6fKj0F_jgYepxDJwc.roa (raw, json)
Hash identifier: uVUc3UXe4qm/K0OEtAuak2Rst8PzEi56tnuCbhpfCrI=
Subject key identifier: 50:4F:97:85:44:C4:DC:1E:9F:2A:3D:05:FE:38:18:7A:9C:43:27:07
Certificate issuer: /CN=1f61aa5d1befd7a0fe3e4dfe3aa8da73efcfba34
Certificate serial: 018CAF5E8CBE3510FE33A42B5F2677C48DD3
Authority key identifier: 1F:61:AA:5D:1B:EF:D7:A0:FE:3E:4D:FE:3A:A8:DA:73:EF:CF:BA:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H2GqXRvv16D-Pk3-Oqjac-_PujQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/UE-XhUTE3B6fKj0F_jgYepxDJwc.roa
Signing time: Thu 28 Dec 2023 07:40:58 +0000
ROA not before: Thu 28 Dec 2023 07:40:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.95.207.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:af:5e:8c:be:35:10:fe:33:a4:2b:5f:26:77:c4:8d:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f61aa5d1befd7a0fe3e4dfe3aa8da73efcfba34
Validity
Not Before: Dec 28 07:40:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=504f978544c4dc1e9f2a3d05fe38187a9c432707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:86:0d:45:f9:10:4e:4f:ce:68:8b:07:45:b9:
8c:93:76:6a:a2:ca:e5:ba:99:0e:8b:4c:08:93:45:
cc:23:6e:87:71:7e:32:97:7f:f6:1b:97:a0:08:84:
2c:ac:bc:95:13:4c:2b:fb:a1:f2:c0:a6:21:46:92:
30:51:59:15:14:85:ab:d9:8c:48:22:f5:f5:8f:07:
49:14:6c:d8:65:5b:98:2c:28:95:7f:9c:58:36:25:
68:28:2d:ea:5e:8a:49:bc:92:59:40:29:c3:fd:1c:
da:76:a7:84:80:f6:71:cb:9e:d8:37:e0:a3:8c:98:
0b:29:7f:92:82:b1:c7:d8:90:7a:15:50:15:9d:0c:
0a:36:64:65:4b:e8:e0:ea:d8:3b:5c:ef:70:17:a0:
a1:58:fb:70:2d:af:e7:d7:b3:b5:21:33:98:c7:0f:
10:dd:6b:e0:3a:cf:34:dc:39:1d:61:6b:2b:c8:29:
ce:d1:d1:ec:ea:e7:22:9e:f7:c3:21:39:a9:41:1b:
da:d5:17:74:bd:c1:48:8a:81:9c:b8:c9:ea:45:2d:
e1:ac:44:1d:67:5b:d7:ec:47:7c:ea:c6:49:f9:20:
8e:42:3f:4a:f7:f6:e3:e3:40:95:67:0f:f8:45:ab:
45:67:d7:69:04:f4:63:87:cf:67:25:b2:fa:3f:70:
fe:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:4F:97:85:44:C4:DC:1E:9F:2A:3D:05:FE:38:18:7A:9C:43:27:07
X509v3 Authority Key Identifier:
keyid:1F:61:AA:5D:1B:EF:D7:A0:FE:3E:4D:FE:3A:A8:DA:73:EF:CF:BA:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H2GqXRvv16D-Pk3-Oqjac-_PujQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/UE-XhUTE3B6fKj0F_jgYepxDJwc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/H2GqXRvv16D-Pk3-Oqjac-_PujQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.207.0/24
Signature Algorithm: sha256WithRSAEncryption
22:45:c0:8d:8f:da:cf:07:fb:27:29:57:e3:c3:b2:97:c4:6c:
cc:70:45:b5:69:7f:bd:b8:b7:40:49:24:d6:11:f2:bb:86:4c:
81:b0:c4:8a:8e:dc:8c:1e:41:23:83:c2:99:a8:c9:04:8d:91:
8a:cd:a5:39:e7:50:17:57:15:cf:01:c8:b7:d7:20:fb:11:9f:
f2:3c:a2:b7:fa:51:47:05:6c:fa:28:2c:9a:5d:26:8f:44:61:
77:c6:74:85:4f:b7:c5:fb:42:f4:10:1b:ef:55:c5:25:1d:5f:
f9:99:83:71:dd:b4:a1:02:7f:5a:ab:36:76:7a:8e:0e:9a:3e:
97:47:5d:9e:1d:90:b0:78:a8:e2:4c:fa:bd:2b:18:c2:f9:46:
5b:af:87:8e:eb:01:01:ae:dc:24:a3:4d:31:09:bd:31:f5:12:
89:b2:4f:f6:22:a2:74:96:ef:23:05:7b:72:b7:38:77:7c:71:
7c:14:e5:d7:35:dc:5e:b6:34:fd:01:6e:a3:d8:6f:56:6c:b2:
02:31:6c:17:c7:59:9a:1f:ab:8a:f6:2c:30:c2:c2:a0:8d:5f:
bf:8d:51:2a:da:69:ad:4b:d7:90:a5:6f:d3:a3:6e:a2:9a:38:
91:9f:7d:a6:a1:8e:22:c1:0e:49:1b:ca:5c:88:ef:a9:a7:17:
d1:1f:a8:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:47 2024 by rpki-client on console-fra.rpki-client.org