Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/nShqxF1dzTVUivxELzoTqzdLCGo.roa
File: nShqxF1dzTVUivxELzoTqzdLCGo.roa (raw, json)
Hash identifier: aDnlbjZXO7xlcrvU6ePgcxVGJ7skbb6ih1WZ5tmBuzI=
Subject key identifier: 9D:28:6A:C4:5D:5D:CD:35:54:8A:FC:44:2F:3A:13:AB:37:4B:08:6A
Certificate issuer: /CN=1f61aa5d1befd7a0fe3e4dfe3aa8da73efcfba34
Certificate serial: 018CAF5E8D181EEA94CFD769CCED85B8EF50
Authority key identifier: 1F:61:AA:5D:1B:EF:D7:A0:FE:3E:4D:FE:3A:A8:DA:73:EF:CF:BA:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H2GqXRvv16D-Pk3-Oqjac-_PujQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/nShqxF1dzTVUivxELzoTqzdLCGo.roa
Signing time: Thu 28 Dec 2023 07:40:58 +0000
ROA not before: Thu 28 Dec 2023 07:40:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54252
IP address blocks: 45.95.205.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:af:5e:8d:18:1e:ea:94:cf:d7:69:cc:ed:85:b8:ef:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f61aa5d1befd7a0fe3e4dfe3aa8da73efcfba34
Validity
Not Before: Dec 28 07:40:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9d286ac45d5dcd35548afc442f3a13ab374b086a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:2c:bc:8c:12:4a:31:7b:94:1b:5a:44:aa:d0:
cb:26:3f:c3:0c:46:18:d5:4b:a0:72:8f:f4:eb:3e:
83:80:d3:fc:95:e5:da:aa:ce:9f:89:0c:83:4b:d1:
62:c2:74:1e:b8:ce:5f:00:03:63:a3:19:4c:82:45:
a9:7d:62:df:a0:6e:67:bd:2b:41:d5:b1:e4:a6:8c:
b8:34:a6:62:c7:3b:a1:d3:71:03:db:91:82:aa:3d:
10:0b:05:ab:74:87:2f:f4:9c:5d:a3:a7:40:4b:2e:
fd:26:b6:85:e0:f9:ed:eb:d3:40:e6:64:c6:e7:e7:
fa:35:67:11:cc:76:90:54:2a:df:47:b7:b4:72:7b:
03:d9:e4:48:1e:c2:77:a9:f6:37:f6:f2:6b:6b:b9:
04:08:61:b5:4c:92:1d:25:ce:b9:47:13:85:79:ea:
42:1d:a0:3e:4c:7d:11:4b:f1:8e:9e:ee:5d:41:ef:
08:d7:8f:76:43:fe:3a:9b:88:8b:16:50:93:17:49:
9a:5b:6b:94:42:ac:b8:6d:07:ae:f6:c9:b5:3f:3d:
c9:63:92:89:06:58:7d:9e:96:94:17:b6:4d:5d:dc:
f1:1e:58:4d:f3:7e:a9:4d:b7:2c:d7:74:4b:59:6c:
a4:10:71:f7:d8:d5:5c:f3:0e:a1:9a:89:17:6a:ff:
93:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:28:6A:C4:5D:5D:CD:35:54:8A:FC:44:2F:3A:13:AB:37:4B:08:6A
X509v3 Authority Key Identifier:
keyid:1F:61:AA:5D:1B:EF:D7:A0:FE:3E:4D:FE:3A:A8:DA:73:EF:CF:BA:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H2GqXRvv16D-Pk3-Oqjac-_PujQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/nShqxF1dzTVUivxELzoTqzdLCGo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/H2GqXRvv16D-Pk3-Oqjac-_PujQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.205.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:2a:0c:f7:32:5b:ec:68:5b:83:e7:6d:5e:d0:40:46:4a:43:
5b:2a:0b:86:47:51:f0:ee:3a:73:e9:ca:22:3e:cf:7f:f8:90:
d7:96:35:5b:6e:34:5b:8b:fe:d3:92:ee:fa:7c:c4:21:ee:79:
f3:9e:75:f7:c7:19:3b:4c:99:71:95:29:9f:99:be:84:c0:2d:
61:32:96:98:22:fc:47:21:46:3b:b4:52:71:1a:7c:68:e6:2b:
ba:13:e9:16:d3:ef:0d:9c:a3:f5:75:8c:e5:b1:90:bc:9c:86:
af:bd:4c:c2:bd:8c:55:b6:80:79:47:83:a3:0a:cc:26:ab:3e:
e6:8d:59:3a:8f:7d:2a:6f:9d:b8:f4:08:0b:67:45:2e:0d:ab:
8b:7b:f4:6a:68:5e:8c:2c:15:14:9a:29:90:32:eb:b1:bd:6e:
21:a9:79:63:5b:f3:55:50:92:40:dd:de:99:7c:c7:f0:e9:50:
a5:dd:0b:10:88:62:6f:f0:d3:66:2b:c1:36:dc:b5:04:2d:5d:
02:e9:92:42:b1:ff:81:b7:30:f8:fe:f7:0a:e3:1f:2a:3d:4a:
f6:a8:39:5a:81:a8:71:49:2c:b9:a7:58:9e:a1:3e:e3:ac:7f:
82:78:7a:5e:ef:66:d5:40:64:e0:64:a4:7f:1f:c3:d7:37:c2:
87:e0:a6:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:49:15 2024 by rpki-client on console-fra.rpki-client.org