Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/589eca-3f19-4e23-a3fb-3303f71622f9/1/40DVOIMHHm9EjUihwl_GNsPu37k.roa
File: 40DVOIMHHm9EjUihwl_GNsPu37k.roa (raw, json)
Hash identifier: pFSt2y7zAgiB3GdAopyH9h9ckpRyB+N82vnAf1zT4rY=
Subject key identifier: E3:40:D5:38:83:07:1E:6F:44:8D:48:A1:C2:5F:C6:36:C3:EE:DF:B9
Certificate issuer: /CN=6e4067d77bfea99df25ce5e08a9213d1128014cf
Certificate serial: 01856D8AAB8F74FA19D40D3A17D0CE3F72DE
Authority key identifier: 6E:40:67:D7:7B:FE:A9:9D:F2:5C:E5:E0:8A:92:13:D1:12:80:14:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bkBn13v-qZ3yXOXgipIT0RKAFM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/589eca-3f19-4e23-a3fb-3303f71622f9/1/40DVOIMHHm9EjUihwl_GNsPu37k.roa
Signing time: Sun 01 Jan 2023 13:34:42 +0000
ROA not before: Sun 01 Jan 2023 13:34:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49026
IP address blocks: 95.131.80.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8a:ab:8f:74:fa:19:d4:0d:3a:17:d0:ce:3f:72:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e4067d77bfea99df25ce5e08a9213d1128014cf
Validity
Not Before: Jan 1 13:34:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e340d53883071e6f448d48a1c25fc636c3eedfb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:67:af:72:3e:d8:2b:98:9b:2f:c2:ae:93:cc:
a0:9e:73:ad:c9:61:cd:b1:7f:45:a1:19:6a:d9:5d:
76:bf:0d:40:df:b8:5e:e3:31:d1:5f:67:c4:ef:ef:
a7:b1:58:32:fe:ad:c1:2e:e4:7e:13:57:91:45:a0:
f3:6e:d7:0c:0f:ad:2e:ae:63:c0:ff:9a:c9:db:58:
1c:61:30:cd:50:03:59:63:27:0c:ec:6c:e1:51:a9:
67:43:53:52:0d:00:41:cc:b6:98:a2:9d:29:e9:23:
95:53:b1:75:79:b5:03:ae:9b:f7:9c:d2:01:b3:26:
c2:d7:5f:10:77:b9:5c:97:44:d8:76:2a:b4:aa:e6:
34:ae:1c:c6:59:88:c1:b5:8a:20:4b:ad:de:b5:91:
45:e2:b7:92:60:fe:de:59:00:f4:27:89:c8:91:c0:
ab:36:88:44:4f:b7:b4:ab:3d:cc:0f:a2:ab:d5:c3:
53:1c:e4:5b:70:54:40:ff:94:dc:48:68:8e:2e:0f:
0f:42:a6:00:41:ba:a7:c0:93:6c:51:f3:ad:ee:eb:
f9:18:6b:ac:c4:0f:71:ea:c0:f0:26:1a:a1:42:37:
b9:d1:bd:8f:90:29:c1:c4:fb:51:41:03:b6:40:23:
e8:10:a3:d2:68:17:02:4a:5b:34:13:33:93:24:3f:
d7:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:40:D5:38:83:07:1E:6F:44:8D:48:A1:C2:5F:C6:36:C3:EE:DF:B9
X509v3 Authority Key Identifier:
keyid:6E:40:67:D7:7B:FE:A9:9D:F2:5C:E5:E0:8A:92:13:D1:12:80:14:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bkBn13v-qZ3yXOXgipIT0RKAFM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/589eca-3f19-4e23-a3fb-3303f71622f9/1/40DVOIMHHm9EjUihwl_GNsPu37k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/589eca-3f19-4e23-a3fb-3303f71622f9/1/bkBn13v-qZ3yXOXgipIT0RKAFM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.131.80.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:65:41:cd:a1:70:20:38:0d:95:19:61:61:c1:61:97:d9:ce:
12:78:fe:05:6b:73:e7:35:0a:06:29:d4:61:d6:0d:1a:df:bd:
06:34:8c:06:aa:8b:2a:78:b6:8f:7a:ca:d9:50:49:2e:ea:dc:
90:1a:8a:92:74:d6:60:ce:0d:ad:2e:28:23:20:72:40:45:67:
e9:20:09:d7:dd:ce:ed:1b:52:44:c4:04:1f:60:49:0f:c2:3e:
59:0d:28:8f:93:11:4f:e8:36:c9:27:9b:33:10:0d:22:07:92:
37:36:51:0f:91:05:69:30:d4:af:aa:4a:89:7d:73:ff:fc:df:
80:28:2f:d4:81:e6:fe:f5:01:b3:50:5e:e9:de:4f:a2:0f:72:
bd:43:ad:e0:7b:55:99:98:7c:59:ef:a2:5e:fd:fe:4b:c3:f7:
16:86:17:cf:bc:46:53:fb:07:17:7b:fd:1e:da:de:74:01:b4:
81:b4:0e:f5:93:bd:05:37:9c:56:5a:b5:d7:77:4d:1d:ec:00:
32:49:ff:92:9b:7b:ca:48:96:e7:01:61:80:9a:e6:27:8a:90:
d0:a3:d0:ea:72:7a:b5:57:de:5c:72:7d:8a:86:35:93:5f:0c:
5c:2e:20:15:42:c9:e7:f8:a9:6c:76:cc:fe:c9:24:a3:23:58:
bb:9c:87:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:39 2024 by rpki-client on console-ams.rpki-client.org