Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/vSTkB3sYj5hvCX0n1WElZh6cL7U.roa
File: vSTkB3sYj5hvCX0n1WElZh6cL7U.roa (raw, json)
Hash identifier: SNGZGBVdqwR/XEDhePZ1YGDXMC9QVh3lZJTJ/K+yA0s=
Subject key identifier: BD:24:E4:07:7B:18:8F:98:6F:09:7D:27:D5:61:25:66:1E:9C:2F:B5
Certificate issuer: /CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Certificate serial: 0188959D4931738726B2152ED45946248EC9
Authority key identifier: E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/vSTkB3sYj5hvCX0n1WElZh6cL7U.roa
Signing time: Wed 07 Jun 2023 11:28:12 +0000
ROA not before: Wed 07 Jun 2023 11:28:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200923
IP address blocks: 95.140.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:95:9d:49:31:73:87:26:b2:15:2e:d4:59:46:24:8e:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Validity
Not Before: Jun 7 11:28:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd24e4077b188f986f097d27d56125661e9c2fb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:eb:51:1d:a7:10:bf:06:b9:df:fc:f8:c1:3e:
21:74:59:01:4e:8f:e4:d7:b7:5b:fc:8b:8a:11:e1:
20:76:73:80:8f:32:6f:67:b8:aa:23:5c:75:02:14:
45:e0:01:1c:73:22:bc:68:4a:75:5a:a2:96:15:32:
8d:9b:f5:24:f5:b8:e9:dc:12:ac:ad:d9:1a:1d:23:
3e:b3:d0:3a:0f:30:58:cf:9b:9a:fd:00:53:cd:3a:
ed:2a:47:44:4a:b1:71:bc:12:4e:32:e2:10:33:9d:
98:ac:ad:2b:a1:31:32:96:6a:af:05:b5:de:99:68:
45:5a:4f:df:91:89:0e:cb:ca:8c:15:fb:1b:08:87:
30:46:c2:dd:d0:61:2d:6c:d1:5e:fe:2c:c3:a2:26:
79:e1:00:f2:f3:2a:13:5c:36:e8:0f:ce:c9:60:ed:
ac:6d:14:79:a9:a3:fb:fe:e1:3a:7f:89:6d:01:b9:
32:42:e8:6c:ca:4b:94:89:66:de:44:1b:0c:b9:18:
02:48:ec:9c:18:d4:20:a6:8d:cd:05:5d:69:d2:1a:
85:06:47:88:de:c4:32:16:e7:9d:c6:4a:83:f3:3c:
e8:7f:7a:d6:64:a1:f2:1c:df:ab:c4:14:a6:ea:1f:
f0:fe:d7:28:e4:99:13:78:9c:58:7b:c6:f8:69:ab:
c7:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:24:E4:07:7B:18:8F:98:6F:09:7D:27:D5:61:25:66:1E:9C:2F:B5
X509v3 Authority Key Identifier:
keyid:E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/vSTkB3sYj5hvCX0n1WElZh6cL7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.140.123.0/24
Signature Algorithm: sha256WithRSAEncryption
54:1b:f7:68:1b:0a:c4:ed:45:6a:a4:d7:8b:17:53:55:8d:3f:
2e:eb:41:02:77:ba:9f:a0:38:0d:e6:f6:62:57:fa:d2:ac:76:
3a:90:a5:9f:5c:ba:2b:2a:1f:f8:da:8c:b1:c0:53:90:3a:8a:
5b:b1:4e:cf:72:fc:ec:1b:27:54:2b:fb:ae:58:e3:b6:81:2f:
a7:4a:8a:b0:8e:79:66:1d:52:c6:cd:a8:de:e1:68:2c:f5:2c:
04:42:4b:b8:45:62:05:02:7e:d1:c9:1a:9e:4c:f1:15:d5:03:
14:3c:c6:39:e4:64:40:32:a5:15:50:ce:e3:b4:0e:f6:9c:57:
03:ec:19:a4:22:a6:90:a6:ab:ab:d1:db:c4:64:a9:45:d7:d9:
0e:aa:00:0f:45:59:87:c3:cd:e6:36:58:de:1d:b0:1f:38:b5:
03:60:7c:f6:4b:7c:a6:5a:97:85:27:ab:de:c5:5a:70:63:2d:
99:85:76:5d:7a:50:e1:c3:6f:fd:31:d4:6a:8c:a3:44:19:d5:
62:da:1e:2b:01:25:c7:c1:a5:98:db:55:82:ad:52:8e:aa:96:
75:da:6e:e2:9e:25:09:bf:9b:6a:83:9a:d7:48:26:ea:3c:2f:
53:81:86:4d:32:1b:a6:96:cd:2b:c1:f6:f9:df:b5:c4:ac:d7:
4c:30:24:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:45 2024 by rpki-client on console-fra.rpki-client.org