Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/5_h7R49ZhBccVLf303FZE7P1VqA.roa
File: 5_h7R49ZhBccVLf303FZE7P1VqA.roa (raw, json)
Hash identifier: rQAWCrxhAMBX0kmiReMsyjr4bXHQnJxYqg7COK8LoQo=
Subject key identifier: E7:F8:7B:47:8F:59:84:17:1C:54:B7:F7:D3:71:59:13:B3:F5:56:A0
Certificate issuer: /CN=99fee7cbd8e78d1f14a453a04b916f7c1581d204
Certificate serial: 01856EF8E50898855FD9DC36EA9E1AA519CE
Authority key identifier: 99:FE:E7:CB:D8:E7:8D:1F:14:A4:53:A0:4B:91:6F:7C:15:81:D2:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/5_h7R49ZhBccVLf303FZE7P1VqA.roa
Signing time: Sun 01 Jan 2023 20:14:43 +0000
ROA not before: Sun 01 Jan 2023 20:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 45.95.113.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:f8:e5:08:98:85:5f:d9:dc:36:ea:9e:1a:a5:19:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99fee7cbd8e78d1f14a453a04b916f7c1581d204
Validity
Not Before: Jan 1 20:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7f87b478f5984171c54b7f7d3715913b3f556a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:1e:ff:c9:83:5b:fd:44:f2:2c:9e:32:08:0c:
da:13:85:5b:30:30:78:ff:b4:84:95:bc:a7:a5:49:
a4:54:1d:bd:38:90:b2:10:1a:9c:d6:73:4a:52:17:
98:7e:19:7f:48:a9:2b:8b:b7:ff:07:3b:05:01:21:
11:cf:b4:e7:73:ad:bd:fb:b3:9b:14:07:9d:38:fa:
7a:2f:e2:7a:17:da:1f:67:59:e7:36:69:bc:a5:ad:
f2:3e:23:cc:e2:16:64:fe:61:b7:ab:c5:bf:3d:55:
12:3e:6f:b8:30:cd:ac:9b:c1:6d:24:ef:60:1d:e3:
b1:a3:ce:43:0c:7a:a2:f4:03:60:8e:52:9c:12:b0:
e2:bc:e2:80:e1:8f:3a:6c:86:5a:c3:bf:9c:4f:a5:
19:7d:2a:1f:14:6e:1f:b7:f3:b1:b9:06:5f:5b:cd:
47:d2:3c:97:1e:5f:dd:fb:52:3e:4b:b3:d1:e7:36:
10:06:bb:97:b2:a4:a7:a2:ee:ca:11:bb:09:ca:58:
23:b1:cd:28:56:3c:22:4a:b7:49:26:8c:64:1e:0f:
08:3d:cf:25:51:f1:33:61:4d:5c:f2:a8:fd:7f:a0:
13:ed:59:09:ed:13:a5:c0:f2:6c:dd:3f:22:cd:fc:
35:b9:88:43:ae:e4:88:6d:72:38:b6:b3:b5:da:31:
98:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:F8:7B:47:8F:59:84:17:1C:54:B7:F7:D3:71:59:13:B3:F5:56:A0
X509v3 Authority Key Identifier:
keyid:99:FE:E7:CB:D8:E7:8D:1F:14:A4:53:A0:4B:91:6F:7C:15:81:D2:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/5_h7R49ZhBccVLf303FZE7P1VqA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.113.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:41:2d:bb:d9:ee:4c:6b:5a:64:ad:10:14:85:2c:03:0c:c6:
9f:48:8d:94:12:e3:94:b6:1a:23:1d:0f:5a:d5:35:16:f8:3a:
90:02:ba:c5:52:06:f3:5c:65:c8:36:5f:63:f3:9f:ad:51:a6:
aa:84:6f:28:73:0f:d5:eb:c7:8b:26:5b:bd:bb:f1:de:ba:92:
64:b5:28:40:b0:29:90:45:97:71:25:72:e9:c3:b8:67:ee:c4:
c2:d0:06:41:fc:90:c3:d6:75:31:c2:ea:aa:ee:6d:a8:bc:85:
e7:f3:e2:70:4b:a2:b1:72:26:ae:61:dd:80:0c:ac:54:b3:a9:
67:0e:03:00:92:07:b0:95:b0:81:4a:13:4e:de:e3:1e:5d:de:
e1:6a:e5:ee:18:5d:be:d0:9e:bc:3b:07:82:a7:7c:36:aa:d2:
5a:78:8f:a6:97:06:69:33:c9:cf:eb:4e:75:cf:e3:1d:fd:70:
4a:7d:bb:3c:03:ab:93:51:c1:55:e8:1f:59:f3:33:34:74:b6:
f7:9c:dd:d4:2f:d9:15:cb:1e:c2:9a:b5:9d:ac:14:aa:f8:f9:
0b:d5:1d:58:a3:98:db:7f:ad:d2:45:39:39:6a:d2:9f:10:eb:
7c:c8:40:f0:f2:20:80:02:2d:fc:d5:17:33:cb:1a:8a:b4:26:
31:22:83:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 1 08:44:00 2023 by rpki-client on console-fra.rpki-client.org