Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/DIrR96qVp6y6fXcedKxE5gk4Zds.roa
File: DIrR96qVp6y6fXcedKxE5gk4Zds.roa (raw, json)
Hash identifier: mQ0KKXVpg6coRwNKCr8wq0HyaqDZSIslpZ9PxIwgopg=
Subject key identifier: 0C:8A:D1:F7:AA:95:A7:AC:BA:7D:77:1E:74:AC:44:E6:09:38:65:DB
Certificate issuer: /CN=99fee7cbd8e78d1f14a453a04b916f7c1581d204
Certificate serial: 0187EBACA2E21F4BD90E535122A7883E9187
Authority key identifier: 99:FE:E7:CB:D8:E7:8D:1F:14:A4:53:A0:4B:91:6F:7C:15:81:D2:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/DIrR96qVp6y6fXcedKxE5gk4Zds.roa
Signing time: Fri 05 May 2023 11:29:32 +0000
ROA not before: Fri 05 May 2023 11:29:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210732
IP address blocks: 45.95.114.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Jun 2023 06:02:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:eb:ac:a2:e2:1f:4b:d9:0e:53:51:22:a7:88:3e:91:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99fee7cbd8e78d1f14a453a04b916f7c1581d204
Validity
Not Before: May 5 11:29:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c8ad1f7aa95a7acba7d771e74ac44e6093865db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:5f:0f:98:03:71:44:51:11:59:d0:af:49:32:
16:57:77:50:38:c5:02:b8:ef:ed:d8:17:08:24:82:
28:6d:9b:ec:67:e8:d1:8c:94:4a:bc:1c:1c:48:c0:
53:68:8c:e7:ef:2e:0b:0d:ef:c4:f4:c2:f9:e4:3c:
79:1d:ad:4c:bf:db:2c:41:c3:7c:50:d0:43:5f:c8:
5a:b2:d6:f2:61:40:48:3e:58:cf:40:43:9a:c9:40:
d5:fe:0a:5e:9f:03:c7:4e:d6:8a:c8:e1:fa:ce:7c:
30:c3:13:5c:a5:71:ab:8a:07:7e:35:f4:8f:2f:90:
58:5c:30:3b:2c:e3:a6:19:9e:6c:68:68:ae:5f:b7:
1c:9d:d2:d9:dd:db:5d:2b:27:e4:af:bb:14:b0:6f:
08:75:9e:ef:77:92:b3:fb:91:8e:0c:ab:fd:eb:4b:
b2:79:be:63:00:20:8c:58:76:9d:c1:e0:2e:63:74:
18:bf:b0:7b:73:0c:c6:5f:12:21:14:51:63:1d:50:
da:c2:f5:ef:86:e0:c3:45:8f:d2:7a:df:35:b9:2c:
9d:b0:f2:9e:40:26:0c:94:02:69:9d:62:ef:30:d1:
b3:de:19:39:90:7f:d9:d8:07:1a:88:3d:10:46:24:
ee:fc:23:5b:5e:36:fc:f0:6a:18:18:57:93:95:18:
ea:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:8A:D1:F7:AA:95:A7:AC:BA:7D:77:1E:74:AC:44:E6:09:38:65:DB
X509v3 Authority Key Identifier:
keyid:99:FE:E7:CB:D8:E7:8D:1F:14:A4:53:A0:4B:91:6F:7C:15:81:D2:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/DIrR96qVp6y6fXcedKxE5gk4Zds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.114.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:8e:82:d8:7a:2b:da:ac:52:85:50:b5:35:78:ce:22:f8:75:
4c:e1:6b:f1:f0:7e:cd:40:02:b7:5f:e1:21:b0:24:f4:11:a5:
11:39:95:1f:30:03:de:74:d4:db:e2:46:a2:4c:49:fc:6e:92:
02:05:80:2b:0e:35:7a:28:dd:4e:ed:0b:5e:dd:e3:38:db:b2:
40:9d:33:e5:88:66:26:2f:03:80:0e:47:60:64:28:74:5e:57:
e1:4d:9c:a0:1b:d8:21:9d:38:87:ef:c9:7f:36:b3:cc:69:46:
bc:ab:22:6e:ef:37:0e:c0:2c:b3:b5:82:74:ba:06:5a:38:a2:
42:c4:ce:05:32:86:d6:fa:2c:9b:60:18:2b:05:5d:54:ac:65:
e3:32:4a:b6:9f:40:9b:ee:46:04:25:ac:2f:c3:02:1d:13:47:
ab:d7:ec:c1:55:5a:c9:5a:d7:5b:7b:45:f8:71:8a:08:81:20:
39:ef:4e:3a:eb:b7:3a:39:a7:57:65:5f:0c:13:ef:90:3b:7a:
bc:0a:9b:71:e7:92:89:9b:4a:15:fa:4d:96:2d:a9:ea:2e:19:
bd:39:a7:6f:9e:6a:37:86:ed:06:5d:82:da:f2:94:17:7c:a5:
a2:ea:04:1e:0b:ff:bb:ae:cb:3d:ec:97:8d:9e:20:0d:0c:2d:
17:a6:7d:71
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYfrrKLiH0vZDlNRIqeIPpGHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5ZmVlN2NiZDhlNzhkMWYxNGE0NTNhMDRiOTE2ZjdjMTU4
MWQyMDQwHhcNMjMwNTA1MTEyOTMyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYzhhZDFmN2FhOTVhN2FjYmE3ZDc3MWU3NGFjNDRlNjA5Mzg2NWRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkl8PmANxRFERWdCvSTIWV3dQOMUC
uO/t2BcIJIIobZvsZ+jRjJRKvBwcSMBTaIzn7y4LDe/E9ML55Dx5Ha1Mv9ssQcN8
UNBDX8hastbyYUBIPljPQEOayUDV/gpenwPHTtaKyOH6znwwwxNcpXGrigd+NfSP
L5BYXDA7LOOmGZ5saGiuX7ccndLZ3dtdKyfkr7sUsG8IdZ7vd5Kz+5GODKv960uy
eb5jACCMWHadweAuY3QYv7B7cwzGXxIhFFFjHVDawvXvhuDDRY/Set81uSydsPKe
QCYMlAJpnWLvMNGz3hk5kH/Z2AcaiD0QRiTu/CNbXjb88GoYGFeTlRjqpwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAyK0feqlaesun13HnSsROYJOGXbMB8GA1UdIwQY
MBaAFJn+58vY540fFKRToEuRb3wVgdIEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbWY3bnk5am5qUjhVcEZPZ1M1RnZmQldCMGdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8wZGQ0Y2ItMWY3Mi00MGVkLWE2NTct
MWMyMmVmZjcyODE4LzEvRElyUjk2cVZwNnk2ZlhjZWRLeEU1Z2s0WmRzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS8wZGQ0Y2ItMWY3Mi00MGVkLWE2NTctMWMyMmVmZjcyODE4
LzEvbWY3bnk5am5qUjhVcEZPZ1M1RnZmQldCMGdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALV9yMA0G
CSqGSIb3DQEBCwUAA4IBAQC/joLYeivarFKFULU1eM4i+HVM4Wvx8H7NQAK3X+Eh
sCT0EaUROZUfMAPedNTb4kaiTEn8bpICBYArDjV6KN1O7Qte3eM427JAnTPliGYm
LwOADkdgZCh0XlfhTZygG9ghnTiH78l/NrPMaUa8qyJu7zcOwCyztYJ0ugZaOKJC
xM4FMobW+iybYBgrBV1UrGXjMkq2n0Cb7kYEJawvwwIdE0er1+zBVVrJWtdbe0X4
cYoIgSA5704667c6OadXZV8ME++QO3q8Cptx55KJm0oV+k2WLanqLhm9Oadvnmo3
hu0GXYLa8pQXfKWi6gQeC/+7rss97JeNniANDC0Xpn1x
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:15 2024 by rpki-client on console-fra.rpki-client.org