Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/SaKxgojHHhO8WCyKkVXi7X0B5nk.roa
File: SaKxgojHHhO8WCyKkVXi7X0B5nk.roa (raw, json)
Hash identifier: PEJsgCYRomB8zjybFUegtHOSOUPwIO5Lr2UgmKDwd68=
Subject key identifier: 49:A2:B1:82:88:C7:1E:13:BC:58:2C:8A:91:55:E2:ED:7D:01:E6:79
Certificate issuer: /CN=99fee7cbd8e78d1f14a453a04b916f7c1581d204
Certificate serial: 01856EF8E6F3AB42AF7BF586821AFE549744
Authority key identifier: 99:FE:E7:CB:D8:E7:8D:1F:14:A4:53:A0:4B:91:6F:7C:15:81:D2:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/SaKxgojHHhO8WCyKkVXi7X0B5nk.roa
Signing time: Sun 01 Jan 2023 20:14:43 +0000
ROA not before: Sun 01 Jan 2023 20:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207320
IP address blocks: 45.95.113.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 01 Dec 2023 08:16:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:f8:e6:f3:ab:42:af:7b:f5:86:82:1a:fe:54:97:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99fee7cbd8e78d1f14a453a04b916f7c1581d204
Validity
Not Before: Jan 1 20:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=49a2b18288c71e13bc582c8a9155e2ed7d01e679
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:32:f5:b5:04:a7:5e:23:7c:27:8a:06:5f:64:
f1:e3:29:e2:c1:92:ce:26:3d:7f:77:17:ac:27:b4:
d8:cf:30:f3:2d:37:82:83:51:fb:72:88:0f:f5:fa:
04:ec:7c:84:c5:83:69:d5:dc:53:cc:16:da:0b:62:
e0:c6:3e:7f:fc:e9:9a:dd:fb:75:63:89:33:99:91:
87:bb:71:c6:1f:78:66:ed:32:93:26:f1:64:7e:71:
a2:3f:68:f5:7e:3b:81:60:0f:47:ef:48:db:00:ce:
1f:3c:70:84:e3:15:d8:9c:db:83:09:1f:88:9e:15:
fd:8e:38:d9:bf:d5:ef:24:17:21:05:15:a6:ca:1b:
dc:45:23:f1:55:3d:da:84:8d:a2:3e:a1:f9:95:d4:
e3:17:79:8f:3e:c2:c3:e3:76:e5:5d:ad:6a:6c:ff:
28:ee:d2:79:14:fc:5a:30:0f:75:c5:8e:8b:65:dc:
d7:68:f6:c9:76:5e:d0:f1:e4:74:04:b1:7c:bb:c5:
b2:2e:16:ff:a7:47:bd:4c:e8:34:94:58:b9:cc:2c:
69:43:99:61:b6:1b:7d:bb:bb:58:b7:72:97:93:ad:
20:eb:c7:1f:03:2e:51:6e:5f:a6:0b:f5:a5:3c:2e:
3a:07:e0:30:9d:86:bd:95:38:b0:da:8b:c9:3b:13:
03:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:A2:B1:82:88:C7:1E:13:BC:58:2C:8A:91:55:E2:ED:7D:01:E6:79
X509v3 Authority Key Identifier:
keyid:99:FE:E7:CB:D8:E7:8D:1F:14:A4:53:A0:4B:91:6F:7C:15:81:D2:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/SaKxgojHHhO8WCyKkVXi7X0B5nk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.113.0/24
Signature Algorithm: sha256WithRSAEncryption
66:91:ca:a6:9c:4c:63:69:09:b4:52:03:a0:b6:0a:f1:82:32:
ef:22:91:93:54:06:33:69:91:5e:46:3c:9d:f4:9d:28:e6:d3:
3a:54:fc:f8:dd:94:f5:1c:e3:c4:4d:c2:82:c9:fd:85:92:00:
ca:bb:62:1f:93:e0:bf:25:90:54:c3:a9:b0:bf:3e:ff:1a:fc:
0c:bf:2f:49:ae:20:b9:03:e3:af:e3:f0:25:c8:fc:59:7f:44:
57:2f:0c:b2:ea:6d:90:33:49:b4:bd:e6:17:4f:ac:08:96:9b:
78:c0:b4:8c:59:61:07:ca:69:36:c5:ba:04:0f:1c:f1:6c:1b:
f2:a6:58:ff:cc:07:6a:a9:cf:27:08:b0:4d:a6:95:36:ee:2f:
2b:5e:37:2e:0a:62:b0:b3:af:3d:50:3e:c8:c9:29:6d:47:3e:
b3:c1:4a:d9:b0:79:bc:94:11:d8:8c:49:ef:e0:6f:6b:34:ed:
aa:3f:da:1f:27:8a:de:e6:a1:9e:fd:71:63:16:52:49:20:cf:
a6:bb:a6:e0:e0:a8:ca:40:a8:2d:14:0b:24:b4:49:16:08:4c:
c2:5e:5f:47:d9:7c:d4:6a:24:21:1e:0a:62:73:e9:f1:04:fe:
c6:fa:df:bd:73:a4:b2:25:c1:68:05:b1:1e:d6:cf:52:e9:e0:
d8:83:78:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:37 2024 by rpki-client on console-ams.rpki-client.org