Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/ZnWlsbnzpXI3h1MZTg9Bp1c1SmY.roa
File: ZnWlsbnzpXI3h1MZTg9Bp1c1SmY.roa (raw, json)
Hash identifier: hp5T//sb9KDfGQMxSHhA/rSfqhfAWNO8VCN9ehFQqnM=
Subject key identifier: 66:75:A5:B1:B9:F3:A5:72:37:87:53:19:4E:0F:41:A7:57:35:4A:66
Certificate issuer: /CN=99fee7cbd8e78d1f14a453a04b916f7c1581d204
Certificate serial: 0190B2EDE8189A4CA5E7D1A841EA1755EA02
Authority key identifier: 99:FE:E7:CB:D8:E7:8D:1F:14:A4:53:A0:4B:91:6F:7C:15:81:D2:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/ZnWlsbnzpXI3h1MZTg9Bp1c1SmY.roa
Signing time: Sun 14 Jul 2024 20:27:34 +0000
ROA not before: Sun 14 Jul 2024 20:27:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16628
IP address blocks: 45.95.114.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Jul 2024 06:34:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:b2:ed:e8:18:9a:4c:a5:e7:d1:a8:41:ea:17:55:ea:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99fee7cbd8e78d1f14a453a04b916f7c1581d204
Validity
Not Before: Jul 14 20:27:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6675a5b1b9f3a572378753194e0f41a757354a66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fd:d3:31:7f:1f:b7:39:81:b4:67:5c:fd:6f:e1:
b6:a2:9c:45:8d:d6:9e:40:ad:af:58:67:36:65:35:
40:5b:e2:e0:ef:b5:e5:1d:76:2d:1c:a8:2d:f1:81:
23:56:bd:67:04:8a:5b:22:3d:a1:30:a1:3e:ca:42:
04:54:07:9c:a4:ee:35:8b:10:31:41:79:f9:41:77:
0d:13:ba:06:82:e5:b7:65:5a:26:eb:5b:75:a1:aa:
cb:bd:1e:dc:0c:88:2e:d5:fe:85:77:d8:bd:fc:eb:
2e:50:b7:4e:6e:00:e4:ff:ec:e7:96:79:46:28:86:
87:7a:5c:be:ae:01:56:50:f8:ba:7c:ee:34:26:52:
22:f6:b6:1f:0e:60:14:29:2c:1f:d9:56:30:dd:ec:
94:43:eb:96:b7:4a:48:62:55:a7:c8:70:ed:2a:16:
91:9d:33:32:9f:ef:d4:e9:12:a0:ae:4a:64:af:f4:
28:06:37:05:94:3c:a2:74:44:ee:58:6e:3d:78:79:
74:48:49:39:c1:0f:26:81:58:9b:a5:d5:a2:d6:09:
ab:6c:47:12:fe:e5:f1:3b:19:64:e5:68:c8:6a:76:
7c:53:5d:d3:48:6e:5f:02:4e:a5:f4:44:74:f9:57:
b4:fa:7e:a6:3c:45:a2:3e:00:cb:68:8a:da:6f:2c:
46:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:75:A5:B1:B9:F3:A5:72:37:87:53:19:4E:0F:41:A7:57:35:4A:66
X509v3 Authority Key Identifier:
keyid:99:FE:E7:CB:D8:E7:8D:1F:14:A4:53:A0:4B:91:6F:7C:15:81:D2:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/ZnWlsbnzpXI3h1MZTg9Bp1c1SmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.114.0/24
Signature Algorithm: sha256WithRSAEncryption
22:e1:1b:13:03:27:24:6f:d3:fc:cb:c7:a0:5f:16:a7:2b:dc:
9d:fa:c6:00:ef:3f:93:7b:0e:74:f8:41:ca:c7:a5:40:1a:56:
99:6b:7c:6c:71:69:ff:c7:6b:a2:4c:c6:be:93:18:26:dc:a0:
7a:e0:29:c1:c1:f7:33:3d:5d:fe:4a:f4:9e:98:64:ab:d2:f4:
8d:77:eb:a9:23:85:13:89:3c:e1:27:bb:84:8f:5d:5d:30:b0:
83:e1:94:a4:2f:36:55:b1:7b:19:87:c0:aa:c7:c2:f1:11:14:
f5:7b:d3:19:e2:b2:55:28:8d:43:27:bb:af:a5:0f:0b:78:43:
68:bc:94:84:3a:93:61:3b:52:25:7a:5f:27:f3:bd:b3:c5:24:
f1:ab:54:26:dd:a9:fb:7b:56:f2:25:62:98:d9:41:2a:33:5d:
4f:6b:02:56:da:2f:8b:e4:43:3d:a1:37:3d:51:6a:f5:ce:16:
63:13:cb:5b:74:50:5a:13:2b:e2:d2:12:3d:ed:17:8a:6d:f4:
5d:69:82:f1:b7:e2:3d:b3:95:7d:15:6c:6c:57:db:6a:dc:19:
fe:85:e2:8f:f2:3a:e2:74:6c:2c:09:b0:bc:e5:40:62:a1:7b:
0b:df:12:94:19:26:2e:ef:54:f0:50:36:94:86:8f:b3:7d:7d:
88:f2:17:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 30 08:04:42 2024 by rpki-client on console-fra.rpki-client.org