Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/fUrLyoNGTc1Tg0R4wh96sPwOFBQ.roa
File: fUrLyoNGTc1Tg0R4wh96sPwOFBQ.roa (raw, json)
Hash identifier: GYeL0i6+BefyDlVG391fLaiyPZK+RVHKKQGL3AbV6lo=
Subject key identifier: 7D:4A:CB:CA:83:46:4D:CD:53:83:44:78:C2:1F:7A:B0:FC:0E:14:14
Certificate issuer: /CN=99fee7cbd8e78d1f14a453a04b916f7c1581d204
Certificate serial: 01856EF8E60065FDF6D2DC882A99392CFC4D
Authority key identifier: 99:FE:E7:CB:D8:E7:8D:1F:14:A4:53:A0:4B:91:6F:7C:15:81:D2:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/fUrLyoNGTc1Tg0R4wh96sPwOFBQ.roa
Signing time: Sun 01 Jan 2023 20:14:43 +0000
ROA not before: Sun 01 Jan 2023 20:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47969
IP address blocks: 45.95.112.0/24 maxlen: 24
45.158.78.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:f8:e6:00:65:fd:f6:d2:dc:88:2a:99:39:2c:fc:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99fee7cbd8e78d1f14a453a04b916f7c1581d204
Validity
Not Before: Jan 1 20:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d4acbca83464dcd53834478c21f7ab0fc0e1414
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:eb:18:f3:49:ce:d5:fa:13:ea:84:c3:11:56:
62:cb:f2:2d:d4:4e:79:a7:8a:a1:3d:5c:b0:70:f4:
12:ae:2d:aa:6b:77:9d:0d:d7:60:fe:d3:23:b1:6f:
35:67:af:7c:30:43:84:c0:ed:d8:d7:e6:1a:3f:23:
ce:43:19:1e:be:b7:7b:7e:e8:14:19:9f:13:da:b0:
48:53:86:b8:0b:36:38:50:8d:4a:c0:22:df:49:89:
25:5d:55:1c:48:6c:61:15:99:43:2b:06:58:6e:33:
18:46:bb:5d:c8:01:27:2e:40:e9:88:90:5a:1c:43:
1c:fb:0a:38:47:7c:57:77:a1:ae:de:d8:42:15:1e:
c3:1d:a8:94:a2:a6:b6:a9:9c:77:0b:77:02:8f:bc:
f7:1b:3d:c2:60:e9:ba:6a:40:86:7a:95:91:71:09:
9f:c1:c2:75:15:f4:42:ce:2f:25:c7:de:ac:3b:98:
20:47:dd:06:29:97:7f:0d:c7:f1:4e:6d:c9:37:c1:
d4:b1:cd:de:46:bb:e8:d9:60:d8:68:02:bc:24:a0:
9d:0b:11:35:08:2f:a8:11:9e:f3:f3:72:81:c3:27:
0a:aa:5c:e5:7b:08:84:42:9b:48:87:97:bc:29:27:
bc:be:e8:78:42:09:ca:54:ae:a4:4d:e5:81:3d:db:
7f:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:4A:CB:CA:83:46:4D:CD:53:83:44:78:C2:1F:7A:B0:FC:0E:14:14
X509v3 Authority Key Identifier:
keyid:99:FE:E7:CB:D8:E7:8D:1F:14:A4:53:A0:4B:91:6F:7C:15:81:D2:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/fUrLyoNGTc1Tg0R4wh96sPwOFBQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.112.0/24
45.158.78.0/23
Signature Algorithm: sha256WithRSAEncryption
98:26:07:1a:56:0b:0b:78:d7:10:ce:15:0d:35:a6:8e:b3:c5:
b1:b0:c9:c3:f3:7f:83:9e:ab:ac:82:e1:8f:d2:0f:af:6d:98:
af:9e:12:66:e3:b8:6c:ef:bf:ec:50:8d:14:b6:c5:ae:19:c3:
70:20:ab:2b:08:c5:96:cd:97:64:4d:b5:90:f7:70:61:ac:2d:
c3:9c:80:49:ca:f6:24:29:c1:9f:35:a3:20:e6:b5:5b:d7:39:
96:e8:0b:2d:6a:48:8b:7c:0c:0b:35:a4:59:26:f1:25:1c:c6:
8d:3e:67:96:39:bf:e2:29:2c:69:a0:1d:47:22:f2:21:b5:59:
8b:94:ec:03:0c:8d:bb:79:93:03:ec:8c:b9:12:3d:32:47:a2:
27:b7:c6:50:a3:9a:7b:75:d6:99:ac:ba:5a:08:9b:d8:ee:98:
e1:fd:e3:eb:bd:f4:be:70:4c:17:a8:01:cc:2a:eb:d9:94:d4:
f5:68:f7:e3:1f:0d:50:d8:cb:8d:6a:d5:bc:5b:81:37:2e:2c:
50:5e:fa:4f:98:d6:7e:99:37:11:38:96:84:68:36:f0:40:1d:
b8:47:49:1e:21:7e:64:11:94:25:ef:12:01:b6:b0:f1:33:7e:
12:7e:54:54:94:4a:5b:63:76:de:b7:65:25:f1:a3:63:e8:35:
59:8c:7a:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:15 2024 by rpki-client on console-fra.rpki-client.org