Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/xqy7v-ocXX90GxOtUsNpRhUwxzs.roa
File: xqy7v-ocXX90GxOtUsNpRhUwxzs.roa (raw, json)
Hash identifier: OX+RAKbCVS7sdsW8OaXtdzUPwnjDdIQmP5vGZoyqEao=
Subject key identifier: C6:AC:BB:BF:EA:1C:5D:7F:74:1B:13:AD:52:C3:69:46:15:30:C7:3B
Certificate issuer: /CN=99fee7cbd8e78d1f14a453a04b916f7c1581d204
Certificate serial: 018CC86F515714AEC1FB354D4616C3729450
Authority key identifier: 99:FE:E7:CB:D8:E7:8D:1F:14:A4:53:A0:4B:91:6F:7C:15:81:D2:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/xqy7v-ocXX90GxOtUsNpRhUwxzs.roa
Signing time: Tue 02 Jan 2024 04:29:47 +0000
ROA not before: Tue 02 Jan 2024 04:29:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210732
IP address blocks: 45.95.114.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 26 Jan 2024 14:56:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:51:57:14:ae:c1:fb:35:4d:46:16:c3:72:94:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99fee7cbd8e78d1f14a453a04b916f7c1581d204
Validity
Not Before: Jan 2 04:29:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c6acbbbfea1c5d7f741b13ad52c369461530c73b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:3d:ba:1b:14:3e:5d:3a:ff:c0:17:0d:aa:65:
44:11:7a:6e:ba:db:c3:fa:ba:2d:8c:35:84:3c:5f:
9a:0a:43:b3:22:45:ae:ae:78:a3:6d:47:04:1a:36:
18:c6:ff:52:f8:1c:a2:3c:b0:23:2b:01:89:eb:2f:
7a:28:f9:67:d7:cc:ae:46:e8:77:de:ea:ab:09:a8:
aa:a3:92:d9:ac:2a:5f:68:71:1b:e0:5e:b3:0f:11:
ce:a7:cf:fb:df:48:1a:aa:4e:d8:0d:38:1d:0a:00:
0e:79:ae:6d:00:b9:16:de:a7:b0:72:2c:b3:a7:fd:
49:ce:fb:3c:62:f9:3f:35:2f:a1:ae:63:42:e8:97:
e8:2b:4a:d2:76:bb:66:5f:31:e0:34:43:cf:0c:f6:
f2:13:4b:af:c3:67:d5:19:bf:81:8c:02:0d:f3:5d:
5a:cb:73:d7:13:19:1e:90:ad:80:98:7b:ee:34:73:
2d:bf:7f:b4:3d:ff:74:fc:f0:f8:50:ff:6f:42:22:
5d:49:ac:6a:9c:c0:d6:f1:e8:02:a7:0b:cc:8d:9d:
7a:fa:7a:10:d0:86:df:74:fb:82:db:ca:ad:70:50:
0e:9e:d5:f6:d5:a4:96:d8:52:36:68:b4:67:33:53:
36:b5:1f:42:7a:98:5d:26:c6:73:1e:6c:1d:6a:9b:
f9:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:AC:BB:BF:EA:1C:5D:7F:74:1B:13:AD:52:C3:69:46:15:30:C7:3B
X509v3 Authority Key Identifier:
keyid:99:FE:E7:CB:D8:E7:8D:1F:14:A4:53:A0:4B:91:6F:7C:15:81:D2:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/xqy7v-ocXX90GxOtUsNpRhUwxzs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.114.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:b7:63:a5:4f:00:34:f9:a1:23:8f:20:2f:5b:27:b4:d5:2d:
61:12:18:11:f3:c8:60:98:71:97:87:e5:60:85:4f:23:d9:b8:
4c:24:25:91:ba:47:ef:a6:98:9e:e1:37:d3:46:86:51:d2:ff:
4a:84:36:7c:a3:1f:98:fb:97:64:6d:44:7a:24:7e:62:2c:52:
53:a7:40:94:58:cd:6d:0f:2d:10:de:31:e5:c4:d2:c3:16:e4:
63:c4:30:54:3b:4a:69:3e:ab:02:b7:7f:ca:57:62:16:50:b8:
03:a3:09:76:a5:e2:a3:87:50:8b:dc:bc:d7:e5:37:38:81:e3:
d1:cf:ef:e9:fe:55:ed:e2:7b:e4:5b:21:a3:05:eb:37:f6:7e:
ec:fd:45:b8:00:22:f1:50:8d:44:3c:28:fc:23:1e:b3:96:00:
9f:4a:df:12:a2:4a:49:bc:4a:1d:88:31:2f:14:31:83:e1:d7:
24:01:7b:c0:69:69:8c:ae:78:79:66:e5:77:c0:d0:66:35:96:
d9:5c:52:ec:d9:b3:b6:cb:ca:6b:c7:bb:43:24:0a:7e:fd:c0:
21:db:50:22:6f:ed:3b:87:a4:3a:9e:dd:bf:88:f1:84:9c:88:
33:ce:0b:17:9f:92:5a:49:ca:af:47:62:6f:b3:0b:05:79:8b:
69:82:86:05
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzIb1FXFK7B+zVNRhbDcpRQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5ZmVlN2NiZDhlNzhkMWYxNGE0NTNhMDRiOTE2ZjdjMTU4
MWQyMDQwHhcNMjQwMTAyMDQyOTQ3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNmFjYmJiZmVhMWM1ZDdmNzQxYjEzYWQ1MmMzNjk0NjE1MzBjNzNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApD26GxQ+XTr/wBcNqmVEEXpuutvD
+rotjDWEPF+aCkOzIkWurnijbUcEGjYYxv9S+ByiPLAjKwGJ6y96KPln18yuRuh3
3uqrCaiqo5LZrCpfaHEb4F6zDxHOp8/730gaqk7YDTgdCgAOea5tALkW3qewciyz
p/1Jzvs8Yvk/NS+hrmNC6JfoK0rSdrtmXzHgNEPPDPbyE0uvw2fVGb+BjAIN811a
y3PXExkekK2AmHvuNHMtv3+0Pf90/PD4UP9vQiJdSaxqnMDW8egCpwvMjZ16+noQ
0IbfdPuC28qtcFAOntX21aSW2FI2aLRnM1M2tR9CephdJsZzHmwdapv5+wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMasu7/qHF1/dBsTrVLDaUYVMMc7MB8GA1UdIwQY
MBaAFJn+58vY540fFKRToEuRb3wVgdIEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbWY3bnk5am5qUjhVcEZPZ1M1RnZmQldCMGdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8wZGQ0Y2ItMWY3Mi00MGVkLWE2NTct
MWMyMmVmZjcyODE4LzEveHF5N3Ytb2NYWDkwR3hPdFVzTnBSaFV3eHpzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS8wZGQ0Y2ItMWY3Mi00MGVkLWE2NTctMWMyMmVmZjcyODE4
LzEvbWY3bnk5am5qUjhVcEZPZ1M1RnZmQldCMGdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALV9yMA0G
CSqGSIb3DQEBCwUAA4IBAQBet2OlTwA0+aEjjyAvWye01S1hEhgR88hgmHGXh+Vg
hU8j2bhMJCWRukfvppie4TfTRoZR0v9KhDZ8ox+Y+5dkbUR6JH5iLFJTp0CUWM1t
Dy0Q3jHlxNLDFuRjxDBUO0ppPqsCt3/KV2IWULgDowl2peKjh1CL3LzX5Tc4gePR
z+/p/lXt4nvkWyGjBes39n7s/UW4ACLxUI1EPCj8Ix6zlgCfSt8SokpJvEodiDEv
FDGD4dckAXvAaWmMrnh5ZuV3wNBmNZbZXFLs2bO2y8prx7tDJAp+/cAh21Aib+07
h6Q6nt2/iPGEnIgzzgsXn5JaScqvR2JvswsFeYtpgoYF
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:15 2024 by rpki-client on console-fra.rpki-client.org