Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/4d2796-7f80-43a4-b814-00395a38c37d/1/AiDejLOv1jnjjXDyrClYxY3RgeU.roa
File: AiDejLOv1jnjjXDyrClYxY3RgeU.roa (raw, json)
Hash identifier: 7Ely1wxa/x5DpR3ZWoSQzgKXW5aFNe2jZ1ZfVuoRZlM=
Subject key identifier: 02:20:DE:8C:B3:AF:D6:39:E3:8D:70:F2:AC:29:58:C5:8D:D1:81:E5
Certificate issuer: /CN=67708e05cda86bbde74edba85d1dbeb73fe7f757
Certificate serial: 01856CAF224AB464C3CBB73C2A6BA36032B4
Authority key identifier: 67:70:8E:05:CD:A8:6B:BD:E7:4E:DB:A8:5D:1D:BE:B7:3F:E7:F7:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z3COBc2oa73nTtuoXR2-tz_n91c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/4d2796-7f80-43a4-b814-00395a38c37d/1/AiDejLOv1jnjjXDyrClYxY3RgeU.roa
Signing time: Sun 01 Jan 2023 09:34:54 +0000
ROA not before: Sun 01 Jan 2023 09:34:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30734
IP address blocks: 195.95.160.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:22:4a:b4:64:c3:cb:b7:3c:2a:6b:a3:60:32:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67708e05cda86bbde74edba85d1dbeb73fe7f757
Validity
Not Before: Jan 1 09:34:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0220de8cb3afd639e38d70f2ac2958c58dd181e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ec:c9:a8:47:31:df:79:eb:4f:31:3c:b7:7d:
4b:b2:73:db:dd:4b:13:83:02:ef:f3:ca:77:df:80:
fc:4b:d3:36:69:6d:c0:ba:95:a6:03:8a:ab:f7:3a:
1c:11:7d:26:dc:50:a1:09:7b:e4:23:11:f4:92:cc:
7a:9c:bd:84:76:d8:27:a6:92:b2:1b:56:3c:7c:b1:
3e:70:f5:00:e2:f2:0b:cd:d6:53:7e:3a:51:9d:47:
e3:cc:f8:48:2f:8a:b0:1c:c1:4e:43:98:aa:a3:cc:
85:c8:85:37:5f:61:73:20:96:fc:89:f2:6a:e3:01:
61:79:75:a4:3a:5e:80:0d:88:6b:84:a9:7d:95:1d:
c1:fb:5f:a6:69:06:42:0c:b5:f3:66:48:e2:7f:6a:
52:7e:bd:a4:78:6c:60:97:4e:a0:3d:07:01:67:30:
7e:ae:01:9b:7a:27:ab:c2:16:ca:b2:f1:52:86:71:
78:1a:31:6a:0b:f5:0e:78:b7:30:e8:3d:a9:4c:c3:
0d:38:59:c2:21:6d:b7:99:20:05:f7:eb:eb:29:7e:
03:59:1b:0e:48:17:81:6d:a6:59:74:5c:fe:2d:2c:
8d:50:c6:04:76:b6:cd:c8:cf:0d:0a:1d:87:38:f1:
33:74:8e:4f:c8:27:c2:f2:e4:78:26:a2:7d:02:41:
f6:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:20:DE:8C:B3:AF:D6:39:E3:8D:70:F2:AC:29:58:C5:8D:D1:81:E5
X509v3 Authority Key Identifier:
keyid:67:70:8E:05:CD:A8:6B:BD:E7:4E:DB:A8:5D:1D:BE:B7:3F:E7:F7:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z3COBc2oa73nTtuoXR2-tz_n91c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/4d2796-7f80-43a4-b814-00395a38c37d/1/AiDejLOv1jnjjXDyrClYxY3RgeU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/4d2796-7f80-43a4-b814-00395a38c37d/1/Z3COBc2oa73nTtuoXR2-tz_n91c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.160.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:57:8e:fd:36:6a:b1:c7:55:90:b8:2e:fc:75:2d:51:62:ba:
0e:04:58:39:85:04:40:60:ca:c9:b3:33:f2:c9:8a:f5:9b:7d:
eb:83:26:07:bc:ce:87:da:ec:9b:9d:d4:cd:ec:a3:4a:89:c9:
13:a0:f1:19:8b:b2:cf:de:69:3c:d0:7b:aa:e8:0a:29:64:c6:
ca:97:86:93:a5:28:4e:6b:96:ed:bd:a6:28:57:76:68:f9:b8:
2d:b2:2a:2d:47:cb:c7:d1:01:a1:60:e2:fb:3a:30:b5:57:21:
39:88:bf:25:53:92:28:ba:b6:54:06:92:1b:e0:50:67:25:90:
46:ff:de:43:c4:c8:76:28:e5:85:16:93:52:2f:24:29:cd:65:
03:a3:d1:bb:ac:67:27:4e:ab:cc:7b:22:7c:d5:5b:c3:86:a3:
af:b9:f6:82:e6:91:55:10:b8:3e:0a:12:00:06:f4:a3:bf:59:
ce:c2:92:fc:45:3a:79:6b:ef:bd:21:32:5d:02:4a:20:a4:79:
1d:5c:32:a3:ee:d5:ad:4a:97:53:af:65:47:e9:de:50:ed:98:
7a:ca:b5:ed:93:97:a9:9e:4a:a8:96:d8:9f:ac:31:5e:9d:fe:
57:dd:5f:d4:d9:3e:c2:89:67:ec:d3:8a:a8:90:59:2d:69:08:
57:ba:fb:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:43 2024 by rpki-client on console-ams.rpki-client.org