Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/381125-0248-4ebc-a74d-b8dad6e5c3bf/1/vqHtEbq1ktB6qS2TBuE3BDj3aHY.roa
File: vqHtEbq1ktB6qS2TBuE3BDj3aHY.roa (raw, json)
Hash identifier: lpUTOE6AuNNILMjUG5QNtWgjwJjmHpYO7ojPCS4nyT0=
Subject key identifier: BE:A1:ED:11:BA:B5:92:D0:7A:A9:2D:93:06:E1:37:04:38:F7:68:76
Certificate issuer: /CN=374c2617a372e466e98d42532dd0bd8e5cdd993d
Certificate serial: 018570B097472A8EDBBE60198A8B51BB9B05
Authority key identifier: 37:4C:26:17:A3:72:E4:66:E9:8D:42:53:2D:D0:BD:8E:5C:DD:99:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N0wmF6Ny5GbpjUJTLdC9jlzdmT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/381125-0248-4ebc-a74d-b8dad6e5c3bf/1/vqHtEbq1ktB6qS2TBuE3BDj3aHY.roa
Signing time: Mon 02 Jan 2023 04:14:59 +0000
ROA not before: Mon 02 Jan 2023 04:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202120
IP address blocks: 185.73.95.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b0:97:47:2a:8e:db:be:60:19:8a:8b:51:bb:9b:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=374c2617a372e466e98d42532dd0bd8e5cdd993d
Validity
Not Before: Jan 2 04:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bea1ed11bab592d07aa92d9306e1370438f76876
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:02:94:7c:89:e0:75:44:ad:2f:be:fb:62:51:
3f:73:a8:f5:a2:20:57:93:fa:6f:4e:82:74:17:00:
12:ba:e4:18:66:60:4d:f6:b9:bf:86:01:17:da:2f:
de:b0:3f:c1:0f:bd:cb:4d:69:7f:4e:28:aa:74:25:
ce:02:ea:e3:0e:bf:b0:23:92:de:6f:e5:be:71:38:
14:25:ff:dc:a4:94:9e:ec:d0:cb:25:f6:a7:e0:65:
78:7e:b9:3b:ac:fb:ff:47:5d:98:48:c2:ad:f6:f1:
c8:9a:16:97:0f:b6:62:ae:ab:05:4a:53:af:82:85:
04:de:e3:35:58:57:93:d7:8e:85:c9:e6:2f:3f:c3:
99:52:05:55:2c:c4:04:77:f6:90:2b:76:8d:d0:9f:
b5:7e:cb:ef:53:c1:a4:64:27:3a:f5:d5:df:b8:0d:
fd:7f:fe:b6:85:31:c3:2c:c4:ed:64:72:9d:e9:22:
d0:3d:2e:08:14:1b:bb:8e:c5:9a:f2:ee:6f:b6:bc:
4e:7e:1d:8d:55:a1:fc:be:ac:af:70:c1:d7:3b:61:
bb:a4:e1:49:5b:d6:ba:88:c9:58:53:a5:fa:82:41:
00:13:61:35:ee:ce:1b:c3:3e:ff:ca:b7:37:57:5e:
cf:49:06:d0:93:6c:37:6d:f2:ae:90:be:74:8d:c3:
8c:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:A1:ED:11:BA:B5:92:D0:7A:A9:2D:93:06:E1:37:04:38:F7:68:76
X509v3 Authority Key Identifier:
keyid:37:4C:26:17:A3:72:E4:66:E9:8D:42:53:2D:D0:BD:8E:5C:DD:99:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N0wmF6Ny5GbpjUJTLdC9jlzdmT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/381125-0248-4ebc-a74d-b8dad6e5c3bf/1/vqHtEbq1ktB6qS2TBuE3BDj3aHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/381125-0248-4ebc-a74d-b8dad6e5c3bf/1/N0wmF6Ny5GbpjUJTLdC9jlzdmT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.73.95.0/24
Signature Algorithm: sha256WithRSAEncryption
00:f8:df:a6:76:35:e0:19:d3:09:6c:b1:3c:87:9d:58:83:19:
bd:67:30:e0:75:c4:5f:a6:d4:3d:90:15:59:2f:54:35:f2:fa:
50:38:3e:e5:f1:dc:1a:13:4e:8d:a8:18:e0:0b:ec:81:a6:3c:
c1:7e:20:34:28:8a:37:cf:4a:5c:fe:eb:b2:28:c1:d8:68:fc:
dd:1e:fe:a5:6d:ff:6f:10:9a:0e:1d:99:cf:23:22:10:19:3a:
ac:94:ae:81:5c:01:51:f4:f6:77:19:b5:f3:eb:ce:df:c4:89:
84:a3:a4:66:ac:cb:49:fd:69:9a:73:74:d8:b9:35:aa:57:2f:
7f:ab:5f:11:07:65:e2:df:4b:2b:26:06:95:0f:de:c7:bb:d0:
c3:38:46:4e:12:14:11:c4:34:c8:99:0d:23:b2:07:6c:e7:22:
2e:80:de:7f:d4:96:fa:c2:9f:9a:dd:1e:6e:4b:d6:4f:60:65:
c3:91:ac:dd:56:0e:8c:8f:46:1c:8f:37:cc:78:6f:2c:64:3a:
b7:d3:ac:42:ba:00:b1:88:45:1d:0b:57:d8:ea:31:9b:1d:e2:
9c:f9:c2:17:4e:ef:14:15:dc:f2:84:76:0a:9d:ac:a8:d0:ea:
74:fe:6a:1d:71:c3:68:62:31:0c:48:be:ba:56:59:a4:73:ca:
43:d8:d2:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:31 2024 by rpki-client on console-fra.rpki-client.org