Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/LEaZdEo7GyJM_LXwfr71xpANOUk.roa
File: LEaZdEo7GyJM_LXwfr71xpANOUk.roa (raw, json)
Hash identifier: RB3ZQ+tIXIwqsyqb218D9L3WCc1tSJoXmKQJ3A7zQbo=
Subject key identifier: 2C:46:99:74:4A:3B:1B:22:4C:FC:B5:F0:7E:BE:F5:C6:90:0D:39:49
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 01857095A27481A04F525319F24FF510128F
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/LEaZdEo7GyJM_LXwfr71xpANOUk.roa
Signing time: Mon 02 Jan 2023 03:45:32 +0000
ROA not before: Mon 02 Jan 2023 03:45:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207348
IP address blocks: 93.170.240.0/23 maxlen: 24
95.47.160.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:a2:74:81:a0:4f:52:53:19:f2:4f:f5:10:12:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2c4699744a3b1b224cfcb5f07ebef5c6900d3949
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:54:d9:db:d9:14:3a:27:48:ec:e5:53:af:2b:
ae:d1:2a:34:5a:4b:d4:26:a8:09:10:c4:a9:a4:fa:
8d:e8:7c:fd:2f:6d:bc:f2:79:46:ab:da:e6:76:c6:
75:31:17:dc:7d:47:b7:82:31:43:ff:73:c2:b3:43:
69:fd:4b:75:21:db:b0:29:e2:e7:cf:63:fa:60:7a:
bf:06:38:ed:02:f2:8b:e7:c5:10:d6:f8:7a:d1:3e:
22:b2:c0:a7:e2:c3:20:5a:27:e2:cd:1e:b0:a8:e2:
42:28:cb:fd:cc:bd:e3:9e:3d:43:b3:c1:0f:9a:78:
4d:9a:20:44:c6:cb:75:63:88:5d:d5:60:7b:84:ac:
b5:4d:cc:c8:2e:81:95:35:43:02:8f:ba:c2:74:c0:
55:81:b6:0d:66:b3:2e:c2:6c:59:d8:29:62:70:e5:
f1:e4:4e:47:6c:ad:82:23:c2:eb:c8:c7:8e:de:df:
52:54:69:bc:17:4d:d6:74:c6:af:0f:2a:9f:39:1c:
04:56:b3:bd:f9:4d:34:d0:93:a6:a5:a6:d2:35:71:
f3:29:8a:f3:e6:7a:98:8d:75:cf:f6:11:75:c5:33:
5d:f9:76:ba:2c:99:be:43:a2:a3:c6:d0:f8:5e:11:
d1:14:1e:94:81:e2:11:1f:b6:50:db:ba:b3:c7:22:
92:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:46:99:74:4A:3B:1B:22:4C:FC:B5:F0:7E:BE:F5:C6:90:0D:39:49
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/LEaZdEo7GyJM_LXwfr71xpANOUk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.240.0/23
95.47.160.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:4e:d0:af:99:cf:01:b1:fd:ea:ca:37:eb:38:c2:1f:3f:22:
59:57:5f:e5:ac:20:e6:50:de:c4:68:f1:73:d2:25:0f:d3:6d:
88:87:4e:59:5f:f0:1d:2c:f6:3b:2b:e1:0f:91:76:c5:32:fc:
da:0e:3c:19:75:9b:bc:b1:41:98:d4:63:c6:2b:fd:0a:ac:7e:
fc:05:d8:eb:3f:50:e5:ef:cf:38:2b:13:8b:1f:e3:6e:79:36:
17:30:d3:3a:97:a7:ff:97:a4:31:1d:d7:6c:1f:aa:07:24:6c:
ab:84:26:39:59:57:ec:4a:97:d7:33:c7:e3:67:b2:e1:70:3d:
e5:b3:a6:a2:51:86:a4:66:b3:48:8b:91:93:47:21:96:04:5a:
ef:59:d9:ec:e3:d1:54:e2:36:0e:1b:bd:ba:66:5c:a0:5a:be:
c3:8e:b1:99:da:cf:55:2e:35:46:69:36:b9:77:c9:9e:34:e7:
67:bf:e9:b9:89:dd:0d:28:c4:d3:9b:b5:13:59:67:d5:e3:c8:
a9:60:96:6d:96:fa:5e:53:1f:14:a0:72:b1:be:fe:4d:1a:e1:
5c:17:7a:e1:05:ab:75:16:9d:10:01:53:97:a7:4e:3c:a1:88:
14:17:ac:6f:58:fd:f3:cc:b9:3c:78:96:94:1a:ff:3f:50:b5:
7a:1f:d2:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:50 2024 by rpki-client on console-ams.rpki-client.org