Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/b039bc-213b-457c-96ae-3181db911a13/1/vKSzZNbL4KGVlUakGIEw7CVgcUU.roa
File: vKSzZNbL4KGVlUakGIEw7CVgcUU.roa (raw, json)
Hash identifier: dud4i+w47cQ5nkh1F0sREA4KHPKoigqCxOcwVLQZNy8=
Subject key identifier: BC:A4:B3:64:D6:CB:E0:A1:95:95:46:A4:18:81:30:EC:25:60:71:45
Certificate issuer: /CN=0d0874b333e35df14fd970e189581da093bc8093
Certificate serial: 018572712CB1AA6E6A934BC5BAA8D4942EFD
Authority key identifier: 0D:08:74:B3:33:E3:5D:F1:4F:D9:70:E1:89:58:1D:A0:93:BC:80:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQh0szPjXfFP2XDhiVgdoJO8gJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/b039bc-213b-457c-96ae-3181db911a13/1/vKSzZNbL4KGVlUakGIEw7CVgcUU.roa
Signing time: Mon 02 Jan 2023 12:24:57 +0000
ROA not before: Mon 02 Jan 2023 12:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201705
IP address blocks: 95.129.248.0/21 maxlen: 32
Validation: Failed, certificate revoked on Sun 14 May 2023 19:11:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:71:2c:b1:aa:6e:6a:93:4b:c5:ba:a8:d4:94:2e:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d0874b333e35df14fd970e189581da093bc8093
Validity
Not Before: Jan 2 12:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bca4b364d6cbe0a1959546a4188130ec25607145
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:d2:87:4f:87:76:d4:42:55:15:f8:40:12:aa:
1b:30:c1:01:b6:5f:50:84:a4:b4:05:46:2b:5e:63:
14:94:56:bc:a9:e4:5c:04:43:37:f3:a5:62:f5:a2:
64:1c:cf:df:b0:19:83:5c:b0:51:c7:ab:65:72:bf:
b8:1d:b6:18:3e:f1:0a:75:60:e4:74:39:32:0d:4d:
78:f0:5c:75:1f:8a:a1:39:1d:45:c9:6a:20:4c:f5:
11:7f:1f:6b:4a:3b:65:bd:98:93:68:c2:21:58:d5:
b4:33:4d:e8:2b:39:18:99:3a:63:fe:6e:66:fa:90:
5d:fc:65:ee:64:7a:a0:e3:8e:bf:3a:0b:4b:d3:96:
da:8d:7c:af:cb:df:a6:9c:1f:7a:39:be:1f:0c:93:
62:2e:b1:db:c1:e6:a0:93:b9:f7:79:ae:91:c0:14:
02:27:96:b3:99:cb:2e:ba:36:e7:94:d2:00:04:33:
1a:ef:25:9b:93:35:06:52:b9:26:f5:b4:c0:f5:2f:
cb:d8:7f:28:c8:25:58:ee:71:5a:b9:28:10:b4:27:
4f:89:9c:e8:16:f7:6d:0e:84:c6:57:d6:1a:50:0b:
30:dd:38:00:b5:c2:42:f4:af:8f:65:69:2c:94:ed:
a6:86:ab:ad:6f:7e:a0:0e:0c:17:00:f4:c2:d4:df:
04:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:A4:B3:64:D6:CB:E0:A1:95:95:46:A4:18:81:30:EC:25:60:71:45
X509v3 Authority Key Identifier:
keyid:0D:08:74:B3:33:E3:5D:F1:4F:D9:70:E1:89:58:1D:A0:93:BC:80:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQh0szPjXfFP2XDhiVgdoJO8gJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/b039bc-213b-457c-96ae-3181db911a13/1/vKSzZNbL4KGVlUakGIEw7CVgcUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/b039bc-213b-457c-96ae-3181db911a13/1/DQh0szPjXfFP2XDhiVgdoJO8gJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.129.248.0/21
Signature Algorithm: sha256WithRSAEncryption
25:c3:97:5d:7e:3d:b6:9c:32:09:dc:89:a7:4a:85:1e:d2:e5:
28:d6:12:f6:11:c5:3b:2c:b2:80:0c:a7:33:57:c3:7c:00:7d:
96:fb:f1:06:56:b3:ee:67:4d:ab:f3:ce:1d:1f:91:83:c5:62:
81:6a:91:a5:a7:28:5c:af:04:ad:30:f5:b4:09:f0:e9:77:28:
b3:df:bd:3f:01:c3:c6:ee:f2:8d:91:bd:05:58:e9:be:14:44:
d4:e1:89:9b:37:ef:ee:3d:f5:d3:cc:4a:b5:30:fb:cb:a9:e1:
a0:40:6a:53:46:7e:56:4e:58:31:10:8f:f1:97:d6:4e:0f:a5:
65:df:32:eb:1e:f2:79:d2:da:5c:ea:ee:bf:81:11:aa:00:47:
79:1b:d0:aa:40:a1:2f:c8:b6:10:5e:03:a8:35:17:79:c4:50:
e8:34:9a:28:8b:a3:a3:a9:69:26:8c:b8:4b:1c:e5:67:fe:58:
26:a5:01:1f:6d:66:77:ff:ce:5e:e9:4a:40:8d:af:55:bf:8d:
f1:0d:2a:23:e2:9a:26:1b:c3:c1:63:c0:ad:4d:12:b9:ce:e0:
b3:7b:ec:36:ae:5f:43:05:69:d2:03:62:5b:eb:0e:aa:87:7f:
94:ba:0d:99:48:a6:6a:79:ac:74:f4:e8:e6:d5:f3:23:6f:00:
76:53:30:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:34 2024 by rpki-client on console-fra.rpki-client.org