Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/ix4X79D8ACSIkmwOOCK20CKKUeA.roa
File: ix4X79D8ACSIkmwOOCK20CKKUeA.roa (raw, json)
Hash identifier: b4gf7lWOEv2qGUW+qPqrtDOCbTFq/qjg8yYzHRVNWkE=
Subject key identifier: 8B:1E:17:EF:D0:FC:00:24:88:92:6C:0E:38:22:B6:D0:22:8A:51:E0
Certificate issuer: /CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Certificate serial: 018E61707A7502DBDB1EEA04AEEEA113ED62
Authority key identifier: 6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/ix4X79D8ACSIkmwOOCK20CKKUeA.roa
Signing time: Thu 21 Mar 2024 14:35:45 +0000
ROA not before: Thu 21 Mar 2024 14:35:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 55836
IP address blocks: 95.100.0.0/20 maxlen: 20
Validation: Failed, certificate revoked on Wed 27 Mar 2024 11:26:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:61:70:7a:75:02:db:db:1e:ea:04:ae:ee:a1:13:ed:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Validity
Not Before: Mar 21 14:35:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8b1e17efd0fc002488926c0e3822b6d0228a51e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:b3:ac:10:d0:20:4b:37:4c:b7:10:46:82:b2:
2d:fb:55:9a:ea:f4:0e:fb:f3:6a:75:2b:c1:dc:0d:
09:2f:fb:41:81:14:25:3d:8d:fd:76:6b:28:62:b5:
27:64:fd:43:79:b7:76:2a:a8:81:6f:cd:3a:b2:d8:
a2:22:6b:47:b2:53:06:17:73:f4:ce:11:bb:3c:36:
ec:52:a2:95:1b:52:2b:82:78:a2:f0:99:f2:06:67:
0a:49:e2:79:04:bb:d9:32:0f:9a:bd:9a:82:7f:d0:
07:a5:64:ec:69:d8:5b:26:b5:9c:63:2e:d6:b1:e7:
31:57:3c:19:d7:b0:b3:ab:fe:5b:fb:60:32:ef:11:
da:5e:f8:dd:55:53:cd:43:23:61:4b:57:0a:fd:9f:
4e:2c:96:dc:01:4f:6e:9d:4a:d5:74:ef:54:e9:be:
bd:64:03:56:71:00:4d:74:3c:92:6f:a1:f1:7c:d9:
1b:3b:aa:12:a0:7f:f2:a3:15:19:86:84:6c:06:ee:
a6:5c:de:7b:88:93:15:81:8a:af:5c:38:54:7d:54:
18:c2:18:de:ea:ac:00:05:22:7f:63:21:85:57:7d:
db:4d:fa:c8:f0:8b:22:07:4d:18:ce:aa:07:1b:1c:
af:4b:ed:16:3b:c1:97:44:2f:69:ea:f7:05:2d:b7:
59:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:1E:17:EF:D0:FC:00:24:88:92:6C:0E:38:22:B6:D0:22:8A:51:E0
X509v3 Authority Key Identifier:
keyid:6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/ix4X79D8ACSIkmwOOCK20CKKUeA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/a1_LvqSJN6RCur2zMCEyxLyb1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.100.0.0/20
Signature Algorithm: sha256WithRSAEncryption
29:e9:c2:41:62:d3:d2:62:17:89:72:9c:5d:0e:11:68:8d:13:
c0:20:62:68:09:a2:62:8f:05:fb:e9:01:87:58:1d:19:30:d3:
ba:74:b6:0c:f9:be:ec:fc:82:a0:d5:ab:b8:d3:2e:80:eb:6f:
42:2c:49:39:9c:0d:23:1e:a8:91:39:9a:01:70:b3:96:a7:2d:
c0:ea:a1:b2:cf:37:08:eb:bb:4c:9f:01:0b:7e:4d:8c:21:a2:
37:05:d6:2a:80:4b:ee:43:cc:82:de:f5:b0:7d:76:af:ab:01:
de:0f:0b:a3:41:6c:76:94:61:b0:56:25:71:ff:eb:5e:79:36:
e7:61:17:c2:87:16:03:83:9d:69:27:f5:4f:c0:57:5a:07:93:
a1:ac:5c:c7:fa:aa:f9:3a:ed:8d:56:a3:a6:91:43:91:94:9b:
c4:7d:af:94:e4:b4:c7:05:5f:f7:5d:7c:24:c1:53:e7:91:e8:
d6:94:97:10:5f:84:2c:80:f9:b3:9c:ae:f4:42:a3:aa:c4:0d:
c0:8b:f1:f2:2d:5a:95:70:d0:a4:ca:41:c9:8e:1a:71:24:76:
f3:b3:bb:67:21:b6:2a:09:7e:2d:b8:9b:54:e1:b0:e2:6a:6d:
ec:4f:39:35:09:c9:cf:cc:4a:b7:8f:97:8d:ae:60:16:ef:b3:
f1:cc:00:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 27 14:54:24 2024 by rpki-client on console-ams.rpki-client.org