Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/1785f1-ae23-40f0-83f2-6def398ce5c9/1/TvH-gxa-aJdfM4SZgvBzoOITYG4.roa
File: TvH-gxa-aJdfM4SZgvBzoOITYG4.roa (raw, json)
Hash identifier: f/4+pSbkUFpzl/24xfMLIm7be9bWX4tPVPIySP/x+qU=
Subject key identifier: 4E:F1:FE:83:16:BE:68:97:5F:33:84:99:82:F0:73:A0:E2:13:60:6E
Certificate issuer: /CN=0a30b635d357468d7f932d3e1f59d5373cf9f465
Certificate serial: 01856F823E202572640976BEF8A487342F84
Authority key identifier: 0A:30:B6:35:D3:57:46:8D:7F:93:2D:3E:1F:59:D5:37:3C:F9:F4:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CjC2NdNXRo1_ky0-H1nVNzz59GU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/1785f1-ae23-40f0-83f2-6def398ce5c9/1/TvH-gxa-aJdfM4SZgvBzoOITYG4.roa
Signing time: Sun 01 Jan 2023 22:44:44 +0000
ROA not before: Sun 01 Jan 2023 22:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 45.95.116.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:82:3e:20:25:72:64:09:76:be:f8:a4:87:34:2f:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a30b635d357468d7f932d3e1f59d5373cf9f465
Validity
Not Before: Jan 1 22:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ef1fe8316be68975f33849982f073a0e213606e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:16:93:36:20:4e:7b:e1:0e:16:cf:b0:5f:4d:
84:57:17:cb:83:4b:b5:80:9e:8b:1d:0b:df:69:0a:
ca:b0:b8:66:27:03:30:83:c2:2e:12:5d:80:1d:d9:
c1:f0:e2:77:52:fe:2b:69:0f:34:12:83:15:f5:4d:
6b:e4:50:25:7e:62:50:30:3e:34:66:b6:48:b1:2a:
a0:ed:c0:d4:5c:af:7c:e8:a9:8b:bc:f3:83:5f:70:
bb:63:6c:15:92:8f:d8:6d:ab:f7:b6:d3:92:d9:cb:
b4:8d:32:cd:15:38:fa:b5:56:8a:c5:07:f0:bf:49:
33:62:32:a1:4a:8d:cd:b7:5d:95:b7:a3:04:5d:5d:
a3:b8:95:9f:98:d5:60:da:74:78:2d:bf:2a:0f:1b:
56:ae:1e:72:8c:ff:35:40:77:0a:1e:9f:ff:01:52:
20:ea:1e:04:be:41:20:cf:ff:76:64:5d:39:3e:11:
b4:9a:9c:da:a1:4b:87:78:14:15:56:65:80:a3:11:
91:83:60:78:ee:f1:66:6e:d9:34:47:22:a5:a5:4a:
ac:01:89:d0:5a:1b:b2:1f:5b:27:4a:14:d0:13:00:
fd:39:6b:38:e6:31:4a:54:c4:44:38:02:6e:bb:30:
41:a4:6c:72:3e:df:56:2d:d5:62:d9:f9:fa:50:07:
bd:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:F1:FE:83:16:BE:68:97:5F:33:84:99:82:F0:73:A0:E2:13:60:6E
X509v3 Authority Key Identifier:
keyid:0A:30:B6:35:D3:57:46:8D:7F:93:2D:3E:1F:59:D5:37:3C:F9:F4:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CjC2NdNXRo1_ky0-H1nVNzz59GU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/1785f1-ae23-40f0-83f2-6def398ce5c9/1/TvH-gxa-aJdfM4SZgvBzoOITYG4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/1785f1-ae23-40f0-83f2-6def398ce5c9/1/CjC2NdNXRo1_ky0-H1nVNzz59GU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.116.0/22
Signature Algorithm: sha256WithRSAEncryption
57:cd:ed:f8:ed:50:e0:b6:01:b1:ee:7e:73:ba:68:a0:c3:69:
b8:54:bd:5e:cd:44:50:8d:1b:df:71:eb:0c:bc:ed:d6:9e:88:
1a:9d:9c:53:bb:17:90:fe:b6:2c:e6:7f:b6:e5:55:83:a5:32:
be:91:cd:9d:25:66:27:32:5d:8d:28:66:f9:ae:15:ff:d3:0c:
3c:c5:50:d8:fc:50:d7:2a:f2:b9:70:59:85:d0:cc:c0:36:4a:
2c:1b:a5:92:cb:d8:67:58:3a:e0:e7:92:7e:22:a7:fa:74:1d:
b4:1d:16:d3:85:b6:fb:f2:06:36:fe:e4:7b:08:06:1e:6a:29:
7e:f7:e4:86:c1:50:64:83:2c:0f:f1:3e:c3:26:7a:65:db:c2:
e0:16:48:c9:93:e5:26:1d:22:3f:d7:14:3a:be:7e:7f:a2:9b:
e5:c0:9d:81:b8:eb:7c:26:1b:48:ef:19:6c:b2:51:81:f2:b6:
ed:50:e1:1b:f7:bd:5f:05:3c:1e:04:60:0e:d2:e0:66:15:e7:
ff:f1:b8:2b:e1:7b:03:1a:78:d9:42:35:53:2a:4d:6d:02:7f:
de:da:8d:19:29:9d:ad:a0:3f:55:4b:d0:53:f8:6b:0c:40:90:
f2:a6:ac:a0:e5:e1:7c:51:7f:99:46:0e:02:a9:24:86:f9:f8:
f3:0f:8f:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:16:28 2024 by rpki-client on console-ams.rpki-client.org