Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/6a8f0c-57a3-4496-9f9e-28653cc12368/1/7oPUdTUOj_ttsLRbKtttwt265U0.roa
File: 7oPUdTUOj_ttsLRbKtttwt265U0.roa (raw, json)
Hash identifier: 86YIu3gZLVH/Dtf8wxfPpcqhAMD5uamg0pY4SavRE68=
Subject key identifier: EE:83:D4:75:35:0E:8F:FB:6D:B0:B4:5B:2A:DB:6D:C2:DD:BA:E5:4D
Certificate issuer: /CN=b2fba356186c1dc5031c2fb20bc635491f878637
Certificate serial: 0185701EE733916F55748161F5EC056E72CD
Authority key identifier: B2:FB:A3:56:18:6C:1D:C5:03:1C:2F:B2:0B:C6:35:49:1F:87:86:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/svujVhhsHcUDHC-yC8Y1SR-Hhjc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/6a8f0c-57a3-4496-9f9e-28653cc12368/1/7oPUdTUOj_ttsLRbKtttwt265U0.roa
Signing time: Mon 02 Jan 2023 01:35:51 +0000
ROA not before: Mon 02 Jan 2023 01:35:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41827
IP address blocks: 185.95.132.0/22 maxlen: 24
2a05:f340::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 14 Dec 2023 16:27:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:1e:e7:33:91:6f:55:74:81:61:f5:ec:05:6e:72:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2fba356186c1dc5031c2fb20bc635491f878637
Validity
Not Before: Jan 2 01:35:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ee83d475350e8ffb6db0b45b2adb6dc2ddbae54d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:2a:cf:64:e2:43:db:91:6e:36:99:4f:95:e8:
e5:e6:f9:15:c4:9e:a4:cf:6a:0a:42:f1:29:fa:bd:
1f:5d:e8:a6:d8:b3:5c:b3:c7:c2:5b:0c:f5:c6:e8:
6f:87:8a:cf:05:d6:e0:b6:dd:8a:ec:41:20:ca:7d:
c3:08:1a:e1:6c:87:24:dc:1f:46:8e:d7:8a:af:97:
5f:fd:54:42:46:81:16:f6:91:92:a7:70:a8:54:83:
fc:d1:1a:43:10:97:bd:69:36:e2:4b:d0:9a:d9:be:
85:e6:7e:0b:28:71:02:da:e1:6d:19:2e:04:11:c7:
19:59:5c:e1:ac:8e:86:ca:a1:f5:44:39:75:b0:1f:
b0:39:5c:ed:f5:82:7c:02:e0:f1:c6:b5:fc:7c:fd:
3a:fa:e8:9d:87:ea:84:1a:7e:26:96:1f:e7:e0:24:
06:1e:8a:8d:b6:79:20:c6:e3:16:b8:8c:1c:bc:cc:
7e:48:e6:90:15:42:70:82:37:95:53:8f:79:3e:83:
cc:a5:1d:9c:46:24:04:a4:63:42:88:58:e3:3f:27:
76:98:77:89:ee:f6:7e:44:51:e5:d7:04:94:58:8f:
c2:35:df:30:80:e8:32:c6:e7:bd:75:9f:4d:0d:a2:
7e:a3:08:40:e5:10:72:b8:e0:67:00:cd:40:a3:d5:
db:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:83:D4:75:35:0E:8F:FB:6D:B0:B4:5B:2A:DB:6D:C2:DD:BA:E5:4D
X509v3 Authority Key Identifier:
keyid:B2:FB:A3:56:18:6C:1D:C5:03:1C:2F:B2:0B:C6:35:49:1F:87:86:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/svujVhhsHcUDHC-yC8Y1SR-Hhjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/6a8f0c-57a3-4496-9f9e-28653cc12368/1/7oPUdTUOj_ttsLRbKtttwt265U0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/6a8f0c-57a3-4496-9f9e-28653cc12368/1/svujVhhsHcUDHC-yC8Y1SR-Hhjc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.95.132.0/22
IPv6:
2a05:f340::/29
Signature Algorithm: sha256WithRSAEncryption
98:8f:da:b7:bd:fe:77:83:b5:06:cb:03:b6:18:fb:18:76:de:
02:98:aa:20:be:38:e9:d3:4b:1c:cc:c4:06:8e:0a:3b:e4:66:
db:bd:46:93:c5:de:9b:e9:88:35:e3:16:5d:df:27:40:1a:ed:
01:dc:33:f6:3b:8f:c8:8e:15:44:77:76:36:56:1e:59:04:26:
ca:c4:7c:d2:04:22:32:3d:67:00:b2:f6:9d:67:91:a9:93:a5:
02:ad:cc:42:b6:b6:38:9b:72:3e:2d:dd:91:32:9e:40:07:33:
04:03:5a:90:80:4e:d0:17:d6:c5:26:d7:7f:49:69:b0:48:a5:
e6:d8:f7:55:0b:61:0d:bc:3f:35:9c:36:db:52:f3:65:2a:44:
63:51:1b:2b:de:ba:d2:53:fa:69:74:e2:12:54:97:c1:4e:14:
b6:fb:dd:9e:3d:81:02:8e:b9:46:5a:37:27:bd:be:88:b2:d2:
d2:6c:46:e1:63:41:05:a5:1b:50:a8:d1:9a:15:32:84:f9:3c:
f5:21:38:b8:e6:96:8a:9b:81:3b:57:cf:cf:b6:48:74:17:1a:
c4:fd:d9:30:55:f4:c7:5f:61:a6:24:42:7d:d1:2d:2c:cf:e0:
96:a9:82:02:d4:a9:4c:be:de:76:bd:56:6c:a0:a1:50:25:08:
3d:0a:c8:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:35 2024 by rpki-client on console-fra.rpki-client.org