Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/mBdxnEwa6d_1kr2vGzVGQIRCZY4.roa
File: mBdxnEwa6d_1kr2vGzVGQIRCZY4.roa (raw, json)
Hash identifier: ejXJi5XwuOP8gRaVZdlJHqk13xhQfU4UgXsuMFu3Nnc=
Subject key identifier: 98:17:71:9C:4C:1A:E9:DF:F5:92:BD:AF:1B:35:46:40:84:42:65:8E
Certificate issuer: /CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Certificate serial: 0186174E40B20BD0EF00E95B71563197A84C
Authority key identifier: A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/mBdxnEwa6d_1kr2vGzVGQIRCZY4.roa
Signing time: Fri 03 Feb 2023 12:44:09 +0000
ROA not before: Fri 03 Feb 2023 12:44:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49999
IP address blocks: 45.95.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Apr 2023 06:55:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:17:4e:40:b2:0b:d0:ef:00:e9:5b:71:56:31:97:a8:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Validity
Not Before: Feb 3 12:44:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9817719c4c1ae9dff592bdaf1b3546408442658e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:bb:b8:d2:c5:29:12:5b:f6:ab:f6:20:9e:74:
9b:41:08:6a:79:7b:5e:a1:8a:be:29:3e:01:1e:ee:
bb:1b:6a:20:d9:81:1c:41:b8:39:78:81:40:3f:91:
bc:ec:99:e9:38:47:72:2a:a0:83:79:11:14:00:2f:
d3:43:6d:6b:63:5d:1a:2c:4f:fb:7d:62:eb:26:a5:
82:38:29:e9:b8:61:4b:5d:f8:52:8c:38:6e:21:5e:
6e:ea:d3:5e:9c:6e:d8:fc:73:fb:83:c4:07:73:6c:
df:7f:75:53:58:d7:01:84:b5:97:26:b3:14:23:ab:
6f:1a:39:59:bf:e0:6d:db:7d:26:44:08:6b:3e:07:
f3:f6:0f:d2:f9:d2:c2:e8:70:c9:09:84:c2:d6:65:
b8:f4:e0:5d:9b:c4:9b:95:86:b2:f4:1d:a7:11:98:
9c:52:9f:92:3b:0e:59:4e:01:74:94:fc:c5:87:f7:
83:6b:be:b1:c9:b4:1b:4f:9c:f1:ca:e2:3c:f2:66:
05:5d:23:a7:02:a1:00:1f:eb:e3:7b:b2:d8:c0:2f:
a3:a6:f7:7f:97:43:ff:54:93:4d:0e:c3:f8:af:f7:
c0:e7:be:8d:78:83:98:6e:53:69:9d:20:b8:9b:95:
a0:6a:ce:bd:ef:d2:64:03:81:8f:bd:7f:b3:b5:f2:
84:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:17:71:9C:4C:1A:E9:DF:F5:92:BD:AF:1B:35:46:40:84:42:65:8E
X509v3 Authority Key Identifier:
keyid:A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/mBdxnEwa6d_1kr2vGzVGQIRCZY4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.35.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:9f:5c:1e:67:7d:ea:71:cc:d3:1f:94:4f:9f:a5:77:d9:a7:
38:f0:f5:ca:69:ae:8a:74:aa:20:99:6f:ca:dc:d5:5a:ce:29:
f9:9f:06:2b:e2:42:2e:e0:7f:9a:9d:95:cc:81:66:50:ba:fb:
8b:48:c5:14:c0:1b:4a:15:56:c3:17:06:ae:05:26:6a:c6:a2:
9f:35:0e:25:6a:65:12:6c:c4:8e:c3:c6:e1:a3:e7:66:44:ec:
bf:e3:17:51:66:f2:56:67:98:e4:3e:a4:48:4d:f5:f1:a2:7a:
61:8e:e4:89:f9:c9:5f:9e:aa:b8:84:7f:dd:fb:9d:a7:67:33:
00:b0:59:85:cd:c2:80:6e:32:59:5e:42:19:a7:02:7a:ac:28:
3e:d5:f7:f6:fe:ee:3b:58:f6:f8:23:45:3f:a2:43:9f:bb:08:
07:d7:32:93:df:fa:a4:7d:98:b8:cd:5f:c9:28:d7:1f:b1:65:
80:ef:39:97:27:a3:80:34:82:ee:e6:12:b6:3b:25:6b:1e:4f:
9a:a7:be:08:60:81:4e:44:c3:1b:77:d2:35:7a:71:19:82:42:
40:5c:73:fe:74:a0:72:cc:73:46:95:a2:fa:cf:32:0d:a5:fb:
d0:b7:48:fe:b3:c9:e8:10:54:e5:0e:9f:81:96:34:69:8d:52:
be:1e:2e:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:49 2024 by rpki-client on console-ams.rpki-client.org