Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/9166b8-5e54-458d-9b32-557a7d11e2ae/1/mHLfz6XhYsKl2ryovvLzS8Lx4jc.roa
File: mHLfz6XhYsKl2ryovvLzS8Lx4jc.roa (raw, json)
Hash identifier: 329uNCLfFt0N0d14SYpuj8GrMmctWY9/edZNp8xspRo=
Subject key identifier: 98:72:DF:CF:A5:E1:62:C2:A5:DA:BC:A8:BE:F2:F3:4B:C2:F1:E2:37
Certificate issuer: /CN=338d42fbb3f43f56ddb8782e65490a23d85b72e1
Certificate serial: 0185719E71A8D3D2C7C786C8E38AA397DB15
Authority key identifier: 33:8D:42:FB:B3:F4:3F:56:DD:B8:78:2E:65:49:0A:23:D8:5B:72:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M41C-7P0P1bduHguZUkKI9hbcuE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/9166b8-5e54-458d-9b32-557a7d11e2ae/1/mHLfz6XhYsKl2ryovvLzS8Lx4jc.roa
Signing time: Mon 02 Jan 2023 08:34:47 +0000
ROA not before: Mon 02 Jan 2023 08:34:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 45.95.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:71:a8:d3:d2:c7:c7:86:c8:e3:8a:a3:97:db:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=338d42fbb3f43f56ddb8782e65490a23d85b72e1
Validity
Not Before: Jan 2 08:34:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9872dfcfa5e162c2a5dabca8bef2f34bc2f1e237
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:1d:13:a2:6a:ef:eb:dd:7b:a1:86:b1:e9:0d:
ea:99:7f:fc:f7:c6:02:a1:b9:a5:23:d6:32:90:33:
10:2d:31:81:96:eb:39:be:ec:22:06:3a:6a:bd:00:
c6:7d:5c:1f:7a:bc:95:18:4e:44:c3:11:a4:11:da:
75:45:47:82:96:71:15:c5:9e:cc:fc:8d:9f:62:a7:
61:3b:e7:b3:8b:4c:e7:0d:59:1d:a4:4d:d8:3c:16:
22:ff:07:2c:db:30:c1:41:ab:42:b9:eb:56:d5:2f:
ab:91:10:69:d9:17:0f:df:44:2e:0e:e9:f3:4a:bb:
c1:2b:2c:05:2a:59:2e:5c:e5:02:a0:de:8a:e5:81:
d8:66:11:ad:4e:0b:de:df:14:2e:49:c0:5b:31:d4:
50:54:75:05:0b:db:7a:c2:03:1d:48:44:3c:3c:d2:
d8:70:cf:1b:10:66:04:a3:c2:e9:dc:94:8a:90:73:
6d:68:49:be:5e:9e:2b:d3:22:19:9b:fe:fe:48:fc:
77:63:db:b5:90:70:16:aa:bc:48:e4:b1:d0:01:1d:
05:ce:1e:38:e8:91:5a:e5:21:c5:4b:aa:a3:b3:8c:
1c:c6:64:4e:ef:1f:a4:49:b1:6e:e3:05:93:96:1e:
b6:fd:78:7a:cf:a5:9e:04:b9:55:f7:48:fa:bd:b3:
5f:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:72:DF:CF:A5:E1:62:C2:A5:DA:BC:A8:BE:F2:F3:4B:C2:F1:E2:37
X509v3 Authority Key Identifier:
keyid:33:8D:42:FB:B3:F4:3F:56:DD:B8:78:2E:65:49:0A:23:D8:5B:72:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M41C-7P0P1bduHguZUkKI9hbcuE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/9166b8-5e54-458d-9b32-557a7d11e2ae/1/mHLfz6XhYsKl2ryovvLzS8Lx4jc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/9166b8-5e54-458d-9b32-557a7d11e2ae/1/M41C-7P0P1bduHguZUkKI9hbcuE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.94.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:97:67:c7:cf:31:7a:1a:9d:9c:21:e7:c5:12:25:7a:e4:e6:
13:02:f5:be:1f:ce:be:6d:a9:e6:03:05:88:bb:0c:7c:dc:87:
8d:b6:c3:07:ac:29:ba:72:7f:37:22:0a:bb:e7:f9:07:87:ea:
b1:ba:89:cd:76:5b:17:e7:c4:2d:83:e1:a5:b5:3f:88:66:3e:
01:8b:45:40:06:cd:a9:86:a1:4f:b2:9a:9b:7f:9f:54:37:60:
8b:ba:3a:28:07:68:f9:0d:d2:48:56:54:79:f5:7a:f5:88:dd:
11:a4:94:2b:18:05:6f:26:bc:a6:4d:b2:41:72:79:b5:46:90:
7d:df:d1:20:63:09:bc:c4:37:da:07:dd:72:7d:42:db:ad:fa:
04:3a:5f:cb:3b:0d:eb:a3:7e:cb:0a:3e:64:80:96:e6:dd:db:
44:9c:aa:f8:06:65:db:5e:4e:9f:eb:3b:d5:db:1b:3f:48:53:
54:2c:87:46:58:c0:53:49:33:15:0b:3f:21:a0:03:71:8e:1b:
05:95:4b:fd:be:33:f4:4d:b2:d6:af:8f:8b:2d:e6:d3:4a:de:
c0:c1:3c:af:e6:b4:f9:23:53:0c:09:3d:f7:5c:2b:39:83:33:
19:4c:1e:69:77:ed:44:b7:e8:1c:b1:66:bb:59:b5:8b:af:85:
c2:e5:a2:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:04 2024 by rpki-client on console-fra.rpki-client.org