Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/i1-0E7Ao7cqnXBjme6THRv-ZS-w.roa
File: i1-0E7Ao7cqnXBjme6THRv-ZS-w.roa (raw, json)
Hash identifier: rCF+m5p55CSB5PBPAZ2bQop5HLRafZMBXhOUmcTQzmw=
Subject key identifier: 8B:5F:B4:13:B0:28:ED:CA:A7:5C:18:E6:7B:A4:C7:46:FF:99:4B:EC
Certificate issuer: /CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Certificate serial: 01856BC11DF4CB305FD3673E63AF048F66D9
Authority key identifier: 2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/i1-0E7Ao7cqnXBjme6THRv-ZS-w.roa
Signing time: Sun 01 Jan 2023 05:14:56 +0000
ROA not before: Sun 01 Jan 2023 05:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212609
IP address blocks: 195.95.205.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:c1:1d:f4:cb:30:5f:d3:67:3e:63:af:04:8f:66:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Validity
Not Before: Jan 1 05:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b5fb413b028edcaa75c18e67ba4c746ff994bec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:2a:88:dd:01:01:a3:92:f3:ab:68:21:3e:1a:
32:33:e0:83:9b:6a:0c:f2:5d:32:dc:1c:94:3a:8c:
c6:7e:d9:d4:75:20:cd:1a:10:07:c9:cc:d5:22:90:
be:8c:5b:1e:22:ba:bf:ae:ac:03:f9:48:a7:88:cf:
2d:ae:4b:d8:82:6c:97:f0:2a:7d:de:13:3a:3f:11:
a2:78:7c:ea:83:83:5e:7e:c7:ea:81:65:ac:33:f6:
1d:1e:3b:99:65:cc:93:e9:77:bc:ed:33:ca:52:b9:
94:67:8a:13:45:89:1c:81:b0:a4:09:37:63:85:78:
e4:39:e1:72:db:1c:51:ab:36:70:e1:eb:7a:98:85:
9c:bc:21:61:e9:2b:80:59:71:18:15:1c:bd:f2:89:
e2:18:c4:32:b2:68:4b:69:fa:15:fe:de:0f:f2:0c:
fa:24:41:b1:e3:0a:f4:8e:1e:97:b4:5a:70:d0:87:
85:ca:2c:99:fb:5e:38:27:ec:28:2f:1a:f9:a4:7e:
7c:b7:ad:bf:fc:a3:25:5d:e7:d2:50:35:f2:e1:ad:
b9:a6:88:cb:07:39:f4:eb:ca:02:49:22:52:64:78:
b4:7e:a3:26:b8:df:c3:24:ba:cf:f4:de:58:d2:eb:
94:84:fa:d3:dd:9d:d5:c0:9f:3b:01:90:90:7a:9c:
89:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:5F:B4:13:B0:28:ED:CA:A7:5C:18:E6:7B:A4:C7:46:FF:99:4B:EC
X509v3 Authority Key Identifier:
keyid:2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/i1-0E7Ao7cqnXBjme6THRv-ZS-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.205.0/24
Signature Algorithm: sha256WithRSAEncryption
40:a2:b6:87:9e:f7:1f:40:e6:e4:94:11:f9:c8:6b:aa:4c:9f:
6f:ff:47:e0:1b:54:71:dc:70:56:0f:86:98:a4:9c:e9:57:7c:
76:c2:ed:33:31:1e:fc:1a:84:1a:86:dc:3c:1b:b3:c4:29:bd:
30:ef:b5:f1:a9:43:e5:52:92:7d:58:31:0f:f5:93:7d:83:00:
e6:bc:7e:97:e1:60:0b:9a:8d:b5:82:e3:19:26:58:f0:c8:59:
84:da:15:e0:67:ea:fc:d8:e6:0e:27:77:b2:2e:4a:52:c6:9c:
91:86:4e:36:96:e3:61:ef:10:c3:cd:3d:9f:7b:d4:cc:96:68:
7b:43:a6:c3:79:44:a5:eb:1d:02:9f:13:c6:23:69:81:53:54:
d0:d0:ab:d4:a0:b7:b7:60:66:5e:b3:b8:d3:a9:2b:a3:28:61:
59:46:37:6c:5c:d6:93:d1:9d:51:3a:3e:e7:fa:dd:55:88:cb:
6b:2b:46:d2:0e:7c:d0:1d:11:f1:66:0a:44:1b:cc:a6:33:c0:
50:cb:53:0b:18:94:33:d1:86:57:42:ab:c9:8c:7a:3c:c9:2d:
6e:da:ee:e1:81:90:77:92:53:c1:b2:82:c0:9b:88:5e:a2:bd:
3c:15:4a:a3:bf:8d:c8:f3:a2:ce:af:0c:27:04:62:e3:81:75:
df:48:a8:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:26:13 2024 by rpki-client on console-fra.rpki-client.org