Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/7qHG02j2c62IHJutXnTD9z9Vvhg.roa
File: 7qHG02j2c62IHJutXnTD9z9Vvhg.roa (raw, json)
Hash identifier: Mmg3xuhgX0/87o+S28LXXnD9t7mL5ux484HjZjoiqT8=
Subject key identifier: EE:A1:C6:D3:68:F6:73:AD:88:1C:9B:AD:5E:74:C3:F7:3F:55:BE:18
Certificate issuer: /CN=b9ea8936f8e53063b4b3bdf0f3b15b2ae667ef13
Certificate serial: 0186A6CC43456F041B5B7CCC746FDE4799DD
Authority key identifier: B9:EA:89:36:F8:E5:30:63:B4:B3:BD:F0:F3:B1:5B:2A:E6:67:EF:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ueqJNvjlMGO0s73w87FbKuZn7xM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/7qHG02j2c62IHJutXnTD9z9Vvhg.roa
Signing time: Fri 03 Mar 2023 09:27:29 +0000
ROA not before: Fri 03 Mar 2023 09:27:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57043
IP address blocks: 185.125.200.0/23 maxlen: 24
95.140.158.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 14 Mar 2023 19:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a6:cc:43:45:6f:04:1b:5b:7c:cc:74:6f:de:47:99:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9ea8936f8e53063b4b3bdf0f3b15b2ae667ef13
Validity
Not Before: Mar 3 09:27:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eea1c6d368f673ad881c9bad5e74c3f73f55be18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:30:57:9d:a9:17:4a:fe:50:f8:06:b7:24:ed:
0e:02:22:ea:d4:85:a8:f9:a1:80:d7:bd:73:fb:ad:
90:dc:79:03:ad:eb:2b:73:95:b0:4a:7c:a2:48:58:
50:21:10:e6:66:a2:bf:06:7e:fe:ae:6e:39:2a:1d:
28:16:1d:31:72:1f:ad:f8:a9:45:df:0c:9e:87:60:
4f:6c:01:4a:91:08:ae:14:2a:7d:54:86:31:9c:0d:
21:76:92:01:72:55:a3:16:67:b7:e0:8c:a3:a7:40:
b4:de:73:0d:27:f5:28:4a:97:bb:41:7f:eb:e0:7e:
23:20:c3:dc:59:ba:96:54:83:db:80:08:e6:dc:84:
47:61:0e:e9:4c:a2:8c:b7:fc:00:62:fb:9b:e1:70:
44:05:a7:de:e0:86:c9:db:a3:d8:47:bf:7c:f8:01:
ba:d4:51:cc:2a:3e:41:40:32:cd:7d:cf:5a:3b:92:
d1:12:5a:b8:6f:60:e3:11:37:00:26:44:00:85:e5:
bb:0d:c8:98:5e:c8:58:96:75:41:79:bd:fd:8a:79:
2b:75:50:a4:69:b6:82:c0:aa:06:10:e0:fe:7c:41:
80:4e:ae:76:91:a3:02:97:60:76:7b:87:e7:09:34:
e0:e4:54:0d:24:18:65:3e:b7:04:69:38:4a:be:f2:
92:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:A1:C6:D3:68:F6:73:AD:88:1C:9B:AD:5E:74:C3:F7:3F:55:BE:18
X509v3 Authority Key Identifier:
keyid:B9:EA:89:36:F8:E5:30:63:B4:B3:BD:F0:F3:B1:5B:2A:E6:67:EF:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ueqJNvjlMGO0s73w87FbKuZn7xM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/7qHG02j2c62IHJutXnTD9z9Vvhg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/ueqJNvjlMGO0s73w87FbKuZn7xM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.140.158.0/23
185.125.200.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:54:19:bd:d5:bc:1d:6d:0d:85:2b:a4:f4:ca:90:d1:52:33:
0b:75:84:41:86:16:e3:27:0a:0c:6a:85:2e:a0:16:0d:61:85:
dd:d3:43:e5:ee:7e:5b:e5:24:51:dc:f2:77:8b:18:27:d5:e6:
6a:a4:3f:f3:f6:62:f7:a1:3b:24:9b:1b:ee:da:3f:90:b7:a8:
01:0c:a7:26:81:fc:c7:df:86:74:bf:61:25:25:f5:f0:fb:1c:
97:9a:12:97:36:5f:18:0e:8a:10:67:98:25:39:32:44:a7:14:
dd:80:ae:29:e6:43:be:b5:a1:f6:1c:31:aa:c6:70:b6:ac:40:
69:94:63:43:61:6a:5b:17:9e:9e:d7:6a:36:0d:4f:af:da:81:
5f:28:49:7c:8d:c8:e4:30:51:06:30:7d:e6:64:a0:ab:eb:4c:
b9:61:e9:f4:72:ab:bb:c3:28:ab:7d:dd:fa:0e:bb:34:03:d2:
0a:6f:ea:6c:6c:9d:62:ce:e5:bd:d8:80:2d:f0:82:3e:b2:cd:
c2:29:5d:c1:09:25:98:f3:74:bd:bb:4c:68:cf:0d:f2:60:a5:
67:59:8f:a7:06:93:98:e7:61:11:d9:34:72:37:e9:36:21:58:
66:18:43:78:b6:44:e7:88:f1:32:06:cb:b4:ab:c0:3c:c6:42:
6d:af:9e:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:15 2024 by rpki-client on console-fra.rpki-client.org