Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/Dq_xtF05-xTDXaXOTD1uqNn52PM.roa
File: Dq_xtF05-xTDXaXOTD1uqNn52PM.roa (raw, json)
Hash identifier: DSu1uaJ15bcXEziCMoNgXnd5B7g3ETyRfW2/rgKU3Qw=
Subject key identifier: 0E:AF:F1:B4:5D:39:FB:14:C3:5D:A5:CE:4C:3D:6E:A8:D9:F9:D8:F3
Certificate issuer: /CN=b9ea8936f8e53063b4b3bdf0f3b15b2ae667ef13
Certificate serial: 0185DF73F8B788990CF87E2E31D33EFA2436
Authority key identifier: B9:EA:89:36:F8:E5:30:63:B4:B3:BD:F0:F3:B1:5B:2A:E6:67:EF:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ueqJNvjlMGO0s73w87FbKuZn7xM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/Dq_xtF05-xTDXaXOTD1uqNn52PM.roa
Signing time: Mon 23 Jan 2023 16:26:37 +0000
ROA not before: Mon 23 Jan 2023 16:26:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54339
IP address blocks: 95.140.152.0/21 maxlen: 21
Validation: Failed, certificate revoked on Sat 28 Jan 2023 18:47:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:df:73:f8:b7:88:99:0c:f8:7e:2e:31:d3:3e:fa:24:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9ea8936f8e53063b4b3bdf0f3b15b2ae667ef13
Validity
Not Before: Jan 23 16:26:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0eaff1b45d39fb14c35da5ce4c3d6ea8d9f9d8f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:9d:09:ed:fd:a0:00:f3:05:4b:cd:8d:8f:f2:
d5:be:44:56:01:64:ab:f8:ea:60:05:a3:d9:b1:94:
0a:e6:00:3f:01:37:5f:53:d5:78:e0:1f:96:1a:0f:
ed:ac:5f:e5:08:05:76:ba:14:c1:b5:a4:fe:6b:06:
3c:15:49:f0:9d:50:64:75:a0:23:ab:b1:1e:f3:07:
6d:7e:be:99:a4:21:33:4c:8f:8b:6c:d8:57:89:74:
39:29:c1:f5:1d:e8:22:7d:7c:c2:3a:e8:ef:72:bf:
66:04:9f:cd:14:32:26:55:0a:4b:3d:f9:c4:4c:db:
a0:e1:a3:7c:1c:d0:8e:3d:a3:42:95:d2:30:6c:1a:
9e:49:f7:1c:80:28:89:19:b6:56:15:ef:bf:01:b9:
44:d4:2b:c3:38:fd:2d:d2:d5:a4:fd:08:38:18:16:
75:98:b7:12:d6:0b:0e:a1:2f:8f:34:e6:78:83:e5:
07:25:2c:7f:4a:14:ee:25:18:73:a0:fc:90:d1:c2:
25:1d:7e:19:61:7c:dc:6d:b2:be:18:62:73:9a:37:
08:e4:4b:1d:a1:ff:ce:40:71:13:8e:ff:d5:55:1c:
c9:2d:af:8a:ab:ad:cb:69:e5:ff:70:47:fe:5e:f4:
98:94:cc:60:b4:8a:6f:54:04:33:f0:ec:a7:23:60:
cb:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:AF:F1:B4:5D:39:FB:14:C3:5D:A5:CE:4C:3D:6E:A8:D9:F9:D8:F3
X509v3 Authority Key Identifier:
keyid:B9:EA:89:36:F8:E5:30:63:B4:B3:BD:F0:F3:B1:5B:2A:E6:67:EF:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ueqJNvjlMGO0s73w87FbKuZn7xM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/Dq_xtF05-xTDXaXOTD1uqNn52PM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/ueqJNvjlMGO0s73w87FbKuZn7xM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.140.152.0/21
Signature Algorithm: sha256WithRSAEncryption
b3:be:1d:79:f9:d1:0c:86:bb:bf:c2:f0:7c:9a:c1:90:53:2a:
43:88:90:4a:dd:93:f6:98:07:66:ff:89:c3:36:cf:b3:9c:a2:
75:16:5a:7a:09:3f:77:69:00:c4:fb:78:9f:40:da:a2:37:50:
ac:e4:1d:d0:4b:38:ac:81:8b:39:2a:8e:9f:9b:8d:ee:ab:35:
43:d3:d4:03:73:71:b7:a1:d5:84:c3:ca:5d:c8:fd:93:d9:7d:
ea:9d:9d:fe:57:33:e7:de:ac:80:67:c6:c6:6e:44:63:dc:87:
28:69:10:ab:ca:6d:12:38:13:ce:ec:11:50:e6:85:31:08:3d:
ea:a0:1a:6c:9a:5e:ad:75:7d:b9:05:48:ce:77:12:38:fc:8d:
a5:d3:60:f3:14:70:9a:b0:a2:fa:c2:1d:c6:4e:15:fd:6f:fb:
44:bd:ef:48:3d:0f:dc:0a:f2:a9:71:6a:32:58:87:a2:0a:36:
0d:e0:26:d2:a5:4a:72:17:12:1f:68:3f:d6:f1:f9:d4:eb:05:
44:d8:f3:54:e7:b6:c7:02:91:aa:b9:8a:a5:de:25:15:c6:94:
18:ba:07:22:d9:bc:c1:9a:0b:ab:26:a5:d0:80:21:8a:f2:7b:
9f:1c:78:7d:c0:58:0e:48:af:00:5e:d4:74:6c:dd:47:89:a9:
d7:04:e8:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:23 2024 by rpki-client on console-ams.rpki-client.org