Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/F5IdJrXyYcE0RmMhZv-Zp8UV7XY.roa
File: F5IdJrXyYcE0RmMhZv-Zp8UV7XY.roa (raw, json)
Hash identifier: /eINVDZ13VWH2iipYgTUsr9qKPFD5U0PwVaE63kEZmQ=
Subject key identifier: 17:92:1D:26:B5:F2:61:C1:34:46:63:21:66:FF:99:A7:C5:15:ED:76
Certificate issuer: /CN=b9ea8936f8e53063b4b3bdf0f3b15b2ae667ef13
Certificate serial: 01887C4A6CB90C78849925EBFD19BC4ACA87
Authority key identifier: B9:EA:89:36:F8:E5:30:63:B4:B3:BD:F0:F3:B1:5B:2A:E6:67:EF:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ueqJNvjlMGO0s73w87FbKuZn7xM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/F5IdJrXyYcE0RmMhZv-Zp8UV7XY.roa
Signing time: Fri 02 Jun 2023 13:27:12 +0000
ROA not before: Fri 02 Jun 2023 13:27:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201671
IP address blocks: 95.140.148.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 09 Jul 2023 14:32:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:7c:4a:6c:b9:0c:78:84:99:25:eb:fd:19:bc:4a:ca:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9ea8936f8e53063b4b3bdf0f3b15b2ae667ef13
Validity
Not Before: Jun 2 13:27:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=17921d26b5f261c13446632166ff99a7c515ed76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:af:82:5c:ab:e7:ed:e6:54:18:76:4f:93:a5:
26:a8:c5:9d:eb:60:5b:dc:1b:58:bc:7e:f8:5b:d2:
af:35:3e:45:8d:af:02:72:b5:ee:0c:23:8a:4c:de:
9c:75:39:31:0a:ba:80:27:84:99:3e:d7:b3:a1:ce:
0a:39:49:0c:67:95:d0:61:de:a3:11:84:59:ac:e7:
33:b3:04:59:a4:73:24:75:97:f2:1d:73:49:bc:a6:
60:61:ae:10:92:b2:90:8c:33:c1:f4:6d:0b:9e:7e:
a6:5c:81:cb:96:c5:d3:98:54:ce:6f:09:b5:0f:4a:
60:b5:1b:aa:97:85:74:00:8f:da:a4:ef:3e:d3:fb:
19:3a:87:25:c3:a7:20:08:c5:f6:12:fb:f1:ca:7a:
02:4e:41:99:6b:52:92:42:3d:a8:21:ac:06:a1:de:
94:fd:13:51:03:eb:68:ec:e6:aa:45:0b:f4:be:ec:
12:0a:c4:6e:d8:05:aa:be:a1:3f:13:a1:2d:70:ca:
a5:ec:6b:ef:45:71:c4:a2:d4:bc:6e:28:c4:6e:5d:
bf:e8:19:f5:ad:b7:37:21:1e:ac:05:bf:15:44:d3:
5d:8a:4c:3c:9f:55:b2:ae:b2:ae:4a:e0:50:26:d2:
89:c6:56:e9:b0:8b:26:dd:1d:97:f1:09:e5:83:0d:
59:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:92:1D:26:B5:F2:61:C1:34:46:63:21:66:FF:99:A7:C5:15:ED:76
X509v3 Authority Key Identifier:
keyid:B9:EA:89:36:F8:E5:30:63:B4:B3:BD:F0:F3:B1:5B:2A:E6:67:EF:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ueqJNvjlMGO0s73w87FbKuZn7xM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/F5IdJrXyYcE0RmMhZv-Zp8UV7XY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/ueqJNvjlMGO0s73w87FbKuZn7xM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.140.148.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:d3:b8:90:4b:73:3e:1d:7b:cc:94:ba:14:c7:e2:c0:32:31:
c5:da:5d:17:b6:3f:39:9a:c6:e4:18:ad:b4:5f:c7:38:87:af:
c7:29:89:4b:b9:d8:e2:c9:e0:d2:de:7f:61:d4:bd:88:4a:ce:
8c:8b:28:11:90:4f:1f:65:8f:33:de:e8:04:96:f5:1c:d5:33:
3f:f4:ba:e3:4e:e5:fd:9e:aa:51:41:4a:81:25:04:db:b2:5a:
30:37:c5:5d:b2:c6:cd:e9:91:00:99:04:d8:f4:1c:1f:7c:8a:
55:bb:7b:7e:43:95:0e:b6:35:3d:91:c6:43:b2:c4:51:c7:11:
a9:80:cf:a5:47:58:1c:a9:64:21:4a:07:1a:0c:df:4d:70:e3:
d7:58:72:c2:2a:64:46:7d:50:36:81:f7:34:42:71:48:c6:3b:
69:9f:41:21:16:55:da:e2:d5:8e:8c:82:38:ab:01:70:ec:ff:
42:80:ec:9b:88:70:bd:a5:82:34:b7:02:1d:d6:2c:16:28:be:
59:91:eb:94:19:34:b3:78:72:47:fb:c0:9a:be:af:d9:41:b4:
ef:6a:30:31:8d:ee:75:c9:81:17:ef:26:56:33:ba:a8:29:83:
c7:a0:ac:8b:6c:3a:b9:ae:75:f1:9d:53:72:7c:ce:65:9a:30:
67:a5:92:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:23 2024 by rpki-client on console-ams.rpki-client.org