Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/X_cqSLwGlnJz26PHrLGS7RQDkYo.roa
File: X_cqSLwGlnJz26PHrLGS7RQDkYo.roa (raw, json)
Hash identifier: 6/jBK5iaarygaCuTogVqT7lLjsCeR06ZfPYsjybO9Ew=
Subject key identifier: 5F:F7:2A:48:BC:06:96:72:73:DB:A3:C7:AC:B1:92:ED:14:03:91:8A
Certificate issuer: /CN=b9ea8936f8e53063b4b3bdf0f3b15b2ae667ef13
Certificate serial: 018879094BB33CC8FF01938D71B1E717477B
Authority key identifier: B9:EA:89:36:F8:E5:30:63:B4:B3:BD:F0:F3:B1:5B:2A:E6:67:EF:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ueqJNvjlMGO0s73w87FbKuZn7xM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/X_cqSLwGlnJz26PHrLGS7RQDkYo.roa
Signing time: Thu 01 Jun 2023 22:17:12 +0000
ROA not before: Thu 01 Jun 2023 22:17:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 63023
IP address blocks: 95.140.148.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Jun 2023 13:27:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:79:09:4b:b3:3c:c8:ff:01:93:8d:71:b1:e7:17:47:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9ea8936f8e53063b4b3bdf0f3b15b2ae667ef13
Validity
Not Before: Jun 1 22:17:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5ff72a48bc06967273dba3c7acb192ed1403918a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6e:0d:a8:3e:a5:90:8e:50:5b:79:4b:9f:24:
5f:cf:07:14:d5:4f:75:86:5a:59:5b:c1:34:6a:de:
48:fd:2e:ab:a9:9d:8a:7d:45:b2:50:a9:fa:90:64:
02:8f:20:66:35:cb:67:1a:be:8b:46:d5:5f:50:4d:
e1:10:e6:1f:1e:aa:ef:c0:78:f7:df:5d:ac:e6:58:
c8:d6:9e:24:5b:77:1d:9c:d5:9a:2c:5a:bc:bf:3f:
36:8d:ab:78:77:ba:ae:31:01:6c:45:a3:4f:73:59:
d7:d2:57:a6:c9:36:db:36:c3:84:50:39:30:a0:e6:
84:98:19:81:86:12:95:99:12:b7:fa:94:0e:bb:6a:
90:1b:02:9d:8a:f3:84:52:46:7c:c8:88:b5:a0:7a:
f9:32:bb:6b:05:26:d4:b9:f8:55:28:1e:db:39:03:
99:c7:42:04:06:ab:ce:75:3c:0f:11:dd:74:12:35:
ab:27:89:82:f8:af:78:f6:a3:48:a9:38:5a:cd:32:
0b:5c:26:84:50:43:ac:05:59:f4:d0:b5:32:d0:72:
b7:c5:30:7f:c8:c9:84:09:22:82:5e:0f:30:da:d0:
01:67:df:d1:c5:1b:4e:5e:0b:6e:27:31:a4:8b:30:
5b:8e:f1:95:d4:d9:c1:28:18:fc:1f:5a:3e:02:d1:
0f:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:F7:2A:48:BC:06:96:72:73:DB:A3:C7:AC:B1:92:ED:14:03:91:8A
X509v3 Authority Key Identifier:
keyid:B9:EA:89:36:F8:E5:30:63:B4:B3:BD:F0:F3:B1:5B:2A:E6:67:EF:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ueqJNvjlMGO0s73w87FbKuZn7xM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/X_cqSLwGlnJz26PHrLGS7RQDkYo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/ueqJNvjlMGO0s73w87FbKuZn7xM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.140.148.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:6a:b4:22:9f:2b:22:7c:dd:0b:b4:2b:51:ae:75:f5:3f:b3:
8e:89:e7:94:ab:fd:a1:a3:32:e9:38:8d:b2:39:17:83:cb:88:
5b:a2:1c:9f:5b:c6:8f:7b:2a:d1:d6:9c:7f:c4:ac:25:9e:72:
c9:97:92:ec:2c:63:1b:06:e7:f3:34:90:47:aa:19:a6:45:ce:
ce:c0:df:b5:94:9e:bd:2e:00:9e:43:6c:24:e6:9b:24:bc:4c:
3f:2f:65:74:3a:63:e8:c8:50:15:49:e2:d3:88:af:78:ea:ec:
58:59:ea:d4:dc:03:5f:59:be:12:60:8d:72:6d:ac:49:17:0e:
d3:44:aa:44:dc:bf:22:08:d8:6c:af:60:4b:57:20:03:0f:b7:
69:df:54:10:47:d4:71:63:b6:92:4c:87:57:de:4c:6f:c9:87:
8a:3a:70:9e:f5:22:90:b9:77:30:9f:5a:3e:53:d1:e2:75:31:
4a:88:5d:de:69:ea:26:81:df:a9:78:6d:64:1e:1b:75:b6:3a:
02:6e:ea:04:fa:c5:40:a0:b4:c4:79:47:0a:c9:e0:2c:3c:f2:
a6:30:6b:18:d7:8e:37:f6:07:54:bd:63:cd:c5:6d:60:85:f4:
0f:2f:ea:9f:6f:59:c0:a2:87:06:4e:d6:30:1f:48:08:ce:44:
79:af:e9:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:23 2024 by rpki-client on console-ams.rpki-client.org