Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/dRXumSxWe550FqnFaKqlst6Non8.roa
File: dRXumSxWe550FqnFaKqlst6Non8.roa (raw, json)
Hash identifier: QHOdILoSb4OCS0mgUEl3Lbibc8kYeGbmOnwyfYq3l+k=
Subject key identifier: 75:15:EE:99:2C:56:7B:9E:74:16:A9:C5:68:AA:A5:B2:DE:8D:A2:7F
Certificate issuer: /CN=b9ea8936f8e53063b4b3bdf0f3b15b2ae667ef13
Certificate serial: 01893B11CEA309A44639085D91F84DB06D06
Authority key identifier: B9:EA:89:36:F8:E5:30:63:B4:B3:BD:F0:F3:B1:5B:2A:E6:67:EF:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ueqJNvjlMGO0s73w87FbKuZn7xM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/dRXumSxWe550FqnFaKqlst6Non8.roa
Signing time: Sun 09 Jul 2023 14:32:50 +0000
ROA not before: Sun 09 Jul 2023 14:32:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50053
IP address blocks: 95.140.148.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:3b:11:ce:a3:09:a4:46:39:08:5d:91:f8:4d:b0:6d:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9ea8936f8e53063b4b3bdf0f3b15b2ae667ef13
Validity
Not Before: Jul 9 14:32:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7515ee992c567b9e7416a9c568aaa5b2de8da27f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:01:5b:9a:e3:fa:11:ac:90:53:02:0c:87:66:
00:14:48:29:62:b8:e7:a8:89:23:b4:cc:99:0e:2f:
b2:80:91:48:51:bf:32:6f:5f:6a:51:f0:0e:c5:1f:
a9:a2:5d:3e:f1:e6:b0:39:ea:23:42:cd:fc:62:b2:
a9:22:de:66:79:c6:e1:a6:55:87:82:0c:22:b0:a5:
0e:58:a8:38:48:dd:28:50:88:f7:92:c5:d4:e0:19:
e2:cd:68:e2:28:71:85:e7:4a:8a:ee:b8:e0:cc:84:
54:d1:8e:a6:ee:87:3a:f6:79:c9:c9:75:94:63:f7:
ba:d4:c0:fa:08:11:b3:f5:d7:19:99:80:9d:ee:74:
24:22:17:06:73:76:73:29:b3:58:35:f9:77:e8:9c:
8a:b2:f6:71:f5:42:90:81:18:f5:81:5c:1d:f4:6c:
ed:7d:52:9f:24:74:34:c1:ae:b7:b7:1b:76:2a:f0:
69:ac:94:2d:57:0d:ae:a2:ad:dd:60:a4:4a:12:5c:
69:90:81:5f:70:7e:9a:7d:c2:5a:c0:f6:c2:39:19:
7d:7d:d2:6b:58:8c:be:6f:e9:80:81:d8:27:d0:04:
12:db:8d:37:1c:c7:30:6b:1e:75:1d:9d:07:25:74:
30:f9:54:7e:f1:d7:74:6b:fe:4e:2e:59:71:24:69:
f5:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:15:EE:99:2C:56:7B:9E:74:16:A9:C5:68:AA:A5:B2:DE:8D:A2:7F
X509v3 Authority Key Identifier:
keyid:B9:EA:89:36:F8:E5:30:63:B4:B3:BD:F0:F3:B1:5B:2A:E6:67:EF:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ueqJNvjlMGO0s73w87FbKuZn7xM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/dRXumSxWe550FqnFaKqlst6Non8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/ueqJNvjlMGO0s73w87FbKuZn7xM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.140.148.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:eb:5b:8e:79:b0:67:fb:65:a5:2f:d0:71:d4:c9:59:0d:e5:
9b:02:8a:42:70:0b:d3:d9:15:27:63:d9:b4:53:7c:f3:65:81:
dd:38:0f:fc:9a:89:55:f6:58:b3:0b:a0:64:b1:c6:69:83:31:
b1:2b:05:3b:6e:2d:40:2b:0e:aa:48:3c:b7:13:9a:d5:e2:6f:
11:38:88:19:bc:a1:60:a1:73:54:47:63:7a:db:9b:4a:79:3f:
c9:a2:46:fe:ed:fe:ac:1e:f6:fd:14:ee:e1:b0:d8:1c:e5:d4:
00:d7:e3:da:42:50:36:1b:95:d5:d6:31:d3:3f:94:ad:13:5f:
02:3d:02:54:7e:97:d8:3c:41:14:d3:fb:f5:a9:22:b7:69:b4:
29:33:10:84:92:3b:33:a2:60:1e:85:24:de:81:5a:1f:8e:28:
df:de:be:70:4c:3b:9d:8b:ec:08:63:5c:c9:99:89:e5:1f:50:
0f:55:bb:77:50:35:ae:3a:cd:df:40:50:64:d2:08:89:fd:2f:
31:ee:62:a5:e4:5a:9b:b8:a7:1a:6b:43:d5:8f:a5:a4:b0:75:
7f:e3:88:07:96:01:e3:50:0d:ee:ea:25:31:0f:5c:03:f4:f9:
ed:2b:11:8c:b5:8b:4a:61:58:8f:63:9e:aa:cf:89:fc:61:5e:
f3:92:91:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:15 2024 by rpki-client on console-fra.rpki-client.org