Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/g-e-UDtL7wv0xLQEtL_KTfoE8zA.roa
File: g-e-UDtL7wv0xLQEtL_KTfoE8zA.roa (raw, json)
Hash identifier: z29umvMHp6El/He5qsP0iWpT5dDHX/V4Tr6ZPItCVZg=
Subject key identifier: 83:E7:BE:50:3B:4B:EF:0B:F4:C4:B4:04:B4:BF:CA:4D:FA:04:F3:30
Certificate issuer: /CN=b9ea8936f8e53063b4b3bdf0f3b15b2ae667ef13
Certificate serial: 0186E19954F65426B78F41FC4DAA6C58A17C
Authority key identifier: B9:EA:89:36:F8:E5:30:63:B4:B3:BD:F0:F3:B1:5B:2A:E6:67:EF:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ueqJNvjlMGO0s73w87FbKuZn7xM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/g-e-UDtL7wv0xLQEtL_KTfoE8zA.roa
Signing time: Tue 14 Mar 2023 19:29:27 +0000
ROA not before: Tue 14 Mar 2023 19:29:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61135
IP address blocks: 185.125.202.0/23 maxlen: 24
95.140.146.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 Mar 2023 12:35:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e1:99:54:f6:54:26:b7:8f:41:fc:4d:aa:6c:58:a1:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9ea8936f8e53063b4b3bdf0f3b15b2ae667ef13
Validity
Not Before: Mar 14 19:29:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=83e7be503b4bef0bf4c4b404b4bfca4dfa04f330
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:f0:62:54:42:01:64:e2:29:a1:49:50:33:2f:
60:1d:b1:c4:43:7e:69:01:cd:3c:8d:cc:03:86:9f:
21:d0:71:f9:56:74:e0:2d:da:af:1d:8b:41:04:bc:
4d:eb:04:65:e6:97:3c:56:60:2c:49:27:c9:da:c6:
b3:ae:c1:bc:85:57:1c:5d:0c:dc:0d:65:fc:ee:b7:
7b:d6:b7:d7:d3:56:e0:8f:2d:cf:fa:c5:97:e0:d6:
8b:34:a6:94:5d:54:29:a9:22:6a:48:32:e8:5f:20:
d4:f8:6e:3e:42:fe:cb:22:aa:33:b7:a5:f6:d3:93:
92:c5:61:38:ca:8b:ae:4a:58:dc:96:c2:d3:3c:5c:
4c:51:67:9f:ce:0b:69:f2:44:f3:0e:c2:78:d0:fd:
e3:ba:14:4a:77:56:b5:03:71:18:cf:0c:4d:9f:1d:
03:04:29:dc:19:f8:d4:f5:54:0a:ec:90:8a:1e:a5:
13:63:66:1e:7c:71:ea:1d:56:d6:94:fc:74:68:76:
f9:cb:b8:b6:22:ea:4c:a9:98:95:82:20:2a:98:60:
32:d1:a7:cc:e9:ca:30:e8:82:14:1a:89:d8:5d:88:
b6:f9:bb:43:32:77:8e:85:71:12:78:c5:8e:64:e8:
77:6d:ce:da:b2:c9:5c:8e:89:11:84:ec:82:8c:a4:
2d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:E7:BE:50:3B:4B:EF:0B:F4:C4:B4:04:B4:BF:CA:4D:FA:04:F3:30
X509v3 Authority Key Identifier:
keyid:B9:EA:89:36:F8:E5:30:63:B4:B3:BD:F0:F3:B1:5B:2A:E6:67:EF:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ueqJNvjlMGO0s73w87FbKuZn7xM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/g-e-UDtL7wv0xLQEtL_KTfoE8zA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/ueqJNvjlMGO0s73w87FbKuZn7xM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.140.146.0/24
185.125.202.0/23
Signature Algorithm: sha256WithRSAEncryption
67:1e:83:86:a6:9b:41:29:6d:95:68:e4:a7:ab:d7:ad:b5:83:
f0:30:3c:c2:d3:23:10:7e:3d:63:55:e4:a3:f4:60:37:ac:91:
e8:ae:16:2c:97:e3:7a:04:a7:36:c0:a2:e1:fc:2c:20:be:3d:
5e:4b:70:6e:e0:f7:c4:3f:5b:91:52:2a:30:9e:cc:1c:ef:18:
08:b6:cb:52:58:21:23:31:e7:52:97:2e:fd:f8:03:e1:89:af:
d6:fe:be:0f:36:6c:70:15:61:bc:3f:99:32:f7:f4:26:04:15:
2d:3d:2f:2d:96:f3:b4:51:ca:21:51:cb:94:2d:26:88:c4:15:
f9:1e:18:0a:34:1a:ee:ab:3c:41:b1:56:55:2c:fe:90:99:95:
89:98:10:50:c3:b9:73:f1:d2:76:8a:5e:d7:28:35:86:73:0f:
47:c9:44:95:a6:1a:d3:22:2e:88:17:33:93:40:a6:34:01:71:
20:48:0e:e8:32:15:99:15:78:48:7e:a3:c5:3a:51:5b:4b:be:
55:6a:ca:27:f5:e3:e2:43:31:1e:a0:af:a8:cf:8d:e7:cd:d2:
c7:bc:3a:cc:21:43:91:c3:5e:8c:cc:9f:35:b8:e8:99:8f:b1:
39:09:d4:17:18:68:fa:ab:6c:36:e2:57:64:05:b6:15:49:39:
a0:1b:6b:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:23 2024 by rpki-client on console-ams.rpki-client.org