Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/kbzIQVfZT1uGwkvkuTiR8WArMa8.roa
File: kbzIQVfZT1uGwkvkuTiR8WArMa8.roa (raw, json)
Hash identifier: jn2v3g/CVlO6klnEB8UswAwMw1qh7x6WmaLCQgxhnUY=
Subject key identifier: 91:BC:C8:41:57:D9:4F:5B:86:C2:4B:E4:B9:38:91:F1:60:2B:31:AF
Certificate issuer: /CN=b9ea8936f8e53063b4b3bdf0f3b15b2ae667ef13
Certificate serial: 01856DC1C844CFDD5ADE71FC3586B993C175
Authority key identifier: B9:EA:89:36:F8:E5:30:63:B4:B3:BD:F0:F3:B1:5B:2A:E6:67:EF:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ueqJNvjlMGO0s73w87FbKuZn7xM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/kbzIQVfZT1uGwkvkuTiR8WArMa8.roa
Signing time: Sun 01 Jan 2023 14:34:54 +0000
ROA not before: Sun 01 Jan 2023 14:34:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6789
IP address blocks: 95.140.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:c8:44:cf:dd:5a:de:71:fc:35:86:b9:93:c1:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9ea8936f8e53063b4b3bdf0f3b15b2ae667ef13
Validity
Not Before: Jan 1 14:34:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=91bcc84157d94f5b86c24be4b93891f1602b31af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:5e:68:30:3d:aa:13:e0:0f:51:ba:e8:85:d6:
3f:c8:b9:2c:79:b8:c0:f5:e7:e7:80:45:68:a6:29:
a5:3c:b8:86:de:0f:b3:32:2f:ee:41:82:38:75:15:
31:4f:4f:99:5a:ab:18:3d:15:33:d6:78:fc:0a:45:
b5:2c:9a:9a:e9:75:19:24:87:03:b4:85:79:c0:79:
cc:7f:17:64:1b:15:56:57:9e:86:9a:65:01:61:d0:
97:5b:0b:78:ab:bd:d0:cb:03:59:6e:e6:67:4f:7a:
6b:99:f7:ca:87:33:6f:a8:10:c3:b5:35:3f:15:d5:
cf:2a:bc:2f:25:75:9f:b1:de:ff:f6:cc:0c:71:17:
b8:25:ab:7c:dd:44:15:46:82:1e:3f:c9:cb:df:89:
7c:7c:34:9a:3f:6b:d6:5e:8d:64:97:6f:19:77:99:
73:28:60:e8:71:8f:ff:40:47:3d:3d:5c:82:78:92:
9b:db:36:f0:b3:09:4a:26:12:c2:fd:ba:50:58:42:
54:63:4e:17:f3:b6:ac:eb:a8:8b:4d:04:5f:6e:e1:
2e:b2:d8:42:bd:3c:66:88:ee:99:42:87:e3:9d:ec:
04:0e:9f:a3:2e:58:d1:6f:4e:a0:2d:ed:c1:4b:b3:
d1:92:27:40:2a:0e:f0:db:8c:b4:b2:a7:97:07:44:
a4:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:BC:C8:41:57:D9:4F:5B:86:C2:4B:E4:B9:38:91:F1:60:2B:31:AF
X509v3 Authority Key Identifier:
keyid:B9:EA:89:36:F8:E5:30:63:B4:B3:BD:F0:F3:B1:5B:2A:E6:67:EF:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ueqJNvjlMGO0s73w87FbKuZn7xM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/kbzIQVfZT1uGwkvkuTiR8WArMa8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/ueqJNvjlMGO0s73w87FbKuZn7xM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.140.151.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:b8:f3:bc:40:7b:5b:cf:98:85:51:04:f2:d7:25:23:a6:35:
48:bb:c0:72:17:58:f3:ce:c5:7d:ac:c6:a7:30:08:cb:92:ee:
07:7a:bd:d8:1d:20:39:51:cb:28:4f:97:bd:39:a5:03:55:b3:
54:5b:e4:48:7c:2b:5c:4c:13:ba:ca:6b:2f:8e:35:2f:52:23:
1b:71:c3:40:2e:59:40:7a:1c:7e:54:5b:04:4d:c9:dd:ce:2e:
83:0a:25:c4:4e:10:8a:7e:52:ca:ba:be:eb:b7:e8:17:22:82:
95:6d:41:11:20:41:aa:13:3e:09:5d:e1:f0:be:a5:f0:1b:56:
70:90:97:34:a5:4d:1e:77:38:4a:9c:ab:30:37:0b:e1:3c:62:
17:45:9d:8e:c3:9d:d9:6c:b5:f1:6e:f5:a7:33:df:a6:17:ed:
24:b8:7c:a7:53:5b:97:ab:a4:ff:42:09:1f:e5:0a:a5:3b:bd:
1a:de:55:51:c4:f5:09:63:77:1a:17:fa:22:4e:1c:56:b4:58:
cb:d7:77:0c:ba:cc:f0:e5:d1:aa:68:97:12:d1:ef:43:ca:9f:
c0:9e:2e:3d:f8:38:29:71:49:39:65:4e:0e:ea:e7:f0:2f:31:
d1:2e:5f:9a:ee:67:77:09:f5:07:96:57:23:51:70:d0:82:b4:
bb:20:97:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:15 2024 by rpki-client on console-fra.rpki-client.org