Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/1-GM7BzdNUAxaY0pISx1V1hZJtIQ.roa
File: 1-GM7BzdNUAxaY0pISx1V1hZJtIQ.roa (raw, json)
Hash identifier: dvsy8p56yagHtMrKbOpLT1qe6xIRLvQMOz4sLC+DRwE=
Subject key identifier: F8:63:3B:07:37:4D:50:0C:5A:63:4A:48:4B:1D:55:D6:16:49:B4:84
Certificate issuer: /CN=ebec9030c70a3d4192d59c28dcc8d547694340b3
Certificate serial: 01856FCB8D8A8610ECFE13608E0D1E9B3307
Authority key identifier: EB:EC:90:30:C7:0A:3D:41:92:D5:9C:28:DC:C8:D5:47:69:43:40:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/1-GM7BzdNUAxaY0pISx1V1hZJtIQ.roa
Signing time: Mon 02 Jan 2023 00:04:49 +0000
ROA not before: Mon 02 Jan 2023 00:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197168
IP address blocks: 95.158.142.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:8d:8a:86:10:ec:fe:13:60:8e:0d:1e:9b:33:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebec9030c70a3d4192d59c28dcc8d547694340b3
Validity
Not Before: Jan 2 00:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f8633b07374d500c5a634a484b1d55d61649b484
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:88:7e:7a:a9:a3:ba:1f:80:ba:4a:cd:4a:a4:
0a:c4:8c:ab:86:33:70:b4:24:69:d9:52:5c:05:2b:
4e:72:b9:c3:90:73:94:02:59:59:f5:80:b4:61:a6:
b6:c1:81:28:d3:c0:4a:3d:94:ce:b4:3f:d7:9d:8f:
84:8e:33:5b:a6:4b:e2:31:9b:e8:54:92:1d:c0:21:
b0:6c:a0:08:13:c4:51:c8:ad:e3:9b:73:4e:72:86:
41:2a:20:ee:9c:40:be:8e:f5:fd:1b:d5:2b:c1:3d:
9a:3d:a0:a1:62:15:cf:97:16:ba:fa:48:a4:3e:02:
ff:1c:4d:30:92:64:e8:90:75:34:16:6f:5c:db:f6:
4e:d1:77:8b:ba:17:df:ce:06:40:b9:50:8b:46:6e:
b2:1a:79:80:3f:bc:a2:dc:7b:1c:31:4a:a2:ea:be:
6b:d7:e4:01:0d:0f:b5:f1:88:c3:8d:54:b4:0a:6f:
0a:fb:5a:9e:4e:c3:66:4d:8a:16:5f:0b:b3:69:89:
d9:d7:c2:f0:7f:9c:3e:15:a0:3c:47:1a:b1:b8:9b:
d1:4b:7f:23:a0:ac:a4:a6:40:8b:96:d9:31:40:f4:
d3:ef:33:10:e8:08:73:93:0e:04:aa:4c:5c:3d:8e:
9b:48:e6:f4:0b:9e:c3:a5:1a:89:97:0e:cf:52:dc:
06:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:63:3B:07:37:4D:50:0C:5A:63:4A:48:4B:1D:55:D6:16:49:B4:84
X509v3 Authority Key Identifier:
keyid:EB:EC:90:30:C7:0A:3D:41:92:D5:9C:28:DC:C8:D5:47:69:43:40:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/1-GM7BzdNUAxaY0pISx1V1hZJtIQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.158.142.0/23
Signature Algorithm: sha256WithRSAEncryption
06:b4:e1:7c:05:72:df:a3:c1:cb:72:23:21:6d:a5:0f:83:f1:
c2:ac:81:62:e4:31:13:33:12:93:fa:cb:48:53:e9:37:55:a5:
98:5b:da:c1:e9:d4:74:f2:f0:04:f5:ad:24:d5:65:c8:68:1f:
fd:ad:cf:4a:30:75:f3:58:f3:f5:a2:e2:3e:b5:d9:09:ef:7f:
fb:9d:6b:cd:b3:63:73:ab:2c:bb:54:c8:c3:07:19:4e:4a:f1:
44:9c:a9:46:de:82:7f:b7:bc:53:c5:d0:ec:0b:7e:42:cc:8b:
72:b2:54:fa:91:3e:da:b8:46:d5:51:26:d3:4e:f6:7e:26:a0:
41:3b:0c:15:c2:9d:e9:3e:a4:c0:b3:a9:ca:6b:07:31:50:27:
e2:4b:47:bc:6b:ce:26:c0:b7:1a:75:a8:b2:27:b2:20:21:9a:
2e:de:74:da:2d:69:58:c5:ef:28:5d:ca:ab:b1:60:6f:34:78:
01:ea:55:8a:17:af:b6:e0:c3:75:a6:46:9f:74:db:18:1a:1e:
ca:34:90:24:e0:bf:6e:d1:b7:5a:6e:6b:78:0b:ca:30:d2:8f:
64:bc:7b:fb:8b:66:3d:5e:88:07:ca:e6:71:65:76:9e:07:95:
b3:db:ee:b3:26:5e:16:9e:2d:64:75:29:5b:c0:96:0b:cd:d9:
46:09:0a:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:29 2024 by rpki-client on console-fra.rpki-client.org