Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/6WaOH4F4EJF2Gb0iuVEHoqAD2lI.roa
File: 6WaOH4F4EJF2Gb0iuVEHoqAD2lI.roa (raw, json)
Hash identifier: MpQ1+qMB/VbejmSH7+Mkop+QhlDe68j5RJgvQaUxC/Y=
Subject key identifier: E9:66:8E:1F:81:78:10:91:76:19:BD:22:B9:51:07:A2:A0:03:DA:52
Certificate issuer: /CN=ebec9030c70a3d4192d59c28dcc8d547694340b3
Certificate serial: 01856FCB92B0524A32E2F0604FD9555F3C1E
Authority key identifier: EB:EC:90:30:C7:0A:3D:41:92:D5:9C:28:DC:C8:D5:47:69:43:40:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/6WaOH4F4EJF2Gb0iuVEHoqAD2lI.roa
Signing time: Mon 02 Jan 2023 00:04:50 +0000
ROA not before: Mon 02 Jan 2023 00:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206105
IP address blocks: 80.95.21.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:92:b0:52:4a:32:e2:f0:60:4f:d9:55:5f:3c:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebec9030c70a3d4192d59c28dcc8d547694340b3
Validity
Not Before: Jan 2 00:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e9668e1f817810917619bd22b95107a2a003da52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:34:fc:97:e9:49:20:f9:28:63:e9:03:ff:e9:
96:47:1e:d5:ff:e4:e7:46:71:67:8e:46:49:32:fd:
46:33:eb:0e:91:b3:88:e3:fc:71:c0:b9:26:56:24:
0b:20:5f:d3:fd:dc:8a:3e:48:8a:96:d1:4d:71:64:
ec:91:8e:45:b0:c6:07:9d:4b:45:e0:d0:22:5b:a6:
8a:33:1a:7e:a1:05:db:b0:a0:37:fc:62:1a:48:a9:
e1:50:cb:0c:d2:34:ff:77:f0:6c:f2:0b:b2:f5:f1:
a7:3a:e3:3f:6b:54:28:7a:87:36:3f:04:c0:99:b4:
58:9f:44:6b:1e:d4:36:e2:40:c4:2c:78:d0:9b:3a:
bd:99:0d:a5:7e:0b:7a:f8:94:7b:39:30:9e:ce:38:
b7:39:bd:13:62:12:98:7e:51:dc:35:85:d3:16:75:
97:2f:53:75:49:d6:b1:83:91:b2:54:d0:8f:cf:54:
e1:d0:cc:19:ac:0a:17:a0:6c:eb:e1:2b:ca:11:95:
3e:90:25:06:a7:b7:72:f6:5f:ec:31:8e:ab:f0:97:
cf:bf:9d:aa:0a:e3:fd:45:f2:d8:10:84:97:bb:9c:
f4:37:d7:c0:35:c0:6a:1e:26:c2:e3:63:7e:39:b4:
1f:f2:ff:7e:73:e6:18:ef:52:7b:46:87:2d:c4:8c:
95:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:66:8E:1F:81:78:10:91:76:19:BD:22:B9:51:07:A2:A0:03:DA:52
X509v3 Authority Key Identifier:
keyid:EB:EC:90:30:C7:0A:3D:41:92:D5:9C:28:DC:C8:D5:47:69:43:40:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/6WaOH4F4EJF2Gb0iuVEHoqAD2lI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.95.21.0/24
Signature Algorithm: sha256WithRSAEncryption
97:5b:02:8b:39:b1:b3:f6:74:f1:3f:31:73:dc:7a:11:3b:9a:
a4:7f:e7:91:92:06:53:25:de:a0:58:c8:47:d6:fb:48:93:da:
13:48:96:2f:83:6d:70:b5:61:c0:48:76:df:37:af:29:5e:cd:
f2:83:64:0a:01:4c:40:ec:59:51:d1:0e:e4:0f:cd:6f:47:90:
e1:74:6e:c6:b4:49:75:e2:eb:22:70:d6:fa:9d:21:99:11:68:
f6:58:74:cd:7c:de:4c:ce:b8:46:d2:2a:41:5e:12:f8:a6:84:
13:7b:3d:a6:71:1c:d6:79:26:fa:b2:cf:ef:e5:ce:fe:69:db:
9f:e1:2a:3f:f9:86:a6:d2:ce:d8:fb:17:2b:78:7c:6d:fb:21:
6b:29:a6:86:a0:9b:92:ac:f0:e6:b0:30:b7:3d:33:64:86:29:
52:4d:fe:8c:26:e0:a0:71:04:0e:b1:45:6c:e9:2a:a9:65:f1:
ed:66:79:cb:b3:3c:90:0c:ef:a6:3f:db:8c:b4:f3:60:15:40:
97:49:cf:27:4e:06:1c:91:6c:95:c4:32:68:fd:25:d2:e4:17:
2f:e5:06:1c:b2:8d:50:b7:c9:5a:6a:21:df:11:02:64:7e:02:
2f:c1:0a:a7:e5:2a:a1:53:46:0c:6a:5d:07:32:ff:11:ea:39:
4d:fb:73:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:29 2024 by rpki-client on console-fra.rpki-client.org