Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/EzL5pThXEugWUQOpXwCf0gIL-d0.roa
File: EzL5pThXEugWUQOpXwCf0gIL-d0.roa (raw, json)
Hash identifier: m5WWj6Eq8+1dg6tCkf1AZJyZYcih05wI6aDdYPlFvIQ=
Subject key identifier: 13:32:F9:A5:38:57:12:E8:16:51:03:A9:5F:00:9F:D2:02:0B:F9:DD
Certificate issuer: /CN=ebec9030c70a3d4192d59c28dcc8d547694340b3
Certificate serial: 01856FCB8D0A4516621A5E01792993C932CD
Authority key identifier: EB:EC:90:30:C7:0A:3D:41:92:D5:9C:28:DC:C8:D5:47:69:43:40:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/EzL5pThXEugWUQOpXwCf0gIL-d0.roa
Signing time: Mon 02 Jan 2023 00:04:48 +0000
ROA not before: Mon 02 Jan 2023 00:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62386
IP address blocks: 95.158.136.0/22 maxlen: 24
95.158.140.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:8d:0a:45:16:62:1a:5e:01:79:29:93:c9:32:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebec9030c70a3d4192d59c28dcc8d547694340b3
Validity
Not Before: Jan 2 00:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1332f9a5385712e8165103a95f009fd2020bf9dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:af:69:5f:b6:67:70:27:5e:69:38:51:58:ce:
f0:23:25:02:c2:8f:f8:58:b6:b4:f6:f4:7f:77:ef:
a5:74:e2:21:48:d7:7e:ac:31:de:f9:00:08:3d:2c:
2c:1d:24:28:13:2d:8e:4b:8f:88:8b:35:30:13:09:
12:cc:43:8d:3b:a8:d6:8f:87:41:60:78:f2:61:f9:
d4:f1:31:bd:7d:e9:ce:3a:83:16:33:67:83:13:3f:
e7:c6:bb:5f:b9:83:6b:1a:d3:86:a8:8b:90:cc:7a:
0e:82:bd:82:a2:25:67:84:e6:38:6c:60:60:c4:95:
81:8a:20:3f:18:83:b4:b8:17:74:de:47:ea:7d:91:
30:0a:da:ca:08:e0:17:de:74:6c:99:40:6b:0e:62:
8b:83:9f:be:40:54:50:c9:f5:96:a3:a3:76:a7:a3:
0c:82:90:b0:d6:02:06:80:f9:c0:a9:09:eb:63:e2:
75:09:84:0d:5b:1e:e0:34:43:0e:09:f7:d4:3b:87:
e4:e6:0c:43:fa:ce:ff:d3:59:10:ba:53:0f:fd:a9:
ea:98:13:6e:63:c2:22:ea:b3:5f:8d:11:4e:d2:ab:
e0:3d:2e:b3:c3:7a:cf:a1:87:8c:c2:33:9c:55:42:
b9:2c:ca:b6:86:55:9a:63:aa:d8:38:e9:22:db:47:
aa:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:32:F9:A5:38:57:12:E8:16:51:03:A9:5F:00:9F:D2:02:0B:F9:DD
X509v3 Authority Key Identifier:
keyid:EB:EC:90:30:C7:0A:3D:41:92:D5:9C:28:DC:C8:D5:47:69:43:40:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/EzL5pThXEugWUQOpXwCf0gIL-d0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.158.136.0-95.158.141.255
Signature Algorithm: sha256WithRSAEncryption
b3:77:d0:15:6f:76:f4:dc:ee:00:14:6c:84:3b:d4:63:51:5c:
77:b4:cc:e2:1b:60:2d:91:a1:9a:f0:5e:6e:25:7d:3e:e5:f1:
a4:fa:8f:ae:6c:bc:70:69:e1:bb:ec:b9:bd:ef:09:bb:ea:fa:
fb:0f:cf:45:42:35:d5:6a:62:44:05:b8:bf:e5:71:6d:a9:b5:
6d:13:11:cb:f7:1f:9a:54:bf:9c:ba:ff:24:a9:a3:3d:82:7d:
a3:b2:10:b0:49:ee:ba:e8:04:15:b1:61:0f:74:a6:ba:8f:39:
4e:fd:39:da:92:07:e4:1f:f2:47:16:c2:38:a1:4c:63:e3:d2:
8e:23:fb:9a:d7:84:55:d3:6a:37:f5:c3:ec:40:99:46:01:1b:
f3:9f:0c:18:93:f2:db:3e:31:08:dc:08:83:a3:97:92:14:2c:
fc:20:cb:70:ef:c7:05:9b:d7:32:96:be:39:53:cc:34:7c:d9:
0a:4b:2f:d1:40:b3:de:aa:4b:36:5a:db:84:ce:7c:a3:b3:5f:
b6:5f:eb:e4:09:c9:d5:07:1a:51:35:98:3d:16:ce:55:ed:4b:
13:03:e9:c6:c8:43:fd:3b:ed:52:6f:7b:2a:fa:0a:9c:00:09:
53:c6:10:c6:c1:48:9b:e3:3c:34:ea:d4:6f:74:41:5e:3e:d9:
71:72:84:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:35 2024 by rpki-client on console-ams.rpki-client.org