Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/PVNQ0um770dBiDNRaLBkfNUZnLo.roa
File: PVNQ0um770dBiDNRaLBkfNUZnLo.roa (raw, json)
Hash identifier: XKYASk/o3Epv0W5OtVM7mPZ5Yuod7iE2FJ/3Z/UHR7E=
Subject key identifier: 3D:53:50:D2:E9:BB:EF:47:41:88:33:51:68:B0:64:7C:D5:19:9C:BA
Certificate issuer: /CN=ebec9030c70a3d4192d59c28dcc8d547694340b3
Certificate serial: 01856FCB8CA32E3A8329FE50CCD87747480E
Authority key identifier: EB:EC:90:30:C7:0A:3D:41:92:D5:9C:28:DC:C8:D5:47:69:43:40:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/PVNQ0um770dBiDNRaLBkfNUZnLo.roa
Signing time: Mon 02 Jan 2023 00:04:48 +0000
ROA not before: Mon 02 Jan 2023 00:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61975
IP address blocks: 95.158.169.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:8c:a3:2e:3a:83:29:fe:50:cc:d8:77:47:48:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebec9030c70a3d4192d59c28dcc8d547694340b3
Validity
Not Before: Jan 2 00:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3d5350d2e9bbef474188335168b0647cd5199cba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:04:80:50:2e:67:1f:53:67:d9:10:26:6a:e9:
dd:71:cc:30:9f:b9:ab:2a:e7:18:2e:0d:a3:cd:1d:
bb:12:bf:f9:4a:ec:ba:4a:16:eb:28:68:ee:3a:b8:
d8:6e:40:02:60:cb:d3:f1:55:38:45:8e:41:6d:0a:
26:06:55:1f:63:eb:ce:eb:1d:20:9f:f6:1a:d5:a5:
c6:48:2c:0f:05:20:c3:09:25:ba:4c:38:ae:23:ac:
8b:38:53:d7:64:2b:e2:f4:65:cd:19:f3:62:69:01:
cb:76:cc:82:d7:e3:6a:98:c7:a3:74:f2:58:5e:ab:
74:29:2f:5d:98:71:b0:dd:87:d5:2f:b6:be:0b:27:
f5:0d:92:32:b3:d4:3d:45:d7:30:fc:1c:89:9c:b2:
82:d7:90:85:d3:4d:26:93:2d:bc:9a:e2:2a:bc:d5:
20:ce:83:14:89:d8:ce:4f:13:b4:73:83:7b:3f:68:
90:5e:08:be:b3:79:53:83:bf:1a:77:f7:64:04:2b:
1e:10:bd:a7:ce:37:6d:d3:69:65:10:1e:01:e7:ae:
93:f8:27:e6:bf:e6:dd:68:9d:6f:1e:94:a6:bf:a1:
a6:54:c6:d9:90:c8:e1:f0:40:7e:23:54:2b:a6:f4:
71:c3:21:c6:28:2c:26:18:bc:ce:0e:c3:5c:df:55:
5f:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:53:50:D2:E9:BB:EF:47:41:88:33:51:68:B0:64:7C:D5:19:9C:BA
X509v3 Authority Key Identifier:
keyid:EB:EC:90:30:C7:0A:3D:41:92:D5:9C:28:DC:C8:D5:47:69:43:40:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/PVNQ0um770dBiDNRaLBkfNUZnLo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.158.169.0/24
Signature Algorithm: sha256WithRSAEncryption
11:ca:28:98:4c:9c:1f:56:44:bd:2b:31:c3:ef:55:99:82:6e:
8a:01:03:0f:49:4f:73:cf:59:f9:2a:c5:72:81:78:0e:4c:68:
f0:fe:8f:e1:95:20:12:24:2a:a7:59:a3:a4:47:75:32:78:2f:
70:3d:82:13:bc:6c:7f:10:92:ea:4b:ed:31:55:16:bf:9e:7f:
40:0e:dc:ec:dc:ad:cc:8b:72:55:eb:2f:de:27:24:19:bc:4c:
ed:fe:90:7d:31:96:ab:55:06:f7:59:93:ed:59:9e:30:5c:90:
09:48:85:10:74:b0:66:9b:24:84:f5:0e:44:79:f4:a1:3b:54:
6b:ea:0a:28:6b:4e:8a:bc:41:55:a0:b1:da:2f:22:31:b2:fe:
72:2b:5d:09:9d:bf:a6:a7:94:3b:66:88:f7:92:88:44:27:7c:
a1:89:15:66:30:0f:d6:cc:e9:63:0c:cb:15:34:f6:07:16:74:
13:67:f8:e5:03:74:24:0b:23:4e:a1:cd:f2:e0:c0:57:a7:3d:
79:d6:7d:5c:82:bd:bb:06:b8:8a:73:4d:03:ea:48:cd:ac:3f:
77:42:ec:39:2f:5c:5a:1f:8c:f0:0e:cb:89:85:cd:96:8f:8c:
fb:01:62:e6:d7:fe:1e:bf:93:89:08:a9:03:78:03:bf:63:92:
85:7d:dd:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:35 2024 by rpki-client on console-ams.rpki-client.org