Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/9d1c8f-c634-46aa-aff8-7c2b21ff6ceb/1/0CvKyKdd0UeqhqRJNs1VURveyqE.roa
File: 0CvKyKdd0UeqhqRJNs1VURveyqE.roa (raw, json)
Hash identifier: Edd3v1dSVtq79mqZCUtacOwL62Mmwm7vJYNuQmnCh9Q=
Subject key identifier: D0:2B:CA:C8:A7:5D:D1:47:AA:86:A4:49:36:CD:55:51:1B:DE:CA:A1
Certificate issuer: /CN=6ab75929e735ce65a66bd82dca8b651d9856cd2c
Certificate serial: 0185719E7087D80C615414990BBC30C80B70
Authority key identifier: 6A:B7:59:29:E7:35:CE:65:A6:6B:D8:2D:CA:8B:65:1D:98:56:CD:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ardZKec1zmWma9gtyotlHZhWzSw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/9d1c8f-c634-46aa-aff8-7c2b21ff6ceb/1/0CvKyKdd0UeqhqRJNs1VURveyqE.roa
Signing time: Mon 02 Jan 2023 08:34:46 +0000
ROA not before: Mon 02 Jan 2023 08:34:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 95.156.251.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:70:87:d8:0c:61:54:14:99:0b:bc:30:c8:0b:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ab75929e735ce65a66bd82dca8b651d9856cd2c
Validity
Not Before: Jan 2 08:34:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d02bcac8a75dd147aa86a44936cd55511bdecaa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:2f:da:95:17:87:3e:c0:f2:01:62:4f:9d:46:
a1:a0:70:fe:2b:92:00:43:c3:54:88:93:93:24:3a:
c0:12:ed:65:eb:56:44:80:f1:5b:6d:09:20:e6:e7:
27:4d:ab:47:9a:1e:c9:1c:3e:56:86:6a:4f:c4:88:
51:1d:92:99:76:3e:26:d9:6d:bb:81:07:bf:09:c8:
16:44:62:74:59:6b:19:dc:f8:32:32:00:1a:82:55:
55:73:f9:45:91:a7:67:a4:05:41:fd:c3:b6:13:ca:
cd:f9:15:8f:18:9d:7d:4f:83:29:29:a5:6a:d9:db:
a0:d9:40:1c:b2:83:fd:ec:7a:4f:19:f6:db:f0:a4:
0a:d6:75:71:a6:17:a6:2f:2a:4a:cd:cf:ef:40:bd:
e7:ff:4d:06:36:f5:26:28:9a:b5:2c:38:b2:25:f9:
3b:99:69:47:a5:59:25:a5:71:a2:0c:95:db:1f:dd:
ca:d1:db:08:3b:a2:ee:d3:cc:d6:80:5d:f7:6a:f2:
85:9a:6a:e2:13:2b:f6:d1:2a:e2:32:e9:68:43:ab:
ea:4f:eb:76:c8:68:9b:1e:35:be:4e:82:d4:d3:3d:
3c:ea:52:dc:19:21:8b:0c:04:0d:7a:5c:05:21:ec:
2d:e3:16:55:bd:94:3a:6f:62:94:0c:19:78:e8:2c:
da:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:2B:CA:C8:A7:5D:D1:47:AA:86:A4:49:36:CD:55:51:1B:DE:CA:A1
X509v3 Authority Key Identifier:
keyid:6A:B7:59:29:E7:35:CE:65:A6:6B:D8:2D:CA:8B:65:1D:98:56:CD:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ardZKec1zmWma9gtyotlHZhWzSw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/9d1c8f-c634-46aa-aff8-7c2b21ff6ceb/1/0CvKyKdd0UeqhqRJNs1VURveyqE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/9d1c8f-c634-46aa-aff8-7c2b21ff6ceb/1/ardZKec1zmWma9gtyotlHZhWzSw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.156.251.0/24
Signature Algorithm: sha256WithRSAEncryption
49:90:46:7d:66:90:b5:17:8c:3b:bf:07:42:11:46:7e:52:3f:
1e:56:03:ec:ee:d8:1a:9f:2b:fe:8e:63:ac:9e:35:1d:6c:36:
4b:0e:2f:32:70:0f:07:ab:c5:58:96:94:06:28:51:7a:2b:4c:
c8:be:d9:d9:88:68:8c:f9:50:24:22:d1:42:ff:97:b7:96:12:
86:fa:7d:35:61:56:6c:9e:aa:f7:a4:d1:41:9b:bf:a6:c3:f3:
43:2e:9b:d9:de:c4:92:7a:8d:65:e0:71:98:47:43:65:39:25:
5f:58:5e:3b:0d:17:fc:56:49:40:21:3c:ea:c7:a8:2f:ec:dc:
92:4e:3f:18:0d:3b:bd:04:0d:9e:87:f5:4e:7a:aa:84:bf:12:
2e:5d:90:8a:5a:10:5b:f6:16:d0:9e:3c:ae:c4:2e:b6:75:1a:
0b:08:ae:33:3c:bf:7f:7a:8a:7c:af:07:b3:15:76:0b:83:bb:
09:98:f8:58:72:51:d0:b1:68:31:ab:4c:74:f6:d4:f0:40:d7:
6c:00:4e:dd:bd:ad:0c:76:7f:84:d2:97:f9:06:82:cf:65:02:
3d:67:7c:f6:09:5e:fd:d9:cd:eb:cf:bb:47:e4:d2:7e:55:28:
b1:85:91:25:3a:c3:57:9e:1b:ff:7c:a7:56:a2:23:8d:56:f5:
7c:ba:fd:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:48 2023 by rpki-client on console-fra.rpki-client.org