Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/8_zxFvLpn-u3NQgWzlwRYLAL1RI.roa
File: 8_zxFvLpn-u3NQgWzlwRYLAL1RI.roa (raw, json)
Hash identifier: /aATM3ffXVBHAfJhn6smwdUL7zsy3/QDEY82AA3wLdQ=
Subject key identifier: F3:FC:F1:16:F2:E9:9F:EB:B7:35:08:16:CE:5C:11:60:B0:0B:D5:12
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0185710C348055EFA48610E2EB96DFE5DA55
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/8_zxFvLpn-u3NQgWzlwRYLAL1RI.roa
Signing time: Mon 02 Jan 2023 05:55:03 +0000
ROA not before: Mon 02 Jan 2023 05:55:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204339
IP address blocks: 45.95.200.0/24 maxlen: 24
2a0d:2dc2::/32 maxlen: 32
2a0b:da01::/32 maxlen: 32
2a0c:aa42::/32 maxlen: 32
2a0b:7782::/32 maxlen: 32
2a0d:2dc1::/32 maxlen: 32
2a0c:aa41::/32 maxlen: 32
2a0b:7781::/32 maxlen: 32
2a0b:da02::/32 maxlen: 32
2a0d:2dc0::/32 maxlen: 32
2a0b:da03::/32 maxlen: 32
2a0b:da00::/32 maxlen: 32
2a0c:aa46::/32 maxlen: 32
2a0b:7786::/32 maxlen: 32
2a0d:2dc3::/32 maxlen: 32
2a0c:aa43::/32 maxlen: 32
2a0b:da06::/32 maxlen: 32
2a0b:7783::/32 maxlen: 32
2a0c:aa40::/32 maxlen: 32
2a0b:7780::/32 maxlen: 32
2a0d:2dc6::/32 maxlen: 32
2a0b:da04::/32 maxlen: 32
2a0d:2dc5::/32 maxlen: 32
2a0c:aa45::/32 maxlen: 32
2a0b:7785::/32 maxlen: 32
2a0d:2dc7::/32 maxlen: 32
2a0b:7784::/32 maxlen: 32
2a0b:da05::/32 maxlen: 32
2a0c:aa44::/32 maxlen: 32
2a0b:7787::/32 maxlen: 32
2a0c:aa47::/32 maxlen: 32
2a0d:2dc4::/32 maxlen: 32
2a0b:da07::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 25 Feb 2023 12:40:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:34:80:55:ef:a4:86:10:e2:eb:96:df:e5:da:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 2 05:55:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f3fcf116f2e99febb7350816ce5c1160b00bd512
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fe:63:6a:17:db:cd:d1:a2:52:c8:0f:3f:7e:a0:
76:c9:4e:8b:41:60:aa:4d:a4:f6:84:e3:9e:81:14:
e1:f8:d4:63:2e:5d:05:0e:01:f2:33:b9:d0:ac:8c:
60:75:50:d2:70:e1:c4:3b:e0:85:ec:8d:4e:06:91:
ac:0f:f4:7f:eb:6c:0d:d4:7a:1d:18:4f:ca:08:e6:
00:b2:95:5f:df:ef:89:40:14:12:45:23:39:00:eb:
26:49:ab:8f:bc:7d:f8:05:74:5f:03:36:41:df:25:
86:09:3d:81:92:50:c5:41:b0:e5:83:58:7e:90:b8:
5e:f9:7e:b4:3e:f5:40:34:42:88:1d:91:3a:77:26:
49:24:fa:a3:76:7c:9a:fd:65:6d:7c:0f:a1:40:e4:
8d:62:09:8d:74:aa:f9:ae:6a:5d:3d:1a:28:f5:41:
12:8d:18:a9:65:2b:51:4b:b8:30:86:5f:a9:ed:5d:
ca:93:54:49:54:d3:3a:91:2d:c2:74:99:d6:e9:d5:
eb:86:15:09:d5:fb:4a:ba:19:19:3b:47:4e:cf:68:
dd:9f:51:52:69:16:54:7d:10:51:64:86:cd:e6:29:
5c:76:23:ee:bb:cb:f9:5f:55:94:55:3d:8b:e5:42:
de:8a:4b:c2:af:4c:39:3f:03:d0:2c:13:f1:d4:3c:
a7:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:FC:F1:16:F2:E9:9F:EB:B7:35:08:16:CE:5C:11:60:B0:0B:D5:12
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/8_zxFvLpn-u3NQgWzlwRYLAL1RI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.200.0/24
IPv6:
2a0b:7780::/29
2a0b:da00::/29
2a0c:aa40::/29
2a0d:2dc0::/29
Signature Algorithm: sha256WithRSAEncryption
43:58:d4:2f:55:00:1d:74:85:5c:4f:2a:fd:8d:93:65:ea:4c:
3a:50:cb:5a:c5:69:98:94:2f:29:0b:26:8d:46:84:81:b2:37:
41:31:1e:77:db:1a:2d:d7:68:6c:ca:b2:d9:61:ba:aa:0f:c1:
24:8e:7d:de:86:46:2c:47:5b:73:aa:05:45:80:98:c1:10:1c:
74:cd:92:cc:6e:01:45:6c:7a:24:16:90:c7:e0:cc:63:cd:ae:
22:2f:b9:1b:ab:93:64:3c:6d:32:fe:ea:8a:51:58:a9:ba:62:
f0:a2:27:0a:b4:41:a5:75:26:41:13:ee:ea:d1:7c:78:83:0a:
02:4b:b3:45:9c:62:5a:a9:5b:86:4d:40:0f:39:8d:33:f2:99:
2c:c3:b8:d3:dc:f4:47:2d:7e:f2:38:6c:de:46:a7:db:0f:de:
a2:b4:e1:3b:23:8a:59:c9:d5:87:98:b6:87:f8:ad:19:a7:1d:
42:35:3c:6d:9e:47:60:df:f0:11:8e:f7:31:fa:bc:f9:ed:a8:
9d:82:48:61:9f:6f:c8:80:78:f9:7f:f4:3f:80:24:33:9c:bc:
84:4a:57:aa:d9:21:87:42:49:4d:22:99:41:e1:e8:a2:ad:15:
99:3d:65:52:22:67:f3:93:d3:18:ee:02:95:43:c8:e4:0a:93:
f3:ad:2f:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:08 2024 by rpki-client on console-ams.rpki-client.org