Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/QIMYWUHAHZkctGRJ6BAKDPbaTY8.roa
File: QIMYWUHAHZkctGRJ6BAKDPbaTY8.roa (raw, json)
Hash identifier: oM6L+5emgU7Wy8b24pobWp4ml/+31s7pPxThz9lmN6Q=
Subject key identifier: 40:83:18:59:41:C0:1D:99:1C:B4:64:49:E8:10:0A:0C:F6:DA:4D:8F
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0186889695E74A2790F33F22E539153E4AE1
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/QIMYWUHAHZkctGRJ6BAKDPbaTY8.roa
Signing time: Sat 25 Feb 2023 12:40:15 +0000
ROA not before: Sat 25 Feb 2023 12:40:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199726
IP address blocks: 45.95.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:88:96:95:e7:4a:27:90:f3:3f:22:e5:39:15:3e:4a:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Feb 25 12:40:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4083185941c01d991cb46449e8100a0cf6da4d8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:13:d0:50:1c:7f:cf:a8:f0:3f:19:88:4e:4a:
50:86:cc:d5:97:9f:3b:56:fa:21:19:b0:d4:4e:ac:
6b:a7:0e:66:e3:a4:55:e6:f5:a5:c2:6e:a6:68:79:
a3:7a:48:70:64:00:22:86:ef:be:84:ac:50:96:e1:
e5:fc:3e:5b:7f:36:d4:6b:d3:fc:2f:e7:fd:7c:f6:
8e:90:40:61:b6:93:61:0e:cd:5b:99:42:58:04:2a:
c9:28:da:90:01:18:6e:60:e2:75:5b:7b:76:4c:32:
fc:1e:cf:da:db:0d:d8:ce:4c:0d:f2:95:98:20:a4:
fb:24:ea:c1:15:ab:d4:50:1f:4e:0c:fc:9d:a5:11:
89:b4:e7:b5:fe:33:49:cb:e7:7d:1c:b2:ad:2b:f3:
bb:02:87:97:df:4a:9f:c9:b1:51:da:3f:7b:b2:c4:
5a:0f:43:8e:b8:37:b9:94:e7:39:5f:9a:43:b0:6d:
91:fc:62:b7:16:43:a8:ae:7a:a2:70:e2:38:43:7f:
d8:55:ca:81:35:6f:1d:af:fe:f8:cf:5d:d8:d3:53:
81:41:17:2e:df:24:9c:3f:99:2d:c1:c8:dc:48:cb:
37:ec:c1:95:5e:bd:72:1e:8c:25:b4:a2:56:85:36:
dd:d7:d7:b6:31:c8:5a:fa:a0:42:5a:5f:09:43:62:
d4:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:83:18:59:41:C0:1D:99:1C:B4:64:49:E8:10:0A:0C:F6:DA:4D:8F
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/QIMYWUHAHZkctGRJ6BAKDPbaTY8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.200.0/24
Signature Algorithm: sha256WithRSAEncryption
10:b2:0c:c7:6d:86:ae:fb:2d:b5:44:bf:d7:8e:de:f1:58:98:
41:f7:b8:53:d5:bd:d4:77:62:23:c9:d4:79:5f:ee:5b:1e:66:
12:ad:70:80:68:40:05:d3:5a:b6:ed:85:70:25:25:6c:8a:39:
b7:a8:f8:8b:79:bf:ba:f6:82:49:d7:22:dc:a0:58:3a:af:b6:
4c:d1:1d:ff:51:c9:04:1c:12:2a:90:f4:ba:ef:ab:e2:05:0f:
be:27:ff:4e:e2:31:01:cd:8e:87:a6:ea:65:bc:d1:42:84:98:
bb:ee:a8:f0:b0:66:51:e1:81:2d:73:ff:4c:bb:77:70:df:6e:
74:af:8a:82:68:e7:b0:53:5e:7e:9e:56:5b:12:a8:0f:b0:70:
65:0e:bb:19:62:c1:df:9e:e2:0d:47:bd:b7:b0:ac:8b:89:9f:
eb:74:6b:93:02:7f:21:cd:aa:8c:68:93:c7:9c:86:96:12:29:
cc:80:e2:c0:a2:be:7c:30:df:4c:1d:86:cc:52:13:14:49:dd:
3b:36:96:d8:09:44:00:58:ac:2e:b7:8d:23:06:93:c6:20:40:
eb:3c:7a:f5:2a:40:33:9b:85:69:7a:d5:63:19:05:ab:f0:e8:
75:55:4f:7d:52:82:0c:22:0c:06:fa:bf:94:4c:b5:23:dd:45:
9a:b6:98:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:07 2024 by rpki-client on console-fra.rpki-client.org