Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/a3df81-2096-493d-b106-46d6cea20342/1/vNCYURV7RCTEDBqblkl72BHThpY.roa
File: vNCYURV7RCTEDBqblkl72BHThpY.roa (raw, json)
Hash identifier: KVv6qFgt436LST8OAvP73wPYToN87959u9/QxsPZG8E=
Subject key identifier: BC:D0:98:51:15:7B:44:24:C4:0C:1A:9B:96:49:7B:D8:11:D3:86:96
Certificate issuer: /CN=191ee3af820563494647551a5206ef0c45cf95c9
Certificate serial: 01856F5DF09A1FF082C8B42509F5238D89FB
Authority key identifier: 19:1E:E3:AF:82:05:63:49:46:47:55:1A:52:06:EF:0C:45:CF:95:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GR7jr4IFY0lGR1UaUgbvDEXPlck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/a3df81-2096-493d-b106-46d6cea20342/1/vNCYURV7RCTEDBqblkl72BHThpY.roa
Signing time: Sun 01 Jan 2023 22:05:05 +0000
ROA not before: Sun 01 Jan 2023 22:05:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197081
IP address blocks: 95.131.16.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:f0:9a:1f:f0:82:c8:b4:25:09:f5:23:8d:89:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=191ee3af820563494647551a5206ef0c45cf95c9
Validity
Not Before: Jan 1 22:05:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bcd09851157b4424c40c1a9b96497bd811d38696
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:bb:91:65:ea:1b:3e:73:92:90:1d:d5:c4:5c:
53:b1:74:86:dd:48:a0:57:60:e8:f7:c5:27:40:97:
f2:47:19:90:ce:7c:58:33:77:22:11:17:d1:13:64:
df:7f:16:32:9a:bd:68:fc:e7:68:57:8a:41:db:bb:
52:cf:2a:95:1d:46:bb:1b:66:36:a9:96:48:aa:b7:
31:be:a1:41:e8:d3:32:a7:79:62:da:d1:7a:47:d2:
04:06:9a:6a:ae:15:e8:bd:58:26:6d:70:82:82:94:
5f:8b:f0:20:32:e2:47:fd:b9:d7:e6:34:ed:20:d0:
39:de:b5:4f:5f:4f:c4:3f:9f:e1:5e:10:8e:4e:8f:
35:a4:56:be:52:25:29:99:11:75:a1:53:7b:ae:15:
03:8b:2c:cf:55:7a:83:fe:40:0e:a1:d4:14:b2:16:
c1:f4:a9:0b:d4:9f:47:81:d8:e6:bc:2e:24:29:95:
1c:37:d8:81:81:c6:83:42:4b:45:69:c5:d9:9d:3e:
b2:77:cb:76:88:4a:81:11:0d:77:49:d9:9f:ef:44:
73:b5:b4:5b:cc:01:43:d1:d8:33:96:38:ae:9c:2b:
3e:42:03:2a:93:56:75:c2:05:9e:a6:db:2d:4d:ba:
d5:79:bf:5b:51:d7:ed:58:d3:87:dd:d3:b6:e2:be:
93:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:D0:98:51:15:7B:44:24:C4:0C:1A:9B:96:49:7B:D8:11:D3:86:96
X509v3 Authority Key Identifier:
keyid:19:1E:E3:AF:82:05:63:49:46:47:55:1A:52:06:EF:0C:45:CF:95:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GR7jr4IFY0lGR1UaUgbvDEXPlck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/a3df81-2096-493d-b106-46d6cea20342/1/vNCYURV7RCTEDBqblkl72BHThpY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/a3df81-2096-493d-b106-46d6cea20342/1/GR7jr4IFY0lGR1UaUgbvDEXPlck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.131.16.0/23
Signature Algorithm: sha256WithRSAEncryption
0b:9e:42:b7:96:b8:4a:d2:d1:26:6e:9c:f9:69:d1:5f:75:e8:
14:45:58:f5:a9:a7:5d:11:2e:50:38:7f:bf:af:ef:1e:63:b6:
1e:4f:33:1d:d0:55:7d:01:5c:b2:76:95:2e:5e:f4:6f:1d:34:
2a:7c:f7:cb:91:44:a8:de:4b:59:38:02:a8:e1:c7:35:75:21:
33:af:9d:ca:9e:e1:44:bb:50:5b:9f:9e:29:97:50:ae:ac:64:
0a:18:5a:19:10:a3:63:17:dc:8d:d6:0d:86:51:d7:69:9d:33:
58:a0:0c:7d:27:e8:64:f7:82:d2:ec:0d:2e:f6:39:b5:b5:f5:
2d:ea:5a:0a:e1:b3:63:67:b1:97:fa:3d:f4:3e:8b:d9:00:5d:
71:6a:bd:95:f8:ac:f9:02:b7:d4:68:70:31:a3:d5:81:d8:27:
e6:36:6c:dc:a8:7a:47:83:cd:fe:bb:e0:e0:78:76:c7:de:fa:
72:93:f2:45:dd:8c:e3:4e:38:ec:16:2f:b1:54:50:c5:5c:0b:
cc:61:18:36:bc:a0:00:8d:a6:ce:b7:41:7b:c6:ca:b7:2a:21:
6a:50:d6:2c:c7:9e:c0:2b:87:ea:82:26:ef:43:e3:14:77:df:
43:9d:8c:0a:39:43:c8:9e:60:5e:f9:14:5b:cb:ce:5f:68:24:
2a:34:1f:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:20:31 2024 by rpki-client on console-fra.rpki-client.org