Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/ejOlDWHSxan6jmp4-50rUlSzt3M.roa
File: ejOlDWHSxan6jmp4-50rUlSzt3M.roa (raw, json)
Hash identifier: UiMyzuNkzw9ngq67cjr1nVfUc078ziERqomRwo4DSVE=
Subject key identifier: 7A:33:A5:0D:61:D2:C5:A9:FA:8E:6A:78:FB:9D:2B:52:54:B3:B7:73
Certificate issuer: /CN=f0c104041691dc384f3b1a8cdf95c96628ea6daf
Certificate serial: 018BF58C1A6B346DE3C73F82DC8CDBE25358
Authority key identifier: F0:C1:04:04:16:91:DC:38:4F:3B:1A:8C:DF:95:C9:66:28:EA:6D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8MEEBBaR3DhPOxqM35XJZijqba8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/ejOlDWHSxan6jmp4-50rUlSzt3M.roa
Signing time: Wed 22 Nov 2023 05:41:21 +0000
ROA not before: Wed 22 Nov 2023 05:41:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42337
IP address blocks: 95.38.136.0/22 maxlen: 22
95.38.140.0/22 maxlen: 22
95.38.152.0/24 maxlen: 24
95.38.152.0/21 maxlen: 21
95.38.153.0/24 maxlen: 24
95.38.168.0/22 maxlen: 22
95.38.174.0/24 maxlen: 24
95.38.96.0/21 maxlen: 21
95.38.97.0/24 maxlen: 24
95.38.98.0/24 maxlen: 24
95.38.96.0/24 maxlen: 24
95.38.104.0/22 maxlen: 22
95.38.130.0/23 maxlen: 23
95.38.132.0/22 maxlen: 22
95.38.240.0/21 maxlen: 21
95.38.243.0/24 maxlen: 24
95.38.244.0/24 maxlen: 24
95.38.245.0/24 maxlen: 24
95.38.241.0/24 maxlen: 24
95.38.242.0/24 maxlen: 24
95.38.246.0/24 maxlen: 24
95.38.248.0/22 maxlen: 22
95.38.247.0/24 maxlen: 24
95.38.200.0/22 maxlen: 22
95.38.208.0/22 maxlen: 22
95.38.240.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 25 Nov 2023 08:35:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f5:8c:1a:6b:34:6d:e3:c7:3f:82:dc:8c:db:e2:53:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0c104041691dc384f3b1a8cdf95c96628ea6daf
Validity
Not Before: Nov 22 05:41:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7a33a50d61d2c5a9fa8e6a78fb9d2b5254b3b773
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:d4:9a:21:23:c9:c8:41:1f:99:f9:c4:e7:bb:
28:a9:c3:03:ea:ed:7f:19:97:35:25:35:0c:94:1c:
e5:03:ca:9a:3e:cc:df:ef:70:6a:de:02:f9:d8:a5:
55:ee:f8:e6:b5:a3:05:2b:63:74:89:94:c3:c3:72:
9f:9b:92:5b:ee:aa:be:7d:1f:3a:67:33:8b:9b:75:
e7:65:13:ec:82:9c:63:3f:ad:55:2b:d1:5e:a9:0d:
d8:65:27:92:32:ab:02:61:1a:97:e9:24:60:85:44:
c8:c5:83:d4:bc:64:5e:36:5a:31:41:1f:bd:8b:7f:
80:9f:bb:69:67:5a:18:5d:1a:50:5c:9d:5a:ae:dc:
3d:09:43:1a:e2:81:70:be:cd:d3:34:71:91:a7:06:
aa:e1:3e:a5:d8:ae:32:5b:c3:43:78:6a:d3:a7:53:
23:3d:98:b5:57:18:e2:d5:ec:ad:55:d3:1f:16:65:
44:94:b3:9b:ae:c9:b4:3e:d6:c9:69:92:83:ee:a1:
26:61:01:4b:80:ac:fd:34:29:a8:9b:d8:e3:70:e6:
47:16:18:98:06:4d:f1:28:2a:b7:87:a0:97:65:f7:
04:d2:c0:0f:c7:78:c4:af:1b:43:36:18:d9:0c:97:
5a:ec:10:ec:95:ca:8f:3b:a9:69:26:df:fe:f3:3e:
e3:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:33:A5:0D:61:D2:C5:A9:FA:8E:6A:78:FB:9D:2B:52:54:B3:B7:73
X509v3 Authority Key Identifier:
keyid:F0:C1:04:04:16:91:DC:38:4F:3B:1A:8C:DF:95:C9:66:28:EA:6D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8MEEBBaR3DhPOxqM35XJZijqba8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/ejOlDWHSxan6jmp4-50rUlSzt3M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/8MEEBBaR3DhPOxqM35XJZijqba8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.38.96.0-95.38.107.255
95.38.130.0-95.38.143.255
95.38.152.0/21
95.38.168.0/22
95.38.174.0/24
95.38.200.0/22
95.38.208.0/22
95.38.240.0-95.38.251.255
Signature Algorithm: sha256WithRSAEncryption
5c:7f:65:07:38:91:93:d3:73:f4:8f:16:7b:3d:0c:af:da:e4:
b7:0e:87:e7:c0:c1:83:03:59:e5:9f:9c:11:2f:31:76:1e:86:
c0:6d:5f:4a:f6:b7:c7:da:69:c2:f7:34:e7:11:80:29:d1:07:
49:0a:75:8f:bc:d3:4d:c5:8e:b1:58:57:b9:94:0f:84:47:fa:
c0:bf:ce:01:83:a6:bb:76:48:d5:d3:9a:06:03:e1:44:16:e4:
59:11:8f:26:44:8f:6c:6f:bc:9d:3d:60:d2:c4:f0:99:00:14:
e5:eb:88:a6:e0:48:61:17:ae:af:51:9f:9c:1b:ec:79:55:4e:
0a:9b:e8:c6:6b:02:6c:32:aa:c4:c7:07:8a:7b:b8:7f:78:5c:
c3:7c:e9:44:0f:21:fa:a1:aa:a8:15:3b:86:45:bc:40:89:d5:
1c:b1:fd:26:98:36:37:29:67:82:ad:b3:e6:04:61:d5:e3:cf:
56:5b:25:a0:65:76:46:e2:a5:dc:8c:17:5e:56:4c:b4:17:10:
58:55:a5:33:69:e1:2b:71:c6:0b:5d:76:b2:2b:50:43:f7:9f:
b9:59:c1:51:df:42:a0:68:6a:fb:a6:78:e2:3e:23:39:3f:16:
5b:34:f2:9b:eb:6a:23:47:1a:e8:18:45:89:6a:cb:a9:d5:b4:
86:75:8f:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:54 2024 by rpki-client on console-fra.rpki-client.org