Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/NiI1pM5-BO0Hw5cOflrE3_fndCY.roa
File: NiI1pM5-BO0Hw5cOflrE3_fndCY.roa (raw, json)
Hash identifier: 9jcS21ZrGeLA9jwKEB/8AJWUja0/SCNz9zIdADrLaso=
Subject key identifier: 36:22:35:A4:CE:7E:04:ED:07:C3:97:0E:7E:5A:C4:DF:F7:E7:74:26
Certificate issuer: /CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3
Certificate serial: 01856FF05EDD5A39D045D87781E7C6052F54
Authority key identifier: 02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/NiI1pM5-BO0Hw5cOflrE3_fndCY.roa
Signing time: Mon 02 Jan 2023 00:45:01 +0000
ROA not before: Mon 02 Jan 2023 00:45:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62304
IP address blocks: 45.95.144.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f0:5e:dd:5a:39:d0:45:d8:77:81:e7:c6:05:2f:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3
Validity
Not Before: Jan 2 00:45:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=362235a4ce7e04ed07c3970e7e5ac4dff7e77426
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d1:5c:3e:d0:ce:7e:81:20:27:ef:27:a7:03:
9c:a1:82:f2:1b:64:ed:c4:0b:0d:42:34:9d:18:58:
74:d9:43:94:6b:ce:cf:18:b1:6c:89:87:a4:04:d0:
8c:38:24:e9:dc:58:2f:93:45:0c:b5:53:a1:cb:d4:
1d:aa:b7:b1:d2:46:c6:2a:42:1c:e7:e0:8c:3d:84:
61:65:ab:e6:3f:1b:b9:3b:e8:9c:83:a0:2d:91:e5:
66:71:43:a9:81:e6:c6:a3:db:a6:54:24:d2:22:86:
c1:4c:b4:ac:26:b6:37:66:69:94:a1:d5:2f:1f:f3:
a8:48:15:1e:a3:aa:af:6d:a3:39:58:10:49:63:3e:
ba:ef:59:30:1e:9f:e3:d1:b2:79:d6:62:2a:44:b5:
78:2f:df:18:59:86:53:ed:ad:30:6a:53:9a:59:03:
b2:ff:7e:30:9d:17:b7:80:06:6c:25:c3:c4:23:ff:
72:13:aa:4c:15:dd:1a:f1:2b:e5:3b:1b:aa:ab:c5:
b3:62:23:b7:7d:2a:5d:c6:c0:97:b2:83:28:27:a2:
50:78:a0:bc:d3:ac:73:98:a7:a1:df:fc:c3:4b:fb:
61:3e:5d:98:6d:f1:e6:d4:de:7c:58:3f:03:68:10:
ad:19:14:ad:8d:a6:f8:4b:33:79:e7:54:74:6c:f4:
02:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:22:35:A4:CE:7E:04:ED:07:C3:97:0E:7E:5A:C4:DF:F7:E7:74:26
X509v3 Authority Key Identifier:
keyid:02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/NiI1pM5-BO0Hw5cOflrE3_fndCY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.144.0/24
Signature Algorithm: sha256WithRSAEncryption
61:b9:2a:97:1e:2f:f9:79:d2:c4:ff:95:c9:70:cf:f2:73:b6:
88:d3:99:59:ea:4f:ce:45:7c:95:97:ed:7c:b9:63:70:ce:15:
65:61:c4:57:4e:af:84:f8:2c:b8:ec:50:4c:53:06:73:d7:08:
ca:a6:c9:ef:ee:34:97:a1:4c:0a:25:fb:29:ef:42:e0:06:35:
93:d2:17:aa:37:a8:ba:ce:20:f7:8f:92:dc:6b:fa:95:dd:43:
d8:db:82:38:29:1b:e9:6a:c1:33:4d:f5:01:93:04:c0:e0:12:
ec:79:e0:3d:24:c6:21:8a:38:0d:1d:1a:ec:dc:00:f4:2a:bd:
d3:3a:a4:55:30:4f:aa:82:d0:0e:a8:7b:25:0f:21:e3:81:c3:
24:6c:7f:6b:78:c7:24:00:a4:be:d0:1b:c1:9b:0b:db:f2:f8:
c3:e2:d3:46:38:ae:6d:c4:5d:e2:1f:98:e9:82:34:6c:85:51:
38:74:88:69:83:ce:1e:2c:eb:3a:16:5d:de:cf:6d:c6:61:da:
0d:fc:cd:d5:a3:50:ec:c7:38:13:6e:58:18:cb:35:78:9e:78:
4b:9d:be:32:43:a4:58:94:4b:fb:63:a6:08:cb:19:67:2d:52:
5c:97:7d:d3:14:07:47:8d:fe:71:e7:f2:58:69:23:47:9f:5f:
0b:0f:0f:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:26:34 2024 by rpki-client on console-fra.rpki-client.org