Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/3zmIA5LSLTm0LuyHfpqYHRAm2QQ.roa
File: 3zmIA5LSLTm0LuyHfpqYHRAm2QQ.roa (raw, json)
Hash identifier: sV9Sqak6G8+35LrnQLJsMWCeodCiiSAWztxGmZxRA1Q=
Subject key identifier: DF:39:88:03:92:D2:2D:39:B4:2E:EC:87:7E:9A:98:1D:10:26:D9:04
Certificate issuer: /CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Certificate serial: 0191D12AB5C5013E84248047B83BDD6CB5E3
Authority key identifier: BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/3zmIA5LSLTm0LuyHfpqYHRAm2QQ.roa
Signing time: Sun 08 Sep 2024 10:25:22 +0000
ROA not before: Sun 08 Sep 2024 10:25:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21859
IP address blocks: 45.95.226.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 26 Sep 2024 21:18:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:d1:2a:b5:c5:01:3e:84:24:80:47:b8:3b:dd:6c:b5:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Validity
Not Before: Sep 8 10:25:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=df39880392d22d39b42eec877e9a981d1026d904
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:cd:18:23:31:a8:b7:a6:be:4c:65:40:3b:e2:
c5:ac:e1:88:38:c0:90:d2:b8:50:0b:2c:dc:d7:06:
dc:8a:77:d8:30:65:02:38:54:33:00:e0:46:41:f8:
f9:9b:1a:a2:af:b3:8d:ef:31:86:04:b2:16:08:36:
ca:09:c9:dc:23:fa:90:0f:a1:65:b2:9d:c3:05:6e:
04:ac:95:df:8e:e4:e3:46:5a:eb:d8:d4:7e:dc:4d:
74:a5:2e:02:06:44:0a:49:c0:83:4d:21:60:b0:a4:
91:c2:f9:42:6b:91:f6:27:e9:06:e9:1d:ae:54:2b:
a1:a4:74:e6:a6:cc:c7:46:b1:08:b4:3f:22:c3:e7:
2f:49:0f:74:e0:f8:c4:20:04:fd:70:5f:9a:7a:d8:
61:47:a0:05:6e:72:c3:02:25:4a:b8:80:a5:fe:f5:
72:25:25:46:d2:63:40:ca:45:08:20:34:53:bd:70:
ad:fa:bc:8d:6c:e3:99:2b:80:eb:e6:62:da:6c:42:
74:f9:45:cb:a1:0b:49:59:28:2b:67:3c:54:f3:72:
15:b5:90:e4:d2:21:8f:5b:4f:34:99:e8:78:6c:fa:
7b:7a:a1:4b:f3:59:46:d8:42:89:8a:4a:3f:55:39:
b4:5a:c1:38:27:6c:9a:d4:3b:d6:b4:8b:c2:3c:a5:
22:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:39:88:03:92:D2:2D:39:B4:2E:EC:87:7E:9A:98:1D:10:26:D9:04
X509v3 Authority Key Identifier:
keyid:BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/3zmIA5LSLTm0LuyHfpqYHRAm2QQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/vTZoYo8N950EfsoNmtz8C2aT4wk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.226.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:68:de:40:fc:e9:64:18:dc:0e:91:94:05:cf:07:a3:71:43:
76:f8:68:8b:a5:43:7c:de:c1:37:42:e6:a5:7a:82:eb:2a:f7:
7f:47:07:b9:41:98:c2:bd:c0:af:66:a1:67:ea:26:10:69:2f:
1e:f2:5d:51:81:d1:50:76:84:66:1a:75:40:95:99:7e:34:47:
d0:81:d4:d2:33:84:e8:da:5d:70:e1:ed:fe:5a:fb:a6:66:4b:
35:57:24:d4:3d:e2:ac:c9:3b:ac:53:97:e0:5d:f0:3f:41:6e:
e2:0e:b2:be:92:09:f0:4c:90:ca:b1:fb:9f:2d:df:ba:6c:76:
ea:08:e7:02:31:f5:88:52:2f:5b:6a:0e:80:a2:7d:f0:4d:01:
55:d2:10:08:36:7e:63:9c:0f:e9:c2:3f:81:8d:bc:d0:f1:7d:
f5:d5:9b:6c:cc:4e:36:97:eb:bc:43:09:4a:c6:3f:09:03:c2:
23:0a:95:54:df:e9:b4:19:99:61:3c:35:0f:ce:9b:d5:3d:12:
f1:e4:a7:8d:7c:33:83:37:e1:b2:6f:3b:cc:eb:6c:17:2f:23:
88:09:e3:85:45:ad:0d:4c:df:f8:dd:c0:03:b3:31:a3:84:ec:
55:30:65:03:69:92:fb:16:1d:de:c9:36:5c:34:10:2c:70:9a:
8f:95:79:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 26 23:22:52 2024 by rpki-client on console-fra.rpki-client.org