Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/dfvoPDwYPAqUD0HT-1xN7ECa2tM.roa
File: dfvoPDwYPAqUD0HT-1xN7ECa2tM.roa (raw, json)
Hash identifier: r8AqizW3uS+PRR3KkKQ0y5NeRpQILwlkN5gVbAk6oug=
Subject key identifier: 75:FB:E8:3C:3C:18:3C:0A:94:0F:41:D3:FB:5C:4D:EC:40:9A:DA:D3
Certificate issuer: /CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Certificate serial: 0187E6169458862A5AAA727F52D7A1C57850
Authority key identifier: BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/dfvoPDwYPAqUD0HT-1xN7ECa2tM.roa
Signing time: Thu 04 May 2023 09:27:32 +0000
ROA not before: Thu 04 May 2023 09:27:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204843
IP address blocks: 45.95.226.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 04 Jul 2023 08:41:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e6:16:94:58:86:2a:5a:aa:72:7f:52:d7:a1:c5:78:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Validity
Not Before: May 4 09:27:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=75fbe83c3c183c0a940f41d3fb5c4dec409adad3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:43:3e:4f:5b:58:61:28:36:c2:67:92:43:c1:
a3:16:63:72:21:89:56:5d:89:98:61:d9:86:77:fb:
20:b5:6e:ca:59:a5:7e:6c:94:4a:ff:34:8d:74:f0:
70:f1:74:80:60:22:ae:60:0f:34:da:a3:6a:3d:70:
8d:16:01:98:bd:7e:cc:54:30:4d:b9:f1:6f:f6:2b:
cf:1e:9e:65:5b:9f:7a:91:6d:2b:04:d3:ba:4c:51:
e0:11:ab:eb:d0:30:3c:94:5e:cc:4a:6a:5b:89:9a:
37:97:69:c4:b7:0c:e6:31:05:9b:df:13:08:c9:01:
93:af:d3:29:aa:29:7d:33:d8:53:92:f1:ef:1e:f5:
98:61:0f:8e:d4:d1:4d:f3:3f:d6:94:9d:c5:de:f0:
49:5b:30:75:01:a5:0a:07:4c:ef:a4:48:99:4c:dd:
69:2a:2f:1a:b5:ab:a1:70:42:3f:8a:43:30:e9:4c:
9b:49:ad:d6:84:ec:cf:4d:44:c2:c7:ce:fa:02:e8:
dd:41:92:78:91:67:8e:9f:ef:1f:e3:bb:0f:d7:15:
89:33:88:1c:ed:cc:19:a9:c1:18:92:8b:34:50:8a:
86:f9:43:51:80:42:b5:09:03:1c:98:1a:5a:3b:99:
88:a8:2b:4d:a5:73:01:76:b7:5e:86:52:e7:dc:84:
65:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:FB:E8:3C:3C:18:3C:0A:94:0F:41:D3:FB:5C:4D:EC:40:9A:DA:D3
X509v3 Authority Key Identifier:
keyid:BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/dfvoPDwYPAqUD0HT-1xN7ECa2tM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/vTZoYo8N950EfsoNmtz8C2aT4wk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.226.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:7f:29:92:14:a0:af:cd:e5:e6:a4:2f:0e:ee:41:7b:41:3e:
6c:0d:45:2c:6f:89:90:1f:53:29:49:98:96:11:ff:bf:97:20:
6e:4e:06:32:d2:42:7d:41:8c:1d:c2:76:ed:84:ef:9a:35:48:
f5:29:54:3d:f9:11:d1:7b:8a:90:82:80:fa:82:98:b8:c1:b5:
5e:4e:55:e7:81:19:e1:83:3d:cf:8e:56:ad:a8:29:4f:8f:16:
69:dc:04:ce:54:30:85:d5:44:fa:0b:c7:e6:80:4d:87:1e:0e:
ff:07:85:c3:b9:da:fe:7a:61:be:95:e7:ea:8e:28:f5:74:3d:
c3:d7:e9:e0:89:b0:ae:70:ca:26:bb:f3:12:00:3d:1a:c2:83:
1d:a5:30:4f:cb:bf:13:03:4c:1d:91:57:f0:ca:0b:ba:64:25:
f7:78:88:1b:27:67:b6:a1:a2:af:81:50:db:dd:b6:71:e0:b5:
3d:5f:14:78:52:38:ce:10:c8:2b:ee:7b:ab:ff:23:ea:5c:78:
44:2d:09:41:0f:e2:d6:67:1f:cc:6b:37:3e:a9:71:94:e7:d5:
02:3a:a2:fe:cb:df:0c:19:f0:92:f8:fd:22:1c:d9:73:6b:b5:
82:56:fa:78:62:d3:6c:0d:39:68:09:90:81:06:bb:d3:70:2b:
81:20:4a:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:56 2024 by rpki-client on console-ams.rpki-client.org