Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/nIbozVPGKcGWs6rxTzj5P8W8Dck.roa
File: nIbozVPGKcGWs6rxTzj5P8W8Dck.roa (raw, json)
Hash identifier: tLOFALK72QiNm//3aKxlBqQTAvUQUSD+XziKoTu9xKQ=
Subject key identifier: 9C:86:E8:CD:53:C6:29:C1:96:B3:AA:F1:4F:38:F9:3F:C5:BC:0D:C9
Certificate issuer: /CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Certificate serial: 0188004962C999D7327494A4D5398B306AB5
Authority key identifier: BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/nIbozVPGKcGWs6rxTzj5P8W8Dck.roa
Signing time: Tue 09 May 2023 11:33:09 +0000
ROA not before: Tue 09 May 2023 11:33:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211619
IP address blocks: 45.95.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 09 Jun 2023 07:32:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:00:49:62:c9:99:d7:32:74:94:a4:d5:39:8b:30:6a:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Validity
Not Before: May 9 11:33:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9c86e8cd53c629c196b3aaf14f38f93fc5bc0dc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b9:0f:17:35:95:b1:7f:ca:ff:dd:7a:77:f6:
04:59:8c:b7:6b:67:e6:05:b7:26:bc:0b:d0:85:a2:
d9:10:03:cf:54:50:c0:1d:2f:36:fc:19:e7:da:0c:
b9:ee:57:e2:d0:50:a4:0d:64:40:ec:35:2d:61:ad:
0c:f3:e6:35:b2:7c:1a:8c:ec:23:07:19:c7:21:f6:
46:6a:98:d0:87:44:f2:f5:9a:51:10:01:da:37:6f:
73:4e:76:3c:a3:58:7b:64:58:d1:7d:7e:2a:ac:e4:
d1:28:df:cb:2f:1e:94:35:ca:6f:bd:4a:9c:29:46:
a6:9b:70:82:1a:23:35:77:82:d4:7f:83:c8:f5:ce:
4f:39:2c:d9:f0:d0:f8:c5:50:a8:af:37:75:26:c0:
39:d1:1c:68:fd:e8:88:08:73:c6:ac:7d:3f:05:71:
95:3b:bc:71:d9:c0:c8:a0:df:bb:f0:ef:a7:39:fa:
1c:f7:9f:90:ff:dd:9c:a4:b7:9c:15:c3:ae:f0:d9:
e1:20:36:c0:a2:59:75:40:a1:9d:d7:04:0e:c7:7e:
48:09:db:57:9f:60:9d:63:1b:67:6d:f6:bb:f8:46:
6b:71:69:db:da:ea:ec:46:01:7f:c7:41:06:08:08:
65:0a:a7:fa:e5:11:98:b7:7d:42:a2:3f:b5:1a:ea:
9e:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:86:E8:CD:53:C6:29:C1:96:B3:AA:F1:4F:38:F9:3F:C5:BC:0D:C9
X509v3 Authority Key Identifier:
keyid:BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/nIbozVPGKcGWs6rxTzj5P8W8Dck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/vTZoYo8N950EfsoNmtz8C2aT4wk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.224.0/24
Signature Algorithm: sha256WithRSAEncryption
01:20:7d:2a:c1:9e:ee:28:38:0c:bb:a3:fa:38:aa:03:f3:2f:
b4:56:7a:fa:6c:43:8e:76:4a:f6:92:67:1d:a2:c0:6e:82:6d:
77:c1:ef:1d:c3:d6:51:37:ba:c2:72:19:d6:47:a3:13:e6:3a:
6b:e1:63:7c:5a:cb:26:3d:8e:b5:a5:87:32:f4:e1:e6:27:49:
5e:85:29:7e:ba:a0:1f:1f:88:c6:00:e1:f4:01:22:24:51:0f:
80:ce:36:f6:52:23:43:9c:dc:4d:f9:6d:81:cc:a8:ac:7b:da:
11:56:4c:b3:f0:7c:ed:e9:4b:f0:df:c8:a7:d8:57:19:a1:9d:
8b:e4:25:e2:a3:91:91:54:36:d4:04:29:8b:bc:1f:24:72:d9:
55:f9:4c:fd:f6:3f:0a:47:f2:21:51:99:17:cb:f3:25:5a:c0:
a1:cc:24:c3:b0:dc:c7:7c:af:f2:7b:71:0c:6b:f2:e2:47:5c:
5b:14:3e:98:e9:f9:d3:ee:6d:cc:12:8e:b3:51:d7:27:a8:0e:
c6:f7:2c:5e:f3:a1:25:b3:e4:df:a4:ee:2a:ee:ad:9e:3b:9b:
19:c2:d0:9d:4d:21:c1:5a:f2:b8:97:87:ec:1d:c2:83:d4:44:
b3:f5:1f:bd:88:02:3a:90:b8:90:2a:0d:ec:08:c9:c2:ed:9e:
49:c5:d3:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:04 2024 by rpki-client on console-fra.rpki-client.org