Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/O5AjmGqqLCuM9zzaUg7vLge0hJk.roa
File: O5AjmGqqLCuM9zzaUg7vLge0hJk.roa (raw, json)
Hash identifier: tCJCSEpwPlFSnsX+2toVIxfRfMz80rhoesY9lmDPQQ0=
Subject key identifier: 3B:90:23:98:6A:AA:2C:2B:8C:F7:3C:DA:52:0E:EF:2E:07:B4:84:99
Certificate issuer: /CN=f2e2810f49b36fdd641c326bd1de4e42d128b046
Certificate serial: 01856C8139D88F26DF4BFE2D7D9CA0CBAC07
Authority key identifier: F2:E2:81:0F:49:B3:6F:DD:64:1C:32:6B:D1:DE:4E:42:D1:28:B0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8uKBD0mzb91kHDJr0d5OQtEosEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/O5AjmGqqLCuM9zzaUg7vLge0hJk.roa
Signing time: Sun 01 Jan 2023 08:44:46 +0000
ROA not before: Sun 01 Jan 2023 08:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39715
IP address blocks: 83.145.95.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:81:39:d8:8f:26:df:4b:fe:2d:7d:9c:a0:cb:ac:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2e2810f49b36fdd641c326bd1de4e42d128b046
Validity
Not Before: Jan 1 08:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b9023986aaa2c2b8cf73cda520eef2e07b48499
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b6:29:91:fd:d6:95:bf:fb:3f:c8:dd:a6:7c:
d1:56:4c:b7:ea:97:b7:57:ef:8d:13:38:d5:0f:9d:
aa:48:f6:b4:36:75:7b:95:35:1e:4d:18:23:4e:c3:
81:2a:9b:b9:88:42:48:b9:f5:ee:32:27:0d:5b:6f:
d7:b4:90:8d:3c:61:8a:ba:f6:3f:7f:93:a4:57:a3:
e7:fa:06:6f:5b:13:85:53:74:58:af:4a:7a:a6:63:
2b:77:f1:c9:42:6d:28:70:8c:17:9b:33:87:e5:9e:
f0:21:b6:f1:69:a0:ea:12:39:ea:82:b4:f4:56:7f:
6c:30:d0:21:86:c6:0e:cd:2c:5d:20:33:30:0b:e8:
9a:f7:31:f1:7a:75:6e:56:99:2f:d5:42:8b:50:52:
9a:b5:8f:f5:c7:5d:3e:90:f3:62:65:ab:1d:e7:74:
d4:d0:be:fd:88:a8:07:d8:29:93:e5:24:65:8e:43:
5d:b8:8c:8c:0b:c2:29:4a:93:bf:28:ba:1a:cb:0f:
1a:5d:36:c8:9f:f7:29:c1:c0:a1:b2:d5:0c:28:7a:
a3:59:d7:32:b8:da:84:71:53:c9:d6:2e:6d:88:50:
7a:fe:b8:b1:de:ae:e1:06:99:d9:19:ac:a1:da:8a:
f3:f4:22:62:2c:b0:82:78:82:b7:06:d2:1c:e1:f8:
98:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:90:23:98:6A:AA:2C:2B:8C:F7:3C:DA:52:0E:EF:2E:07:B4:84:99
X509v3 Authority Key Identifier:
keyid:F2:E2:81:0F:49:B3:6F:DD:64:1C:32:6B:D1:DE:4E:42:D1:28:B0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8uKBD0mzb91kHDJr0d5OQtEosEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/O5AjmGqqLCuM9zzaUg7vLge0hJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/8uKBD0mzb91kHDJr0d5OQtEosEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.145.95.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:93:1d:18:e3:52:f2:60:d8:c3:ef:8c:a0:4c:74:35:28:3f:
7a:62:ba:53:da:d2:2e:ed:f7:fe:69:6b:a9:52:08:8f:5c:2c:
4e:34:36:f6:81:62:5e:f9:bf:38:f3:58:46:ad:d3:58:65:f0:
5f:ef:f7:92:a6:8f:f9:d9:6f:aa:a4:c8:a8:d3:99:15:f1:0a:
91:e6:e1:a3:32:78:2c:45:dc:10:46:aa:5f:c2:33:fa:af:cd:
c5:30:ed:2e:7a:26:9b:09:22:c5:b8:f2:ce:48:76:97:45:2f:
5a:42:e4:e0:f0:8a:a5:91:84:87:75:b4:39:7c:bb:ee:5e:76:
38:a9:7a:b6:cc:00:7e:46:97:40:c6:2c:7f:57:f8:c0:d0:b3:
12:83:b6:4d:2e:c9:22:e3:37:f9:61:14:c5:fe:ad:6d:20:31:
66:9c:5a:fc:0f:71:58:99:e0:f7:1d:17:33:32:58:c8:34:b6:
6c:7b:c5:1e:d0:48:f2:d4:0d:fe:07:c9:2a:ef:4c:02:1f:22:
c2:91:00:1b:9a:30:68:25:22:45:a9:4b:90:78:be:22:54:14:
26:77:a9:5a:94:48:26:38:38:12:58:75:54:cd:05:e8:10:2c:
26:96:ca:4d:6b:25:a0:49:86:33:69:db:f0:8e:33:7e:d2:70:
70:9c:03:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:23:44 2024 by rpki-client on console-ams.rpki-client.org