Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/qJTsc1WuAm3zxfoAR6MFNbnmGRk.roa
File: qJTsc1WuAm3zxfoAR6MFNbnmGRk.roa (raw, json)
Hash identifier: BVBIe6mqR9cQTt3nv6aldbT7NGOrghfgMDMpOVUrumM=
Subject key identifier: A8:94:EC:73:55:AE:02:6D:F3:C5:FA:00:47:A3:05:35:B9:E6:19:19
Certificate issuer: /CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Certificate serial: 01856ECBA4972CC3D6449AFC0A87D9259825
Authority key identifier: 73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/qJTsc1WuAm3zxfoAR6MFNbnmGRk.roa
Signing time: Sun 01 Jan 2023 19:25:17 +0000
ROA not before: Sun 01 Jan 2023 19:25:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43350
IP address blocks: 95.178.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:a4:97:2c:c3:d6:44:9a:fc:0a:87:d9:25:98:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Validity
Not Before: Jan 1 19:25:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a894ec7355ae026df3c5fa0047a30535b9e61919
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:91:56:5c:a2:28:35:ba:07:fc:c7:f0:8a:ec:
41:fe:d5:a1:aa:88:6b:ad:15:17:cc:16:f2:ce:0e:
2b:38:1d:9d:32:86:1e:f0:0f:dc:35:31:62:06:49:
e7:67:fc:21:28:4f:c3:d1:65:f8:61:22:e6:98:13:
35:45:77:1a:e5:c0:24:4c:85:b1:61:60:d4:1a:13:
1a:f4:eb:f5:82:34:fd:da:af:e4:b8:38:4d:16:77:
54:3d:17:2e:50:60:a9:10:bd:47:cf:91:d5:95:66:
5c:61:e2:0a:8f:d3:2e:22:bf:ff:12:0b:2d:fa:d8:
74:15:b5:f5:a4:cd:6d:28:76:5f:b4:ea:06:91:a0:
cd:8c:5f:fb:10:c8:4d:4e:06:d1:a6:10:77:6b:c5:
66:d1:b5:28:85:bd:44:e9:fb:6a:b4:43:c9:91:04:
fb:55:15:16:5f:31:8a:fb:59:df:74:35:83:9d:66:
5b:ba:a1:0f:b8:5a:47:a4:49:60:86:49:1d:da:a7:
02:3f:2c:b8:96:07:af:e0:30:cb:44:a6:4b:ab:26:
4f:c2:37:43:c0:d6:c9:20:29:14:b4:15:0a:ac:8b:
04:d8:ad:31:95:26:fc:fe:43:b7:ab:7d:4c:10:6d:
21:a4:f6:1c:d8:fa:24:5a:86:08:ff:91:f1:b1:78:
e0:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:94:EC:73:55:AE:02:6D:F3:C5:FA:00:47:A3:05:35:B9:E6:19:19
X509v3 Authority Key Identifier:
keyid:73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/qJTsc1WuAm3zxfoAR6MFNbnmGRk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/c_IQ8SmaHgrucdwdeeX7EgktMKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.178.106.0/24
Signature Algorithm: sha256WithRSAEncryption
74:04:d1:8f:f0:6f:67:d8:c8:02:a7:84:f3:41:5b:63:87:51:
1d:ca:fa:81:15:0a:12:28:d9:5a:cf:6d:d7:7d:c9:ef:e7:65:
c9:95:eb:66:dc:37:34:fc:51:2a:71:93:b9:17:a4:98:31:2f:
d7:13:ba:22:0c:aa:b9:a8:65:f5:d0:7f:a6:1f:9a:85:c9:cd:
73:48:ac:12:ec:a2:d9:1d:0c:83:9f:9d:b9:82:01:2e:1f:bd:
72:40:e2:e5:b9:b5:6b:d5:2f:f0:8c:4b:52:af:7a:a7:ba:7e:
5d:17:25:83:58:92:6a:a7:bf:8d:d2:c7:a6:eb:3a:9b:4c:b2:
c8:a1:8a:dc:4a:8c:15:ed:ce:49:03:7c:28:0c:82:53:7f:e3:
e9:d5:cc:b7:86:92:69:cb:43:30:88:cf:89:0a:d8:c5:eb:1b:
9b:d4:19:80:be:ea:a0:21:a3:01:07:11:bb:40:c1:12:b2:d8:
da:b0:5e:aa:48:c5:8e:cf:4d:ce:ac:82:7c:9e:a7:40:ae:9d:
e6:eb:27:6e:8a:00:37:a9:1a:da:75:18:8b:e2:b8:8a:bc:f4:
55:7b:46:9b:a9:c1:20:6c:1f:50:a7:72:a8:12:a6:ec:d9:82:
87:ad:f5:be:dd:11:b4:e5:27:d1:36:87:41:97:ab:10:f0:89:
c9:f2:54:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:26 2024 by rpki-client on console-ams.rpki-client.org