Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/MvnnOVd3rAFPRsvsKMjFXSU85ig.roa
File: MvnnOVd3rAFPRsvsKMjFXSU85ig.roa (raw, json)
Hash identifier: y/mcJnOoa2qCAMvnql4tT9gLKTIaDiQXmi6G1sWaG6Y=
Subject key identifier: 32:F9:E7:39:57:77:AC:01:4F:46:CB:EC:28:C8:C5:5D:25:3C:E6:28
Certificate issuer: /CN=44422eaa3daedf6b902159eedbe94ca9b7d2284f
Certificate serial: 01856EAFB9313F463A9AC8CD023ACE8C4650
Authority key identifier: 44:42:2E:AA:3D:AE:DF:6B:90:21:59:EE:DB:E9:4C:A9:B7:D2:28:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/REIuqj2u32uQIVnu2-lMqbfSKE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/MvnnOVd3rAFPRsvsKMjFXSU85ig.roa
Signing time: Sun 01 Jan 2023 18:54:48 +0000
ROA not before: Sun 01 Jan 2023 18:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204105
IP address blocks: 95.215.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:af:b9:31:3f:46:3a:9a:c8:cd:02:3a:ce:8c:46:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44422eaa3daedf6b902159eedbe94ca9b7d2284f
Validity
Not Before: Jan 1 18:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=32f9e7395777ac014f46cbec28c8c55d253ce628
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:66:7f:8e:47:1b:f0:65:60:3e:86:f2:a4:6b:
ba:87:37:69:f6:6a:49:2b:f9:81:4f:4b:6a:e1:83:
af:e1:c5:3a:af:be:b1:1f:0a:e1:be:3c:db:06:6a:
d4:3c:ab:cb:62:ff:41:d1:2e:5c:31:ee:b4:05:0e:
91:2d:81:39:15:eb:3b:4c:c7:a5:e4:58:4e:c2:66:
14:71:c7:55:ac:a6:96:03:05:e8:06:49:82:52:4a:
85:53:5e:25:b4:0c:a2:43:99:9c:00:a9:a7:50:53:
73:a6:44:ff:43:a1:ec:5e:f8:b9:2a:21:05:a1:de:
0f:2a:0c:e4:93:7a:09:28:c4:f6:5a:a4:d2:50:37:
f0:24:5e:5e:49:48:9e:2a:5d:97:14:57:5e:11:e0:
eb:df:82:c6:dd:f5:89:5c:87:cc:2b:3f:50:c3:d0:
0c:99:b4:98:c7:49:77:4b:18:0c:2f:ba:cc:58:d0:
92:0d:ea:ff:e4:9c:bd:4b:88:ef:4e:b8:3a:7b:fc:
b6:cb:f9:c2:4c:c6:d2:46:21:fe:02:2a:85:46:50:
7b:7e:42:e7:2f:78:d1:7d:cb:e3:8f:cb:c0:ed:1e:
93:54:ee:0d:f4:65:10:0a:6e:5b:42:0a:92:19:4f:
b3:8b:bb:ee:e5:95:31:0e:ce:34:a4:c9:54:86:50:
08:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:F9:E7:39:57:77:AC:01:4F:46:CB:EC:28:C8:C5:5D:25:3C:E6:28
X509v3 Authority Key Identifier:
keyid:44:42:2E:AA:3D:AE:DF:6B:90:21:59:EE:DB:E9:4C:A9:B7:D2:28:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/REIuqj2u32uQIVnu2-lMqbfSKE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/MvnnOVd3rAFPRsvsKMjFXSU85ig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.215.59.0/24
Signature Algorithm: sha256WithRSAEncryption
16:54:96:70:50:9a:10:5c:b6:48:cb:ce:f3:aa:15:6b:a6:a3:
1b:41:6d:03:51:e6:01:cb:24:24:4a:45:8b:3f:32:11:e1:36:
f5:5b:58:02:b7:2e:7e:6a:12:a4:7e:b4:47:c5:21:87:71:f3:
68:7f:45:41:78:48:67:f5:21:bd:11:69:be:4f:0b:e8:9a:73:
16:dc:78:0d:f8:98:c4:72:74:71:bb:8d:4b:77:4b:f0:6c:ea:
43:9b:76:18:28:5c:73:fb:b7:9c:98:ad:0c:0e:7d:37:31:f0:
df:42:56:5f:4a:d1:1a:51:0d:36:fe:ae:a8:85:03:b4:f2:bb:
95:35:bf:01:12:72:26:a7:eb:b3:46:6a:d0:b9:14:09:76:ac:
99:7d:43:87:6d:cb:17:ed:55:f9:33:52:df:97:e0:f6:fc:ae:
4d:00:0d:8c:67:86:56:fe:7c:e7:a9:c3:50:b7:12:a8:41:d7:
08:f2:ed:75:15:ea:53:30:fb:56:92:c5:8b:3b:e2:51:fb:84:
0c:83:93:48:c6:ef:1a:15:25:90:6f:dd:83:fa:ea:69:eb:f6:
04:b2:6f:7f:9f:17:25:ec:0d:49:ec:34:87:95:2a:c3:aa:26:
51:19:19:f5:4a:0d:67:a0:5b:d0:d9:15:ff:2e:ae:70:8d:c0:
51:12:ee:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:22 2024 by rpki-client on console-fra.rpki-client.org