Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/10nf3iauLkCPsiP9WJUuAjZC2Ws.roa
File: 10nf3iauLkCPsiP9WJUuAjZC2Ws.roa (raw, json)
Hash identifier: wj9/BMVJrYCz02VJ3I48K39KXaNWZKleBz0MwkO7GOo=
Subject key identifier: D7:49:DF:DE:26:AE:2E:40:8F:B2:23:FD:58:95:2E:02:36:42:D9:6B
Certificate issuer: /CN=bedb6a4ed393d8a3b7507f96a38bee0c4c8b477f
Certificate serial: 018570398E84D5BA3ED6369CA943E1132E39
Authority key identifier: BE:DB:6A:4E:D3:93:D8:A3:B7:50:7F:96:A3:8B:EE:0C:4C:8B:47:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vttqTtOT2KO3UH-Wo4vuDEyLR38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/10nf3iauLkCPsiP9WJUuAjZC2Ws.roa
Signing time: Mon 02 Jan 2023 02:04:58 +0000
ROA not before: Mon 02 Jan 2023 02:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35258
IP address blocks: 95.214.220.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:8e:84:d5:ba:3e:d6:36:9c:a9:43:e1:13:2e:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bedb6a4ed393d8a3b7507f96a38bee0c4c8b477f
Validity
Not Before: Jan 2 02:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d749dfde26ae2e408fb223fd58952e023642d96b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:dd:e4:13:3b:04:b7:c0:25:97:c7:2d:da:5d:
d1:51:a8:10:6b:da:3b:7e:e0:13:c4:b7:b8:96:10:
a3:76:82:7f:9c:0b:09:1e:e6:08:f5:99:a3:9c:bb:
d2:24:64:42:67:e6:c4:26:4a:5a:f6:ec:dc:42:2f:
25:13:33:ca:92:c4:3b:3e:b1:1e:9f:10:c7:9b:d8:
91:22:59:d9:43:1c:a3:8d:56:38:18:a3:20:1a:18:
47:c1:bd:60:0d:29:e9:3f:4e:2d:85:77:d8:73:14:
c7:0e:67:ae:5d:cf:0d:88:56:0a:ad:06:3c:f1:31:
e9:24:03:e4:c0:99:ab:c8:58:ab:ea:6b:65:36:be:
dc:e7:9f:e5:d5:99:8d:2c:80:56:c7:62:f2:8e:88:
bd:c4:53:72:e0:66:82:d6:2f:00:1a:27:48:74:d0:
42:29:b5:d7:03:6a:c4:ee:d3:82:73:60:1b:d6:a7:
dd:6b:c0:80:cc:85:a0:60:29:7b:5f:05:72:a5:1c:
24:05:d2:e3:8b:67:5f:96:8b:5c:f0:4d:b1:e3:49:
76:16:a0:9f:22:6f:ea:56:ef:56:15:66:60:42:c9:
e2:12:62:e1:dc:b1:dd:1a:58:ca:0e:54:e4:c0:05:
54:89:9f:b1:e3:01:2d:6a:49:ef:c1:f8:78:9b:ac:
6f:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:49:DF:DE:26:AE:2E:40:8F:B2:23:FD:58:95:2E:02:36:42:D9:6B
X509v3 Authority Key Identifier:
keyid:BE:DB:6A:4E:D3:93:D8:A3:B7:50:7F:96:A3:8B:EE:0C:4C:8B:47:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vttqTtOT2KO3UH-Wo4vuDEyLR38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/10nf3iauLkCPsiP9WJUuAjZC2Ws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/vttqTtOT2KO3UH-Wo4vuDEyLR38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.220.0/22
Signature Algorithm: sha256WithRSAEncryption
02:25:2c:50:50:2f:69:67:b9:ce:27:c4:dd:7b:10:c7:03:73:
82:e6:0b:c2:3c:78:52:91:7e:35:7b:97:f4:3e:08:a4:90:b5:
b8:7c:c6:17:f4:c2:ff:c6:8e:94:50:aa:83:ff:f6:c4:7d:96:
8d:27:60:42:71:a0:70:cc:8a:0b:91:7f:1e:86:51:17:09:28:
fa:04:e8:87:7d:76:db:20:c0:e7:ec:c8:53:9c:c0:be:69:23:
6a:68:1c:b6:83:04:82:2c:2b:61:29:e5:61:93:b5:50:35:ea:
48:cc:5e:98:11:39:cd:5e:0d:36:dd:ff:57:4f:e4:f2:44:5f:
cd:49:a6:70:77:6e:d2:17:d6:c8:77:b9:e1:5f:8a:c7:20:bc:
cc:7f:f1:23:d2:ff:7c:11:97:7b:a8:21:e3:54:34:5e:86:9d:
3c:58:d9:ef:ef:9b:f4:d2:74:e8:91:5d:dd:26:43:5e:47:d5:
a3:04:e9:a9:d2:2c:ca:4d:1d:8d:ff:be:36:20:c6:3e:34:31:
be:64:8d:5b:88:52:e7:58:c7:18:bc:02:d3:f4:94:f7:23:b0:
0f:e9:c8:c3:bf:f2:44:4a:9c:ee:de:07:87:2f:22:ff:d7:16:
bc:2a:43:c3:d4:fc:20:80:17:fb:70:ad:a2:6d:11:47:5b:c5:
2a:32:9b:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:51 2024 by rpki-client on console-fra.rpki-client.org