Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/ab62e7-7367-4bde-934a-b42522d05895/1/v0u3lQKEUq6JnfLEiHv0Hho11Qk.roa
File: v0u3lQKEUq6JnfLEiHv0Hho11Qk.roa (raw, json)
Hash identifier: WadMP80qIKFrZ56nB7IqddoaefFc/jh0Gk73kILDZZE=
Subject key identifier: BF:4B:B7:95:02:84:52:AE:89:9D:F2:C4:88:7B:F4:1E:1A:35:D5:09
Certificate issuer: /CN=24350aa8a94af666099fd073ec621cd15d04b316
Certificate serial: 01856EAFD2AF742E777C1BE2476D4215763B
Authority key identifier: 24:35:0A:A8:A9:4A:F6:66:09:9F:D0:73:EC:62:1C:D1:5D:04:B3:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JDUKqKlK9mYJn9Bz7GIc0V0EsxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/ab62e7-7367-4bde-934a-b42522d05895/1/v0u3lQKEUq6JnfLEiHv0Hho11Qk.roa
Signing time: Sun 01 Jan 2023 18:54:54 +0000
ROA not before: Sun 01 Jan 2023 18:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29276
IP address blocks: 213.229.248.0/21 maxlen: 21
95.159.192.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:af:d2:af:74:2e:77:7c:1b:e2:47:6d:42:15:76:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24350aa8a94af666099fd073ec621cd15d04b316
Validity
Not Before: Jan 1 18:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf4bb795028452ae899df2c4887bf41e1a35d509
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d0:20:e0:50:55:ff:ea:93:9c:35:1c:b8:95:
25:61:62:c3:4a:38:5c:0f:6f:8a:49:31:1e:bd:00:
cf:5b:83:53:73:6b:9c:7d:32:65:37:67:5d:d2:21:
96:66:5a:34:e3:8f:3d:96:81:8c:12:ec:c4:7b:c1:
33:3a:ca:39:36:95:6c:5c:21:f8:e2:f9:64:bc:c9:
cf:46:ed:1d:40:9e:0f:6b:8c:a8:04:ac:b2:89:ad:
1a:2d:f4:db:97:e4:34:a2:01:03:85:6a:5b:e1:a0:
71:9f:fa:32:cf:a6:6b:c7:ec:3c:78:ab:a2:58:5b:
42:03:66:07:a0:f7:ef:d4:5e:71:4f:e6:ec:af:9e:
e9:53:94:20:08:45:3e:9b:37:aa:4b:a3:fe:bc:b6:
51:2e:d1:96:77:47:20:90:c5:12:3c:65:1a:15:8b:
69:ce:6a:98:a5:b1:56:49:d7:ec:69:6e:03:4a:75:
70:e2:66:2c:7e:26:01:0b:94:64:2a:91:6a:37:42:
d4:bc:dd:9e:63:b5:32:95:a9:dd:80:c6:c4:91:f6:
ed:85:b5:c9:0c:b5:45:f2:c8:33:03:72:54:93:9f:
92:89:85:3d:c6:c2:48:d7:75:1e:87:50:71:40:da:
4d:e7:d2:6e:fa:e2:95:d3:55:55:3c:fb:b5:55:01:
36:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:4B:B7:95:02:84:52:AE:89:9D:F2:C4:88:7B:F4:1E:1A:35:D5:09
X509v3 Authority Key Identifier:
keyid:24:35:0A:A8:A9:4A:F6:66:09:9F:D0:73:EC:62:1C:D1:5D:04:B3:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JDUKqKlK9mYJn9Bz7GIc0V0EsxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/ab62e7-7367-4bde-934a-b42522d05895/1/v0u3lQKEUq6JnfLEiHv0Hho11Qk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/ab62e7-7367-4bde-934a-b42522d05895/1/JDUKqKlK9mYJn9Bz7GIc0V0EsxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.159.192.0/24
213.229.248.0/21
Signature Algorithm: sha256WithRSAEncryption
0d:10:2b:e0:e0:5c:6e:17:72:cc:87:a6:5b:cb:07:42:63:07:
64:1e:0f:43:34:0e:e5:6f:78:df:9b:f8:90:e5:64:95:65:40:
c1:c4:1c:78:c3:88:97:00:26:24:24:5b:ff:75:28:c5:cd:b8:
21:89:0b:08:32:41:6b:8b:e9:e0:3a:5c:ac:5e:19:55:a0:88:
72:2c:7c:de:f0:15:72:ef:04:04:b6:e1:da:c1:cd:bd:95:08:
49:2d:76:8d:c2:c8:00:28:91:e2:14:c0:de:4c:c2:74:b9:d3:
97:58:fb:28:ae:a0:d9:c8:8e:57:cb:0f:2b:78:28:20:46:86:
c7:ee:a5:14:b7:f2:bc:6a:9d:14:17:94:7d:b3:50:ba:9b:4a:
58:35:b9:5c:18:84:db:59:10:96:f4:c5:82:ab:b6:01:b1:53:
ac:65:de:6c:fd:41:ea:e3:9c:ae:7f:0f:ee:d1:47:c1:98:b3:
e1:f0:3e:4c:07:31:48:e5:6a:7b:37:cb:12:55:3a:18:44:56:
62:ef:df:18:52:f8:48:f8:5e:d4:0a:15:13:cc:74:6e:4a:b9:
a0:ed:03:6c:e6:53:33:cb:52:b5:31:0a:b4:2c:e0:92:f4:a2:
f0:cf:5f:55:fb:12:65:0f:cf:89:54:9c:36:ec:94:47:c9:bd:
e6:31:6c:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:09 2024 by rpki-client on console-fra.rpki-client.org