Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/fOa9LYlhfKUL4K9ZvhVlG61Rb1I.roa
File: fOa9LYlhfKUL4K9ZvhVlG61Rb1I.roa (raw, json)
Hash identifier: DC264x6pk0cdP8X6fv7PX01mZw21sBRPYmO/m1dVf84=
Subject key identifier: 7C:E6:BD:2D:89:61:7C:A5:0B:E0:AF:59:BE:15:65:1B:AD:51:6F:52
Certificate issuer: /CN=0bf543e23e29fb03748d0939726f30fe9affa19e
Certificate serial: 018CC795698526C2377459A7F9E217E4119D
Authority key identifier: 0B:F5:43:E2:3E:29:FB:03:74:8D:09:39:72:6F:30:FE:9A:FF:A1:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/fOa9LYlhfKUL4K9ZvhVlG61Rb1I.roa
Signing time: Tue 02 Jan 2024 00:31:46 +0000
ROA not before: Tue 02 Jan 2024 00:31:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60829
IP address blocks: 188.95.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Jul 2024 12:57:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:69:85:26:c2:37:74:59:a7:f9:e2:17:e4:11:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bf543e23e29fb03748d0939726f30fe9affa19e
Validity
Not Before: Jan 2 00:31:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7ce6bd2d89617ca50be0af59be15651bad516f52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:94:23:82:9a:46:8a:2d:75:13:31:66:e6:1d:
38:fd:bf:fa:68:ff:a8:b4:0f:61:f5:bf:dc:72:cf:
20:0c:1a:26:8a:c2:cd:fb:7f:37:0e:0b:d7:4b:52:
11:2d:22:86:e2:b3:d2:8b:b5:8b:73:5e:12:4d:0a:
fb:70:90:41:10:fa:87:8a:8c:35:10:ba:3e:52:4a:
e3:3c:3c:dd:87:ac:ff:af:a2:50:85:56:f6:fb:eb:
19:95:0f:49:93:09:f8:cb:96:c5:5a:e2:d0:05:f5:
6a:a1:f5:c4:53:8a:bc:d8:94:2b:9f:5b:b8:94:18:
de:6b:2f:90:46:46:12:15:b6:88:db:c0:7c:91:83:
b3:70:0e:07:c5:57:49:ab:83:cc:a7:50:f4:68:cd:
9d:00:14:b3:b7:42:e6:de:90:fb:ab:27:78:47:fb:
98:a3:9d:89:7b:bc:6c:fe:24:a7:a5:30:cb:68:d8:
8f:f6:ed:5f:27:11:45:99:3c:c1:10:f8:91:80:8b:
c1:9b:65:39:68:43:f0:23:c2:f9:b4:46:a4:91:7c:
c2:07:ac:9c:64:1b:8c:a9:6c:ac:81:b6:b8:3e:45:
e8:d0:b2:3f:e5:c6:72:04:29:40:0e:9a:94:a4:e9:
e1:a7:e9:f9:1c:75:41:84:a0:35:26:6d:1b:28:dd:
82:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:E6:BD:2D:89:61:7C:A5:0B:E0:AF:59:BE:15:65:1B:AD:51:6F:52
X509v3 Authority Key Identifier:
keyid:0B:F5:43:E2:3E:29:FB:03:74:8D:09:39:72:6F:30:FE:9A:FF:A1:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/fOa9LYlhfKUL4K9ZvhVlG61Rb1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.95.151.0/24
Signature Algorithm: sha256WithRSAEncryption
58:c0:a9:fc:54:b6:7e:9c:e7:01:30:e5:76:9a:27:84:32:3d:
97:41:bf:12:e2:dc:c8:ed:4f:98:7d:05:eb:4c:b7:7f:34:3c:
14:db:66:25:8c:e4:5c:8b:2e:f6:96:80:05:fb:cb:f4:46:8a:
05:58:d6:37:3c:ac:ab:b5:f3:0d:a5:cc:01:08:03:d7:3b:1d:
be:f0:4c:55:56:2f:6a:71:87:31:99:e2:cf:20:e3:7e:f5:d2:
3a:cf:7c:1b:57:1d:1c:23:a1:ff:f2:41:2a:74:2d:57:d0:0f:
8b:e7:0d:57:6a:6d:35:6f:eb:e6:f4:ca:18:12:3e:20:95:93:
67:ba:6f:38:11:05:67:68:1f:ed:47:da:4d:90:83:f7:ed:93:
32:b6:ca:ee:9e:42:52:54:59:c7:ac:6b:42:e4:7a:fd:36:92:
12:ed:90:f5:28:87:6e:52:a7:13:76:71:4f:39:8c:fb:8b:0e:
a2:d8:2d:4d:f1:aa:51:41:cc:b6:c3:23:4b:c2:86:5b:08:21:
d7:cd:d2:46:45:73:a7:f1:4d:2d:68:96:55:d1:b9:63:34:cf:
f6:cf:4b:12:e6:86:ea:84:d4:5d:97:e6:8f:50:98:78:9a:1c:
9b:d5:5b:19:8c:ca:7b:7d:28:bc:a9:26:88:01:c6:fe:ea:33:
d8:ca:d4:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:25:14 2025 by rpki-client