Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/8UwU1wxhMAUhHc9lTaa-PIbaTkw.roa
File: 8UwU1wxhMAUhHc9lTaa-PIbaTkw.roa (raw, json)
Hash identifier: jS7bMxU+elqK90KqrvovV3ztnNlpF19Xs/aXXWI+W/k=
Subject key identifier: F1:4C:14:D7:0C:61:30:05:21:1D:CF:65:4D:A6:BE:3C:86:DA:4E:4C
Certificate issuer: /CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Certificate serial: 01919FECCF3A3450A55E1546F73210E72707
Authority key identifier: D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/8UwU1wxhMAUhHc9lTaa-PIbaTkw.roa
Signing time: Thu 29 Aug 2024 20:56:22 +0000
ROA not before: Thu 29 Aug 2024 20:56:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202759
IP address blocks: 95.156.206.0/24 maxlen: 24
2a03:f80:372::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 09 Sep 2024 08:56:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:9f:ec:cf:3a:34:50:a5:5e:15:46:f7:32:10:e7:27:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Validity
Not Before: Aug 29 20:56:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f14c14d70c613005211dcf654da6be3c86da4e4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:fd:35:e7:a4:c5:73:07:2f:71:b7:43:4d:2a:
5c:75:9c:8f:51:00:d7:da:cd:7f:f6:1a:59:d6:b8:
cb:de:42:0c:6f:8b:26:cd:ad:df:c8:ee:fc:ab:3a:
16:02:38:cb:29:43:dc:db:dd:81:a7:ac:22:f9:35:
fe:f0:0a:98:06:4c:f7:8b:99:46:52:5b:ed:5b:79:
ca:f2:b8:9d:ba:e4:a8:ce:17:c2:51:35:6c:ae:ae:
9a:19:1b:85:12:47:b2:7d:f6:8e:8e:24:29:fa:51:
29:51:23:92:7e:68:58:3b:7c:a4:18:d9:13:88:4d:
e1:77:d9:26:48:2a:3e:db:9d:89:28:33:a3:ed:a1:
69:24:5b:46:4d:2e:23:81:2c:fa:d5:59:ab:13:8f:
bd:d2:f4:d7:51:00:fa:99:84:8d:e2:48:c6:7a:15:
ea:bd:57:39:fe:56:a2:37:d0:90:0f:1d:dd:c7:94:
f6:40:83:c0:f9:5b:9e:58:24:c5:96:c3:62:b4:f2:
ad:a9:0d:9a:1b:31:e5:b6:cc:b8:d3:c2:8d:52:66:
18:76:49:b1:b3:54:59:6c:bc:08:11:44:bb:57:ec:
54:e3:2e:3c:db:47:a2:28:ce:06:1a:13:00:3a:fa:
14:22:a4:b2:2f:18:57:23:0b:bd:51:ea:2b:e1:c8:
62:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:4C:14:D7:0C:61:30:05:21:1D:CF:65:4D:A6:BE:3C:86:DA:4E:4C
X509v3 Authority Key Identifier:
keyid:D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/8UwU1wxhMAUhHc9lTaa-PIbaTkw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.156.206.0/24
IPv6:
2a03:f80:372::/48
Signature Algorithm: sha256WithRSAEncryption
65:db:2e:24:2d:43:77:72:d4:37:49:e0:90:80:e7:c0:05:86:
cd:23:fe:5e:a9:3b:33:b2:16:7c:04:42:f3:04:ee:45:5d:c5:
da:50:c9:ef:2a:e4:98:9a:5f:50:8b:95:f8:9f:94:b9:37:af:
20:43:9a:86:4f:2f:bf:34:56:8c:55:b9:91:e2:a1:57:44:31:
7a:3f:de:fe:af:56:0d:f9:fd:7e:83:f3:e3:95:20:be:7b:86:
fd:9f:a9:3c:54:65:e0:c4:a9:3f:fc:fb:12:27:06:61:14:cb:
3b:e6:1a:1d:d3:2d:f6:81:3a:bb:f1:87:4a:3f:d1:40:56:8d:
71:83:53:0a:32:56:16:f1:b0:03:6a:d0:eb:64:e2:1a:b7:0e:
30:d1:f8:65:fe:54:39:fb:0a:f9:bf:98:69:d9:8c:9c:5c:25:
2c:6b:bb:46:1f:25:0f:43:53:b4:3b:61:d1:02:7f:8b:b0:70:
fc:27:80:5d:b6:26:2e:ae:11:fe:95:02:91:36:18:6d:dc:61:
9c:cf:99:ad:9d:7e:d3:74:9e:e0:7b:16:61:5a:30:03:f8:7b:
4a:71:05:70:4e:ed:86:6a:93:0d:72:f1:b0:c9:3c:a9:6d:c9:
35:25:b7:99:f8:5f:cd:1f:88:d7:30:dc:ff:b0:95:73:fb:15:
ce:a1:c2:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 9 10:48:59 2024 by rpki-client on console-fra.rpki-client.org