Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/3xzUoB9gyf-rtQ6hwgpQwJjRbYk.roa
File: 3xzUoB9gyf-rtQ6hwgpQwJjRbYk.roa (raw, json)
Hash identifier: 98p1KOKsPIiGtLb2MHu+FU+Md6dq0a6SHEycsXE5HqY=
Subject key identifier: DF:1C:D4:A0:1F:60:C9:FF:AB:B5:0E:A1:C2:0A:50:C0:98:D1:6D:89
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 018A15A589D3FE2FB083B149E465F46B3624
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/3xzUoB9gyf-rtQ6hwgpQwJjRbYk.roa
Signing time: Mon 21 Aug 2023 01:11:24 +0000
ROA not before: Mon 21 Aug 2023 01:11:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 95.214.172.0/24 maxlen: 24
95.214.173.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 22 Aug 2023 05:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:15:a5:89:d3:fe:2f:b0:83:b1:49:e4:65:f4:6b:36:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Aug 21 01:11:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df1cd4a01f60c9ffabb50ea1c20a50c098d16d89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:58:c2:f7:ce:48:09:37:d5:2e:62:03:0e:31:
29:18:70:b7:cf:41:f6:22:c2:e8:0c:86:17:12:ea:
b2:4c:52:40:3a:5d:dc:39:c2:27:4a:d9:72:8f:11:
94:0f:59:9a:b0:92:1d:52:f3:24:13:69:49:6d:10:
45:ba:3d:f2:77:29:21:9c:eb:41:bb:42:92:22:86:
3a:80:86:ae:48:54:14:8c:a2:eb:35:bf:cb:52:70:
43:59:4c:07:26:b5:74:30:b4:1d:d2:3f:3d:1e:d2:
84:d4:a8:ef:ff:ac:94:f4:e8:bc:c4:ae:91:be:b2:
d0:cf:20:bb:6b:ef:03:92:20:aa:dc:e5:0b:52:f6:
8d:b3:b5:3d:a4:0c:31:1b:c1:b3:30:65:0c:95:c9:
af:e8:e8:dd:b2:b2:1b:49:fc:b3:9a:f7:c4:25:bb:
c8:98:ca:54:a1:7e:8e:f0:03:5b:4a:97:43:88:ab:
61:74:76:6b:c8:dc:59:4f:14:94:87:7c:73:cb:15:
b3:6c:94:d3:0f:7c:e8:c2:fe:cb:5e:94:42:c1:29:
19:af:cc:95:4b:68:b0:7d:70:80:5e:43:06:1d:de:
0f:cf:46:c6:5c:3b:f7:73:f0:56:b1:00:2f:86:ad:
b6:45:c0:50:97:87:0f:fb:87:aa:40:fb:01:76:20:
4b:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:1C:D4:A0:1F:60:C9:FF:AB:B5:0E:A1:C2:0A:50:C0:98:D1:6D:89
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/3xzUoB9gyf-rtQ6hwgpQwJjRbYk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.172.0/23
Signature Algorithm: sha256WithRSAEncryption
6b:f0:19:63:51:5f:28:2b:06:8b:fa:e2:f6:43:f9:ae:51:47:
4f:9f:27:74:d6:91:9e:99:8d:f2:7a:2e:78:53:8c:42:7b:55:
93:0b:75:85:51:68:e7:85:e3:11:b6:2b:ac:6d:81:0d:7c:26:
52:02:a0:d3:51:3e:43:2f:82:bb:26:46:00:29:56:6f:ae:2c:
9a:22:cb:9c:44:5d:0c:c1:9f:c7:f9:4c:83:bd:e5:47:e3:51:
00:68:35:e3:c9:45:b9:9b:d3:98:e3:8b:03:30:d1:c4:f8:f6:
34:a0:7e:91:27:e0:b6:5e:75:e5:a2:f0:65:c7:1f:ae:9f:ed:
33:41:e6:cf:7f:07:fc:42:af:df:9c:b3:0a:3f:cb:66:5d:43:
f1:49:ce:7a:f2:45:5d:57:fa:54:2e:a3:b4:c3:92:f5:5c:26:
a6:2b:aa:0e:d8:6a:1e:3c:33:04:8b:2a:8f:19:ba:a6:85:0a:
5e:a8:82:f2:29:c0:12:56:27:9f:37:53:54:99:a3:b0:7c:eb:
6b:25:27:d8:b0:ef:97:55:69:98:87:22:38:6e:05:c8:81:f5:
34:65:02:c6:36:e9:26:fa:55:8f:06:79:ed:a0:67:99:62:68:
57:14:18:56:8d:9b:69:cc:95:5c:de:1a:31:d4:cc:b2:82:09:
5e:b4:2c:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:43 2024 by rpki-client on console-ams.rpki-client.org