Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/52Zjmw9SPrwNQVi05MlzXwXmcAA.roa
File: 52Zjmw9SPrwNQVi05MlzXwXmcAA.roa (raw, json)
Hash identifier: dMma+yUvsUaAgFf6G1MjOrNhubJ42aWjfPunq+fDgyw=
Subject key identifier: E7:66:63:9B:0F:52:3E:BC:0D:41:58:B4:E4:C9:73:5F:05:E6:70:00
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 01856EAA244AAA7731693C1E25F282ED1297
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/52Zjmw9SPrwNQVi05MlzXwXmcAA.roa
Signing time: Sun 01 Jan 2023 18:48:42 +0000
ROA not before: Sun 01 Jan 2023 18:48:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 95.214.172.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 18 Jun 2023 07:11:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:aa:24:4a:aa:77:31:69:3c:1e:25:f2:82:ed:12:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Jan 1 18:48:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e766639b0f523ebc0d4158b4e4c9735f05e67000
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:2c:0c:d2:02:a5:72:46:58:72:36:94:aa:c0:
fe:14:39:ed:0e:a1:9d:12:f5:95:07:62:38:22:06:
ba:30:b2:68:54:8d:c0:53:67:16:b0:b1:8e:05:7f:
62:54:2e:41:0c:25:fa:7a:7e:8f:4a:32:11:21:99:
9f:0c:83:19:39:40:77:a5:7b:54:0c:60:40:88:dd:
fb:ec:ef:73:69:a1:b3:23:d5:19:0d:bd:8d:75:ac:
e3:ae:d3:a3:c5:31:03:8d:b1:47:26:33:66:dc:e0:
62:33:bc:d5:c4:74:0c:1c:a1:5a:dd:6f:1d:b9:a5:
2f:2a:38:b3:8f:69:a3:ce:b1:68:8c:0e:2e:33:60:
25:c5:39:62:e9:16:cb:93:8a:90:45:de:20:06:b8:
9d:b7:0c:43:88:7b:e3:9a:ce:7a:60:42:79:c2:1f:
8a:73:51:ff:4f:fd:a6:c7:1f:e0:19:95:82:2c:27:
54:4e:50:25:49:c8:a1:c3:48:aa:20:3e:53:37:cf:
bc:2e:2f:51:63:28:a0:23:f2:5a:78:b1:d0:b1:62:
bd:5d:51:15:8b:5d:19:25:fa:70:cd:41:41:62:e4:
5c:59:a5:a1:6e:89:6f:a2:42:84:85:e2:2d:f3:21:
ca:74:b1:6f:f3:7a:e2:54:87:4e:7e:00:ae:ec:0c:
54:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:66:63:9B:0F:52:3E:BC:0D:41:58:B4:E4:C9:73:5F:05:E6:70:00
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/52Zjmw9SPrwNQVi05MlzXwXmcAA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.172.0/22
Signature Algorithm: sha256WithRSAEncryption
98:aa:d7:d8:c5:c0:1c:4c:d4:86:04:22:ed:e8:3b:70:7e:06:
8a:56:5b:6e:3e:ab:4e:ae:75:a7:34:c6:a3:03:7f:eb:88:ff:
3c:22:48:ba:59:d8:d1:c3:bb:1d:d7:3e:d4:43:5e:e0:f4:d3:
a3:7c:63:a2:1e:06:eb:a3:f1:a5:5d:85:b5:34:11:80:11:2e:
d5:d4:98:49:4c:84:fd:aa:d5:c4:89:55:04:7c:10:58:1c:4d:
26:b4:a9:b3:ae:2a:a4:f0:0c:00:6b:33:e5:17:e7:11:44:7d:
bb:65:0b:b5:4e:94:58:b9:b2:05:81:a8:56:a9:d8:35:e3:9b:
9d:61:75:c2:98:7e:12:9c:3a:88:a5:21:8a:18:6e:3e:ce:a6:
97:e6:a4:af:66:d3:68:7a:cf:4c:6d:af:e7:80:f6:1d:25:8e:
8d:7d:dd:41:9e:3c:55:75:ee:d7:32:87:b1:87:57:84:23:e9:
7a:92:b4:19:2f:3c:4a:a5:34:ed:ea:03:af:59:1e:33:6c:21:
0f:1f:07:0b:e9:49:6c:ab:e3:79:f6:61:4a:c3:4c:0c:35:e8:
4b:8f:dc:21:b4:4b:5c:63:6b:1b:27:4f:34:f0:19:b4:0c:13:
8c:fd:60:53:88:98:4f:58:91:e7:20:d4:61:b5:48:6a:b7:05:
a3:af:a6:17
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuqiRKqncxaTweJfKC7RKXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4MTA3YWI2OTIxZWY4Y2IyZGVjYTNlYjc2NjQ3OGNmZjNl
NWZjNmQwHhcNMjMwMTAxMTg0ODQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNzY2NjM5YjBmNTIzZWJjMGQ0MTU4YjRlNGM5NzM1ZjA1ZTY3MDAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjSwM0gKlckZYcjaUqsD+FDntDqGd
EvWVB2I4Iga6MLJoVI3AU2cWsLGOBX9iVC5BDCX6en6PSjIRIZmfDIMZOUB3pXtU
DGBAiN377O9zaaGzI9UZDb2NdazjrtOjxTEDjbFHJjNm3OBiM7zVxHQMHKFa3W8d
uaUvKjizj2mjzrFojA4uM2AlxTli6RbLk4qQRd4gBridtwxDiHvjms56YEJ5wh+K
c1H/T/2mxx/gGZWCLCdUTlAlScihw0iqID5TN8+8Li9RYyigI/JaeLHQsWK9XVEV
i10ZJfpwzUFBYuRcWaWhbolvokKEheIt8yHKdLFv83riVIdOfgCu7AxU5wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOdmY5sPUj68DUFYtOTJc18F5nAAMB8GA1UdIwQY
MBaAFCgQeraSHvjLLeyj63ZkeM/z5fxtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0JCNnRwSWUtTXN0N0tQcmRtUjR6X1BsX0cwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi8wODgyNmUtNzdkMC00MzdiLWExYzIt
YzBmYjNlZjc2NDBlLzEvNTJaam13OVNQcndOUVZpMDVNbHpYd1htY0FBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi8wODgyNmUtNzdkMC00MzdiLWExYzItYzBmYjNlZjc2NDBl
LzEvS0JCNnRwSWUtTXN0N0tQcmRtUjR6X1BsX0cwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCX9asMA0G
CSqGSIb3DQEBCwUAA4IBAQCYqtfYxcAcTNSGBCLt6DtwfgaKVltuPqtOrnWnNMaj
A3/riP88Iki6WdjRw7sd1z7UQ17g9NOjfGOiHgbro/GlXYW1NBGAES7V1JhJTIT9
qtXEiVUEfBBYHE0mtKmzriqk8AwAazPlF+cRRH27ZQu1TpRYubIFgahWqdg145ud
YXXCmH4SnDqIpSGKGG4+zqaX5qSvZtNoes9Mba/ngPYdJY6Nfd1BnjxVde7XMoex
h1eEI+l6krQZLzxKpTTt6gOvWR4zbCEPHwcL6Ulsq+N59mFKw0wMNehLj9whtEtc
Y2sbJ0808Bm0DBOM/WBTiJhPWJHnINRhtUhqtwWjr6YX
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:46 2024 by rpki-client on console-fra.rpki-client.org