Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/9CWvslSYnji66MgvS9Nb29etTcc.roa
File: 9CWvslSYnji66MgvS9Nb29etTcc.roa (raw, json)
Hash identifier: cm6YeDj27VskmSqcxt03dsPJZ7Hn2lXNLvSQ257EFtQ=
Subject key identifier: F4:25:AF:B2:54:98:9E:38:BA:E8:C8:2F:4B:D3:5B:DB:D7:AD:4D:C7
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 018972A2EB46D18A0CC72B3715EF1533BE76
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/9CWvslSYnji66MgvS9Nb29etTcc.roa
Signing time: Thu 20 Jul 2023 09:30:26 +0000
ROA not before: Thu 20 Jul 2023 09:30:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 95.214.174.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:72:a2:eb:46:d1:8a:0c:c7:2b:37:15:ef:15:33:be:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Jul 20 09:30:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f425afb254989e38bae8c82f4bd35bdbd7ad4dc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:64:2c:a6:8c:91:81:a5:a1:ee:4c:9d:32:0a:
86:35:af:40:1c:db:8e:97:d7:4f:51:e6:a2:a2:69:
17:2a:32:ef:d3:74:de:99:02:64:60:5b:69:24:d5:
7c:f7:de:73:30:df:0c:62:64:54:2b:53:3d:39:ac:
d9:1a:ea:dd:b2:e8:84:d4:2c:54:1f:90:7a:65:a6:
0a:0c:a3:73:89:cc:2b:b9:c0:04:68:f7:a8:c7:f9:
9e:74:b0:eb:19:ed:08:dc:b5:69:ea:7f:6e:7c:59:
d9:30:60:df:32:05:7c:a1:86:b7:0b:7c:7c:bc:79:
30:08:7d:6c:e0:73:bd:ce:3b:c0:67:29:e1:96:d6:
15:c1:8e:96:86:fc:93:25:c2:24:a0:fc:3a:87:21:
f3:14:a6:ad:4c:0c:85:48:90:65:f1:7b:19:aa:5d:
57:a2:35:ea:3a:c4:29:b0:bc:0d:03:5f:55:ea:1a:
4e:b6:c2:29:37:a1:ea:db:fa:ed:4d:5b:1f:bf:d8:
b7:96:e8:7c:bf:06:a4:b6:9a:d6:4a:35:dc:1b:fd:
ba:9f:44:47:77:db:11:63:9d:fd:bb:36:c8:fb:0e:
ae:08:d3:52:62:c0:a4:c7:e2:a4:41:63:30:23:fb:
1c:8b:d9:fd:06:2c:8d:82:4d:21:f2:9c:fa:00:9a:
0b:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:25:AF:B2:54:98:9E:38:BA:E8:C8:2F:4B:D3:5B:DB:D7:AD:4D:C7
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/9CWvslSYnji66MgvS9Nb29etTcc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.174.0/24
Signature Algorithm: sha256WithRSAEncryption
57:2d:6b:48:16:90:17:68:37:ac:b5:30:b6:60:0d:f5:7a:30:
a4:de:a6:67:b2:e1:f5:36:b3:c6:11:d5:84:5a:ca:a4:1e:b1:
88:c1:29:76:16:ba:18:46:3c:7a:ef:a5:e1:29:cf:3d:64:1f:
e6:8d:0b:d2:85:a5:43:56:fd:fb:33:55:fd:aa:80:65:4d:f1:
44:df:81:7e:4c:ac:39:58:6d:7b:17:58:4c:2c:8f:7d:2d:3b:
ef:24:eb:74:2b:f2:35:59:d9:97:88:01:69:10:b5:67:4e:67:
24:a6:f8:9c:b7:09:9b:88:23:e4:3d:6f:02:ed:e3:7c:dd:62:
a2:ab:73:4b:8a:e5:f1:ca:09:4b:5d:94:1b:d1:ec:cb:91:3f:
31:6b:05:df:26:8d:2a:e4:46:cd:c0:16:e4:32:b9:d3:b1:39:
af:6e:7f:6c:68:ee:f7:37:02:22:2b:fa:7c:37:25:c1:ac:9b:
41:1f:32:a2:ba:21:7c:5c:38:d2:31:fa:72:f4:83:d1:d1:06:
79:d7:a6:3a:a6:b8:f8:41:d7:1a:22:93:d6:f0:97:6b:0d:59:
d1:c9:d8:60:57:dc:01:70:fa:f3:d1:e4:99:57:03:6d:d9:7b:
5f:30:15:d0:9b:fb:f8:56:1b:31:e9:b3:10:1b:1f:d8:ca:42:
a0:ff:84:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 21 16:42:51 2023 by rpki-client on console-fra.rpki-client.org