Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/AxgNZjtci-LJI4_KslyDO5EoamA.roa
File: AxgNZjtci-LJI4_KslyDO5EoamA.roa (raw, json)
Hash identifier: kMDG4jh5c9+tAihET8lcNaDvSjJ3YxxC+QQhdyb6kO4=
Subject key identifier: 03:18:0D:66:3B:5C:8B:E2:C9:23:8F:CA:B2:5C:83:3B:91:28:6A:60
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 0189793CF957CBBA907F5BF51F0CC75DEB31
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/AxgNZjtci-LJI4_KslyDO5EoamA.roa
Signing time: Fri 21 Jul 2023 16:16:26 +0000
ROA not before: Fri 21 Jul 2023 16:16:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 134094
IP address blocks: 95.214.174.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:79:3c:f9:57:cb:ba:90:7f:5b:f5:1f:0c:c7:5d:eb:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Jul 21 16:16:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=03180d663b5c8be2c9238fcab25c833b91286a60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:69:55:e9:f3:00:19:c9:80:22:cc:9d:29:44:
f4:7d:7c:e4:4f:07:50:81:85:5d:d1:ba:2f:d0:0c:
84:42:42:c4:e0:f5:40:7c:a1:a9:c9:30:54:4a:5f:
d7:b4:00:16:15:56:ac:c2:02:22:d2:46:94:bc:55:
01:fc:34:68:b3:a8:75:ed:18:b7:d1:42:36:66:e0:
2a:72:6b:fa:e9:9e:a9:ee:dd:2b:ea:4d:58:69:99:
e8:52:3a:10:d7:57:69:c7:2d:26:a5:a1:ce:c8:03:
1a:dc:f4:3b:08:e8:a4:f9:35:ad:59:2d:16:33:16:
81:c9:79:eb:38:01:96:a3:66:1b:c3:3e:51:89:74:
39:50:1d:7f:ad:33:a3:32:10:ea:84:82:8a:6f:49:
68:38:34:8d:8a:d3:83:ef:5e:75:1a:d9:bf:a3:f9:
67:d6:41:e4:82:2d:ff:08:93:da:6a:24:b2:77:ae:
59:69:38:f9:86:9b:27:6d:4f:06:d4:20:6e:f4:15:
74:ea:41:a0:85:30:31:44:79:9a:60:7a:39:80:f8:
fa:da:d8:f7:58:2e:3f:cd:ed:c8:5b:52:0c:5c:8f:
7c:00:cf:80:4b:68:d4:55:9b:27:e8:45:df:03:70:
d6:da:80:61:10:0f:64:96:1f:35:0c:e1:1d:59:03:
cc:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:18:0D:66:3B:5C:8B:E2:C9:23:8F:CA:B2:5C:83:3B:91:28:6A:60
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/AxgNZjtci-LJI4_KslyDO5EoamA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.174.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:38:e6:2d:f7:6c:be:1b:e3:f1:ff:2e:63:e5:39:a5:ef:48:
4b:d7:64:0f:91:d6:eb:55:91:e0:ac:e4:cc:f4:f1:99:92:56:
97:d3:ff:7c:d7:86:43:71:20:22:cb:94:8a:77:cd:0e:b7:44:
3b:0c:78:c5:56:01:0a:d1:b3:26:10:21:9c:b8:b1:f4:75:ed:
60:24:b0:ed:25:75:b0:37:53:fe:08:7b:8c:ae:f8:90:82:72:
79:56:0b:63:c5:ee:76:5f:96:dc:27:20:87:c4:79:50:18:bf:
6c:4a:c0:95:5f:c1:a0:d4:34:da:d3:16:c8:8a:4c:24:00:ab:
bb:b4:56:d6:8f:7b:3e:3c:f5:9b:ee:dd:ef:59:00:31:14:d8:
11:69:db:2e:8f:57:87:d2:94:99:54:1e:f5:15:02:0e:b2:93:
96:8a:f8:bc:c7:85:15:ab:34:0c:11:e3:ff:fd:39:30:de:5c:
fc:80:6e:f1:be:40:df:71:6a:77:06:a9:78:f9:b9:e9:e3:bb:
41:fb:b9:2b:7c:73:ef:ec:87:aa:f3:ac:37:d1:f0:70:b4:42:
02:57:dc:c7:e5:81:0d:d1:35:5a:a9:81:7a:0c:5f:42:b0:31:
88:08:3e:67:e1:b8:db:39:db:79:59:1d:34:cd:11:d0:72:af:
4d:75:44:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 08:59:49 2024 by rpki-client on console-ams.rpki-client.org