Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/FqSYc-QMf6tZ846-wpvVbdG-LVA.roa
File: FqSYc-QMf6tZ846-wpvVbdG-LVA.roa (raw, json)
Hash identifier: rVGdX6bQjzHsIbF0pGZvPtzUqpA2pLRcyctRa+YpCig=
Subject key identifier: 16:A4:98:73:E4:0C:7F:AB:59:F3:8E:BE:C2:9B:D5:6D:D1:BE:2D:50
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 01917D6F775F9310332CBC002CC6DE97EFE3
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/FqSYc-QMf6tZ846-wpvVbdG-LVA.roa
Signing time: Fri 23 Aug 2024 04:12:22 +0000
ROA not before: Fri 23 Aug 2024 04:12:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 95.214.173.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Aug 2024 17:59:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:7d:6f:77:5f:93:10:33:2c:bc:00:2c:c6:de:97:ef:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Aug 23 04:12:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=16a49873e40c7fab59f38ebec29bd56dd1be2d50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d8:32:a8:3b:82:97:b1:af:e4:e7:db:cd:c6:
b8:e1:24:8d:c3:c3:0d:67:0e:34:cc:4b:97:8d:72:
d2:65:1a:a5:20:46:dd:b9:14:29:38:78:53:55:23:
07:40:0a:33:da:b7:8b:ab:4c:4e:78:eb:a5:4f:86:
0e:95:35:74:3f:e6:e1:7a:53:ec:0f:94:3b:9a:20:
f9:fb:83:86:19:fa:82:0a:da:2a:d5:d9:ae:bf:d7:
2d:e5:bb:31:b5:0e:28:b5:f0:8b:90:e8:7a:67:a5:
58:77:9b:a1:ab:cb:bf:11:95:71:1c:5d:d0:2e:5f:
c6:3f:7d:a2:0a:f3:4e:ce:a8:15:03:d3:78:1e:8b:
5a:71:8a:65:0f:0e:0d:e3:06:ae:38:1b:93:02:e2:
13:c1:33:5b:73:09:bc:48:a0:c8:2c:9b:35:7d:18:
6a:63:da:ef:c6:82:3f:3c:ce:e5:5e:57:05:e0:48:
96:21:01:d5:dc:ed:e2:9b:8f:dc:4b:67:27:68:0e:
ce:97:aa:a3:20:be:6f:3f:1d:b0:26:78:f6:96:9f:
e8:0b:e3:21:16:ac:43:5e:19:81:0d:52:92:f4:51:
49:c4:b8:14:fe:a0:83:5a:b6:1c:ab:f4:fe:7e:5e:
3c:40:c1:82:84:5b:1b:66:d3:7b:26:31:8b:fc:74:
d1:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:A4:98:73:E4:0C:7F:AB:59:F3:8E:BE:C2:9B:D5:6D:D1:BE:2D:50
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/FqSYc-QMf6tZ846-wpvVbdG-LVA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.173.0/24
Signature Algorithm: sha256WithRSAEncryption
af:a1:30:75:b6:ca:ce:5f:cb:ac:99:58:e0:a8:5d:9d:23:dc:
fb:44:03:a6:ac:de:d1:c9:0e:7d:4c:3e:da:2e:50:fa:aa:d5:
c9:81:73:ac:c7:71:e4:8f:37:b8:7e:c1:0d:04:ca:97:5c:0f:
86:c4:8b:33:21:b4:b1:17:21:6d:12:b5:e1:86:20:b3:c4:6a:
bd:8d:c2:2f:ee:c6:1c:37:39:a9:9a:fd:eb:58:f4:71:3b:06:
9f:ae:80:49:21:0f:f6:0e:54:f8:88:46:90:e2:ee:30:01:9a:
b3:fa:ac:9e:c4:19:ba:a3:72:b5:0e:ee:a8:34:1d:f2:37:3d:
c0:7a:9c:9d:56:88:06:2e:2c:13:25:d9:5d:e5:50:83:b2:66:
c8:f8:1f:77:ca:d1:1c:7e:fd:20:58:2f:b4:d9:f0:6c:f9:eb:
62:0f:7d:ef:ce:79:80:ce:78:d1:7d:59:29:63:88:04:fb:56:
b0:43:5b:be:a6:ef:e2:97:ae:52:23:36:09:16:ba:ec:9c:28:
46:33:94:97:19:09:7a:31:16:7d:43:4c:98:a7:98:a8:44:ca:
4b:34:40:a7:68:36:c5:a3:91:aa:4f:9f:81:1a:58:fd:28:aa:
7f:e6:e4:4d:1d:d2:8c:14:c5:28:ec:69:3b:76:36:9d:a8:e1:
01:87:48:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 20:25:09 2024 by rpki-client on console-fra.rpki-client.org