Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/IsDK2wR-ZMeUaHw-sw0ygnUoWVM.roa
File: IsDK2wR-ZMeUaHw-sw0ygnUoWVM.roa (raw, json)
Hash identifier: d/1e1SUuD60DlLLcEOtisxYR2ft9POMBOFRHFDepB2w=
Subject key identifier: 22:C0:CA:DB:04:7E:64:C7:94:68:7C:3E:B3:0D:32:82:75:28:59:53
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 018CC8DE15F4AF2DCABA5C110CE799D66661
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/IsDK2wR-ZMeUaHw-sw0ygnUoWVM.roa
Signing time: Tue 02 Jan 2024 06:30:46 +0000
ROA not before: Tue 02 Jan 2024 06:30:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 134094
IP address blocks: 95.214.174.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Feb 2024 16:37:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:15:f4:af:2d:ca:ba:5c:11:0c:e7:99:d6:66:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Jan 2 06:30:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=22c0cadb047e64c794687c3eb30d328275285953
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d4:45:81:cd:f7:5b:a8:30:65:72:a3:6a:d6:
43:b3:7c:40:86:d2:0d:f4:90:c8:d6:8f:00:59:3f:
3d:27:86:52:be:ed:cc:cf:b3:54:4f:d1:e6:0a:bf:
a8:ea:2c:63:3a:d3:79:4c:8e:78:05:84:94:7f:c6:
a5:70:e0:b1:82:a1:1a:d1:5d:0a:8f:ae:14:85:7f:
cf:8b:64:77:79:41:95:04:80:74:95:84:3a:96:b5:
27:73:52:0b:4b:30:c2:64:85:b2:f6:ca:10:5d:30:
e7:7a:40:78:57:ba:b3:b5:88:ba:44:d9:33:34:23:
98:eb:9c:61:5a:8f:28:00:57:73:41:fa:00:e4:80:
2e:d4:25:5f:df:c0:66:24:4b:ab:24:b2:ee:2d:90:
e3:20:73:4c:9e:c2:16:45:9c:68:98:0e:f9:d4:21:
e0:e2:3d:45:a9:89:99:01:bc:74:4c:38:bf:4f:44:
1f:a6:57:34:6c:67:f7:dc:c1:bf:46:c2:8b:f4:f7:
f2:60:d1:87:e9:a0:6b:ce:d9:a8:6c:70:7b:48:ca:
16:d1:4a:a8:0d:d1:a4:cb:bf:4a:71:c2:f4:f6:91:
36:f8:a3:00:f9:68:3d:fb:79:a8:9e:4a:e5:91:83:
69:e1:c1:d6:de:de:57:80:bf:0d:0f:77:6f:8e:91:
73:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:C0:CA:DB:04:7E:64:C7:94:68:7C:3E:B3:0D:32:82:75:28:59:53
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/IsDK2wR-ZMeUaHw-sw0ygnUoWVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.174.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:fe:3d:cf:42:5b:95:68:e8:7f:48:8d:d8:d4:47:61:79:37:
ea:a9:4b:40:31:45:ca:e3:e6:af:b9:75:14:c2:de:1d:2f:a1:
00:9f:36:e8:d6:81:4f:e6:c9:bc:d2:67:e8:89:2d:9d:c3:dc:
4e:ee:f9:f6:43:fd:d7:95:15:16:26:d7:99:66:2c:d9:e0:c5:
7c:a5:64:ad:83:9c:15:33:61:51:a5:e3:0e:e4:38:c9:e4:0f:
86:71:87:76:d3:f0:0e:4e:ab:49:8a:1d:bb:d5:39:24:d3:5f:
f9:a3:b0:d5:39:cd:25:70:10:fe:63:f8:10:cb:27:e5:65:79:
90:ec:48:19:e5:de:ab:20:04:76:40:20:43:43:33:0e:a7:81:
fb:44:60:ea:24:db:4e:03:6a:2a:94:88:f7:16:82:f5:94:7f:
bb:66:96:90:82:0e:08:5e:f2:3e:1d:62:1a:82:e8:b7:eb:08:
91:c3:49:b1:f3:35:df:16:27:54:6f:d8:38:9d:ea:08:1d:ee:
ce:71:ad:30:82:db:a2:d4:22:ca:0e:9b:54:7c:8a:9f:0b:36:
ae:62:da:f0:05:df:4f:2e:34:a6:ad:84:70:a6:7b:ff:47:d5:
c0:91:a3:45:5d:0d:e6:d3:41:52:a9:24:be:e3:2e:aa:d6:79:
86:a1:9c:1b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzI3hX0ry3KulwRDOeZ1mZhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4MTA3YWI2OTIxZWY4Y2IyZGVjYTNlYjc2NjQ3OGNmZjNl
NWZjNmQwHhcNMjQwMTAyMDYzMDQ2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMmMwY2FkYjA0N2U2NGM3OTQ2ODdjM2ViMzBkMzI4Mjc1Mjg1OTUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmdRFgc33W6gwZXKjatZDs3xAhtIN
9JDI1o8AWT89J4ZSvu3Mz7NUT9HmCr+o6ixjOtN5TI54BYSUf8alcOCxgqEa0V0K
j64UhX/Pi2R3eUGVBIB0lYQ6lrUnc1ILSzDCZIWy9soQXTDnekB4V7qztYi6RNkz
NCOY65xhWo8oAFdzQfoA5IAu1CVf38BmJEurJLLuLZDjIHNMnsIWRZxomA751CHg
4j1FqYmZAbx0TDi/T0Qfplc0bGf33MG/RsKL9PfyYNGH6aBrztmobHB7SMoW0Uqo
DdGky79KccL09pE2+KMA+Wg9+3monkrlkYNp4cHW3t5XgL8ND3dvjpFzGQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCLAytsEfmTHlGh8PrMNMoJ1KFlTMB8GA1UdIwQY
MBaAFCgQeraSHvjLLeyj63ZkeM/z5fxtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0JCNnRwSWUtTXN0N0tQcmRtUjR6X1BsX0cwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi8wODgyNmUtNzdkMC00MzdiLWExYzIt
YzBmYjNlZjc2NDBlLzEvSXNESzJ3Ui1aTWVVYUh3LXN3MHlnblVvV1ZNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi8wODgyNmUtNzdkMC00MzdiLWExYzItYzBmYjNlZjc2NDBl
LzEvS0JCNnRwSWUtTXN0N0tQcmRtUjR6X1BsX0cwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAX9auMA0G
CSqGSIb3DQEBCwUAA4IBAQCK/j3PQluVaOh/SI3Y1EdheTfqqUtAMUXK4+avuXUU
wt4dL6EAnzbo1oFP5sm80mfoiS2dw9xO7vn2Q/3XlRUWJteZZizZ4MV8pWStg5wV
M2FRpeMO5DjJ5A+GcYd20/AOTqtJih271Tkk01/5o7DVOc0lcBD+Y/gQyyflZXmQ
7EgZ5d6rIAR2QCBDQzMOp4H7RGDqJNtOA2oqlIj3FoL1lH+7ZpaQgg4IXvI+HWIa
gui36wiRw0mx8zXfFidUb9g4neoIHe7Oca0wgtui1CLKDptUfIqfCzauYtrwBd9P
LjSmrYRwpnv/R9XAkaNFXQ3m00FSqSS+4y6q1nmGoZwb
-----END CERTIFICATE-----
Generated at Fri Feb 23 19:25:53 2024 by rpki-client on console-ams.rpki-client.org