Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/N0OacGiW5PLlEt1YjEONo-08wWc.roa
File: N0OacGiW5PLlEt1YjEONo-08wWc.roa (raw, json)
Hash identifier: sqjVaVlAbfx02VpBnDDHHoH8KB8uylO394MePYasO2g=
Subject key identifier: 37:43:9A:70:68:96:E4:F2:E5:12:DD:58:8C:43:8D:A3:ED:3C:C1:67
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 0190A1E38BAFC46A6B2110493DFA796AF1A5
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/N0OacGiW5PLlEt1YjEONo-08wWc.roa
Signing time: Thu 11 Jul 2024 13:02:42 +0000
ROA not before: Thu 11 Jul 2024 13:02:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 95.214.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 Jul 2024 10:44:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a1:e3:8b:af:c4:6a:6b:21:10:49:3d:fa:79:6a:f1:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Jul 11 13:02:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=37439a706896e4f2e512dd588c438da3ed3cc167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:3b:31:bc:ba:bb:8e:7a:b0:b8:75:69:d7:9b:
48:49:64:cc:52:99:e6:b4:26:4e:93:56:ec:1f:e9:
e8:af:a5:45:0a:30:f6:a8:43:b4:2b:05:a5:1f:32:
f7:56:86:3e:4c:13:12:5b:65:a0:c4:c5:90:6e:f7:
76:75:e2:3b:50:a2:ce:6f:93:98:53:aa:a5:0a:71:
fd:8a:4f:72:38:54:42:63:22:16:7d:4d:06:0b:10:
16:c1:f3:00:ee:89:fc:b0:27:f4:88:7f:7b:12:a2:
3f:33:54:ee:04:69:23:3f:c4:d8:21:98:93:e0:1e:
e3:44:df:98:02:13:42:e2:af:77:6b:40:46:57:bb:
cb:96:f4:b7:0e:3e:9e:45:9a:70:45:59:ab:ba:5e:
2e:22:38:e4:a9:fe:e2:f2:04:26:8d:a6:01:e8:61:
08:c4:7d:94:4c:0e:d6:20:05:c9:76:14:d8:24:4f:
a7:32:80:0f:2f:b6:33:18:c4:70:1f:d9:2d:2e:0e:
8b:db:c2:b5:f8:b4:24:9b:e2:24:f9:b5:7f:44:8e:
df:85:d2:36:8e:93:f6:29:f0:9d:46:af:91:e9:1e:
67:cd:df:0d:c3:27:38:59:5b:60:d4:ef:21:31:9d:
1a:b6:df:9b:82:c1:80:65:d8:cd:56:eb:d2:f0:d9:
c0:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:43:9A:70:68:96:E4:F2:E5:12:DD:58:8C:43:8D:A3:ED:3C:C1:67
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/N0OacGiW5PLlEt1YjEONo-08wWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.175.0/24
Signature Algorithm: sha256WithRSAEncryption
73:5b:82:55:f2:9c:37:04:ba:31:e4:f1:16:dd:51:e2:4e:95:
dc:ad:7c:ca:b7:14:3f:86:4a:9e:dc:72:6c:73:17:c1:f8:e5:
a2:86:6e:dd:d4:c6:6d:a7:38:35:0a:a9:37:42:e5:91:9e:b1:
7e:73:a1:3b:f4:03:b5:02:34:81:a4:16:84:f3:83:81:cf:e0:
6f:cd:1a:46:28:60:44:7a:6f:df:43:8d:d3:b5:ca:3c:36:cb:
73:22:b5:c8:47:c6:49:12:b9:af:e1:50:d9:33:38:8e:ca:7d:
ff:50:80:1a:87:f4:cd:45:6b:5f:aa:8c:b4:39:e4:80:9a:cf:
1b:5d:eb:aa:e4:1c:b9:7d:40:4b:22:e9:4b:68:c3:8f:9c:52:
75:36:cf:6b:e3:b9:a6:63:98:19:2c:90:27:e8:8c:63:7b:56:
c2:4c:56:47:8e:77:74:d7:7d:58:14:49:73:09:c5:e7:bd:11:
7f:ab:99:cf:87:3c:ed:4a:1d:b0:0c:be:07:0f:b4:48:17:a2:
a9:48:31:2b:c9:7a:36:ef:c8:bc:f4:01:7d:00:eb:ff:0e:10:
97:2a:b7:3d:2d:15:84:40:f7:9e:0b:a7:a7:52:bf:56:2c:62:
7e:db:ed:bc:25:f2:27:6c:61:f5:82:fb:25:04:68:b3:3c:9b:
88:4a:27:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 15 13:08:14 2024 by rpki-client on console-fra.rpki-client.org