Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/TnOvedzqs7reSKGU2BL7FAGpfUM.roa
File: TnOvedzqs7reSKGU2BL7FAGpfUM.roa (raw, json)
Hash identifier: cLMCpTF9jy5Rel91vTFrgJdCLscn/+ttHutc/rNvj9c=
Subject key identifier: 4E:73:AF:79:DC:EA:B3:BA:DE:48:A1:94:D8:12:FB:14:01:A9:7D:43
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 01924E5CF8C5C3265EDAB56939ED22D8B019
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/TnOvedzqs7reSKGU2BL7FAGpfUM.roa
Signing time: Wed 02 Oct 2024 17:52:48 +0000
ROA not before: Wed 02 Oct 2024 17:52:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 95.214.173.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 04 Oct 2024 18:16:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:4e:5c:f8:c5:c3:26:5e:da:b5:69:39:ed:22:d8:b0:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Oct 2 17:52:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4e73af79dceab3bade48a194d812fb1401a97d43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:3f:95:ca:78:78:79:b0:34:95:d7:3a:9f:da:
ef:d2:6b:c0:ed:5a:e8:cf:3b:4d:a1:2a:8f:b4:f7:
01:58:78:7b:c8:aa:0b:9f:08:b8:23:89:64:d0:97:
a6:8f:31:f3:09:ff:e2:c1:04:0d:49:8f:b6:70:a0:
71:55:fc:50:1c:6f:fd:91:41:b2:ea:08:cb:22:5f:
18:37:8e:5e:2f:0f:df:04:8a:d2:c2:b9:a5:b4:26:
e8:f4:67:fb:0e:9c:20:e7:8e:7d:e7:ba:96:b7:ab:
8b:84:6b:20:ad:83:fe:6d:e5:23:41:b1:ee:08:26:
bd:9d:cb:fd:64:57:6f:3b:b2:5b:6b:68:ba:f1:34:
5a:d5:a0:96:2c:27:b8:83:0b:8e:20:f7:bb:4b:5e:
aa:7b:0a:96:c1:4e:0e:59:84:9e:04:16:c1:63:84:
3e:1a:5b:83:30:5d:c4:17:24:fd:24:a8:fb:98:5e:
aa:3a:1b:a2:2f:f4:df:77:20:5e:50:bb:41:17:81:
87:a1:b1:5b:3f:68:a2:f4:5d:2b:95:ee:a1:1e:12:
ee:c5:5c:d3:f9:d2:0d:db:e3:d0:25:98:9a:c2:38:
33:c8:eb:4f:93:56:59:42:bb:65:f4:fa:c3:9b:ed:
fd:37:5a:eb:82:10:74:58:50:c0:26:e7:f7:37:a7:
f2:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:73:AF:79:DC:EA:B3:BA:DE:48:A1:94:D8:12:FB:14:01:A9:7D:43
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/TnOvedzqs7reSKGU2BL7FAGpfUM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.173.0/24
Signature Algorithm: sha256WithRSAEncryption
26:44:ba:5e:0a:b1:f2:28:e0:39:f9:9d:e5:09:c8:bb:ac:4d:
a1:4b:9f:d9:39:41:8f:af:ac:19:1a:d6:b3:7e:74:4e:02:82:
2e:c6:da:57:bd:26:24:40:fc:bc:cc:1a:c2:6d:e1:7a:cd:ea:
9f:49:10:92:b7:77:cf:56:15:ff:6a:a7:41:b2:fa:ab:60:ae:
c0:c6:62:bf:20:ff:9b:c1:e4:8b:37:4a:11:05:70:8b:a9:26:
f8:fa:1a:68:52:12:ce:7d:58:73:20:2e:b0:fa:71:3e:af:74:
7b:59:2f:22:70:b3:fd:a4:cd:86:56:33:12:67:95:9f:f8:35:
0e:ec:35:57:a6:34:e6:15:d3:41:50:28:42:7b:06:75:ad:2c:
ad:31:ac:f9:94:3e:3b:e8:0e:2a:3e:d9:39:b0:b5:98:41:bd:
70:94:80:10:5a:b7:14:d0:42:d9:b2:b4:94:24:c1:ec:51:9b:
38:23:06:1e:a2:1b:ae:cb:44:a1:26:9a:8f:2f:9b:9f:da:9a:
ab:b1:b7:6f:3f:c7:87:40:b0:e4:45:8a:c1:02:ed:82:0c:9f:
85:64:17:00:fe:a4:b2:36:af:06:8e:e2:8f:61:de:5a:3d:77:
1c:22:bc:98:38:70:00:18:a0:0f:79:2c:80:62:69:b5:f4:4b:
fe:b2:f1:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 4 21:12:39 2024 by rpki-client on console-ams.rpki-client.org