Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/U5gLwk4vcrV9UmunIh59xWSjumY.roa
File: U5gLwk4vcrV9UmunIh59xWSjumY.roa (raw, json)
Hash identifier: n/vlSwxH4grqrC41kqclvki/pSuG7B+m6yVxO2Gbfas=
Subject key identifier: 53:98:0B:C2:4E:2F:72:B5:7D:52:6B:A7:22:1E:7D:C5:64:A3:BA:66
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 0188D794F68FB16981B0B3F6C0D9662514AD
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/U5gLwk4vcrV9UmunIh59xWSjumY.roa
Signing time: Tue 20 Jun 2023 06:54:03 +0000
ROA not before: Tue 20 Jun 2023 06:54:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 95.214.172.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 20 Jun 2023 18:39:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d7:94:f6:8f:b1:69:81:b0:b3:f6:c0:d9:66:25:14:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Jun 20 06:54:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53980bc24e2f72b57d526ba7221e7dc564a3ba66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:57:d9:62:73:6d:c1:78:db:79:fa:d5:53:54:
28:52:aa:9b:15:02:c8:51:69:af:e0:83:33:2a:11:
9b:7f:b8:75:a0:fd:d6:6f:f0:a5:a7:92:33:6b:14:
a3:ad:5f:c7:ce:1a:7c:02:98:52:54:0b:94:ae:ec:
23:1b:79:b6:01:ba:a4:1a:1b:98:bf:b1:f8:29:c5:
00:23:be:2e:ba:c4:21:d1:63:00:5f:49:b7:2e:91:
b8:1b:ae:6e:d1:52:f3:40:fd:15:cd:fb:8d:e6:ef:
29:69:5f:b2:e4:b3:0c:14:2d:c0:70:b5:b1:7b:57:
e0:a5:8b:ef:22:72:2d:40:cf:3b:2a:4f:b3:64:54:
1a:db:3d:df:3c:0d:f7:85:70:7c:d6:42:b2:69:7d:
c2:80:8e:d3:01:cc:1b:c0:15:47:b3:8c:44:54:f4:
a7:c8:24:fc:1a:a9:c6:ae:ad:1c:6f:af:ff:61:30:
3b:5b:fe:67:37:4d:35:dd:e3:19:e5:39:a7:43:c3:
11:7d:89:fe:c0:27:5e:a0:df:66:77:1f:21:a9:42:
c7:fd:3d:bb:da:31:40:e8:84:81:fb:07:5f:de:fc:
1b:64:28:19:df:cf:5a:f6:74:03:2c:b9:d1:aa:3e:
2b:e9:f1:54:96:ef:82:25:d5:cb:bd:37:fa:c3:8d:
20:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:98:0B:C2:4E:2F:72:B5:7D:52:6B:A7:22:1E:7D:C5:64:A3:BA:66
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/U5gLwk4vcrV9UmunIh59xWSjumY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.172.0/23
Signature Algorithm: sha256WithRSAEncryption
b1:22:36:eb:14:f4:35:dd:84:b3:2b:ec:d3:37:59:cc:c9:a5:
11:57:31:c1:a7:ba:03:22:8a:d0:22:0f:12:16:61:9d:e0:c0:
77:43:cb:b7:2b:f6:a3:a5:fa:46:47:02:30:83:e7:ed:45:6d:
d6:e8:c2:0a:13:b2:1f:db:5d:85:c2:3d:f0:5f:19:df:c0:36:
7b:04:57:99:a0:f4:55:a8:74:00:a7:1c:33:3a:8f:e3:44:fe:
40:11:6a:4d:87:5e:26:88:76:c7:43:e4:30:63:73:b4:3b:af:
d9:5d:59:51:f5:2b:b2:02:a0:98:4a:a1:75:4c:41:a8:0f:25:
e1:67:d8:ac:76:33:f1:32:aa:c8:44:a4:0b:d7:38:33:e8:ff:
5e:85:19:b9:2e:c5:ae:a9:b8:d9:49:8e:3e:46:7d:ea:f2:56:
8a:6f:ca:a1:c6:e6:9b:df:bf:68:68:0d:fb:83:de:af:f6:44:
1a:96:f0:64:a7:0d:5e:ba:12:4d:70:42:8b:da:80:a0:f5:d7:
df:f6:94:8c:60:f0:ca:d1:88:48:97:8c:d0:19:67:28:89:12:
4f:38:9c:f1:b0:a7:6f:cd:05:81:0f:f6:15:85:ff:de:2f:59:
0d:d8:e7:61:56:b2:c2:12:82:ec:0a:40:ad:02:03:94:1e:84:
f8:b9:4f:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:46 2024 by rpki-client on console-fra.rpki-client.org