Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/UkI9WqlcCGauYloamyFda0MW3Qo.roa
File: UkI9WqlcCGauYloamyFda0MW3Qo.roa (raw, json)
Hash identifier: orY8zTtuUe8Ik14VaFgafb1YOUIrXGGowcngFcsr3Qk=
Subject key identifier: 52:42:3D:5A:A9:5C:08:66:AE:62:5A:1A:9B:21:5D:6B:43:16:DD:0A
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 0189964453622353F875EDFB96B1B725269E
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/UkI9WqlcCGauYloamyFda0MW3Qo.roa
Signing time: Thu 27 Jul 2023 07:33:27 +0000
ROA not before: Thu 27 Jul 2023 07:33:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 95.214.181.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 30 Jul 2023 12:53:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:96:44:53:62:23:53:f8:75:ed:fb:96:b1:b7:25:26:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Jul 27 07:33:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52423d5aa95c0866ae625a1a9b215d6b4316dd0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1e:e0:cd:98:0a:3a:04:32:9f:ad:99:c1:52:
0f:1f:14:c9:26:4b:58:6b:a6:52:f6:83:44:98:ef:
c1:79:74:be:3d:7e:d8:fb:56:27:0b:b0:4f:6f:4c:
99:c9:5b:f4:1a:2a:a7:1d:99:50:46:11:19:8b:76:
88:25:64:9e:8d:46:37:7a:bf:5f:a7:b9:25:0c:7f:
ee:1f:b5:b5:de:36:d0:bb:e1:0a:8d:ae:5f:78:eb:
89:15:8d:19:cc:00:6b:6b:58:20:01:cd:76:bb:94:
f9:c1:9b:3c:6b:16:a7:4a:89:05:1a:1e:de:9c:ef:
54:7e:5c:b7:23:4a:ba:45:c5:a2:18:1c:c4:dc:cd:
55:f1:80:17:30:9a:0d:f8:3c:50:9b:17:71:06:de:
b3:20:66:65:22:f5:8d:fb:b9:b7:db:50:6b:0c:68:
6e:a1:a1:28:a0:dc:d9:8a:56:04:66:fe:8c:0a:93:
29:d9:e8:d7:6f:ca:8f:45:2b:04:fc:04:dc:17:00:
51:4e:f6:2d:14:30:72:3a:21:c9:88:f5:ff:0f:9b:
eb:43:7d:ce:6f:c4:7e:28:db:e6:41:5a:f1:70:75:
02:d5:c0:3a:52:65:20:39:12:42:a5:c9:9e:ec:5d:
ae:e7:1b:a2:04:ac:60:43:ad:1a:ce:1f:f9:29:0d:
cd:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:42:3D:5A:A9:5C:08:66:AE:62:5A:1A:9B:21:5D:6B:43:16:DD:0A
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/UkI9WqlcCGauYloamyFda0MW3Qo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.181.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:ec:42:cb:79:8e:8f:54:06:79:e7:67:e8:0c:6c:08:84:87:
5c:e1:7f:44:95:a6:cd:f4:19:27:20:2b:ff:b8:f0:f4:2a:58:
c6:50:2c:62:a6:eb:b5:81:bc:1f:3f:ae:9f:23:cc:17:8f:f6:
33:6e:1e:6c:ed:c2:89:55:72:25:b7:2a:5a:ab:d8:20:9b:69:
76:4d:9b:ee:b2:31:28:97:ae:1a:a7:3e:a5:9d:cd:61:ad:3f:
e5:9c:4f:7c:f5:ca:d6:2d:19:8d:b1:49:ef:a4:a4:ed:4b:22:
45:ee:42:b7:74:85:2e:eb:36:5f:da:d3:16:85:89:7a:02:ce:
7e:8f:4d:ec:60:0d:59:81:65:8c:6f:7a:3e:b9:77:6c:16:f0:
c3:7a:d7:47:c5:12:6c:35:26:96:45:de:89:3d:b1:cd:3e:80:
f4:87:8d:dd:55:ce:2c:37:35:88:60:e4:4d:1d:17:16:c3:50:
2f:53:4c:70:af:69:2c:90:84:74:97:09:32:cf:c7:99:36:01:
a1:9f:c0:0b:7e:16:70:b0:3b:97:36:06:94:b2:6b:58:85:24:
44:90:13:37:0b:7a:a6:d9:c2:aa:2f:0c:42:44:94:f4:89:9e:
f6:aa:a0:7f:d4:38:21:5e:45:4b:d7:4c:78:fe:3d:15:9c:59:
dd:94:95:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:43 2024 by rpki-client on console-ams.rpki-client.org