Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/XobjjMnAF9GkxC4s6W6wyXkE3TU.roa
File: XobjjMnAF9GkxC4s6W6wyXkE3TU.roa (raw, json)
Hash identifier: gZyh6Sak1hYBgt530PkVgMedHFr31DmOjy8a4K2pjRs=
Subject key identifier: 5E:86:E3:8C:C9:C0:17:D1:A4:C4:2E:2C:E9:6E:B0:C9:79:04:DD:35
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 018BA79EAD6AA4AB1F1E123D1FD02DD58960
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/XobjjMnAF9GkxC4s6W6wyXkE3TU.roa
Signing time: Tue 07 Nov 2023 02:31:16 +0000
ROA not before: Tue 07 Nov 2023 02:31:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197477
IP address blocks: 95.214.172.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:30:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a7:9e:ad:6a:a4:ab:1f:1e:12:3d:1f:d0:2d:d5:89:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Nov 7 02:31:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e86e38cc9c017d1a4c42e2ce96eb0c97904dd35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:5d:08:18:83:2d:62:e1:a9:a0:38:f2:23:38:
e0:52:21:50:68:ff:48:49:0a:91:06:d7:2e:3d:15:
ae:a4:c1:cc:83:c4:b6:d3:09:3c:67:2c:d7:19:b4:
7b:d2:6f:3b:49:85:02:ae:89:43:bb:9a:09:b1:c6:
5d:71:49:dd:64:7e:71:0e:66:ff:7e:7b:69:57:d8:
07:6b:96:53:ba:5f:fa:68:38:21:28:a5:e6:6c:63:
5a:7e:4c:1b:b8:0d:04:cd:c1:a1:61:43:9a:c7:f6:
44:e6:0a:67:ab:db:21:74:ba:e3:ff:f4:92:4c:b1:
e6:1e:ef:81:5a:b9:c8:66:c2:ea:6e:69:21:dd:bf:
ad:fc:ab:0f:4f:04:7a:9b:68:37:7f:09:14:49:08:
59:be:5c:55:a8:55:43:7a:60:ac:d7:91:19:81:db:
a5:9e:fc:06:7f:1a:ca:39:7e:4a:a8:f3:ce:5a:8a:
96:fb:b0:f1:bd:e2:d4:13:3c:bf:94:ae:26:5a:87:
77:23:20:64:6b:40:20:89:ae:e2:88:da:d2:6b:03:
61:8b:80:37:12:33:de:33:83:e8:ac:6d:22:d2:df:
e0:6a:b0:00:22:4b:ae:7f:37:5b:e8:b4:8d:05:0c:
3f:33:58:4a:f5:ae:4d:4c:f9:49:82:20:bd:d9:48:
44:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:86:E3:8C:C9:C0:17:D1:A4:C4:2E:2C:E9:6E:B0:C9:79:04:DD:35
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/XobjjMnAF9GkxC4s6W6wyXkE3TU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.172.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:08:42:8e:8d:08:cc:48:bb:ef:65:25:de:57:42:13:f9:15:
7c:c7:7f:12:ed:b7:7e:c3:6a:a6:5a:fa:9d:ed:a1:95:c7:de:
6d:f8:bd:03:f6:64:d2:d3:ae:75:ee:d1:b1:ea:f8:27:68:55:
0d:d7:a6:e2:f1:32:ba:06:c2:14:51:32:79:d0:70:f8:a9:b5:
60:04:54:67:17:92:0e:1e:fc:fc:70:f6:76:e9:48:43:f4:22:
e9:09:18:3c:2c:1a:63:c0:e0:e7:2a:e5:2d:f5:a1:eb:ab:3a:
f0:9c:1d:7e:72:ae:c9:66:b8:4f:1d:6f:57:2e:96:f1:7e:fa:
30:e3:9e:d7:f9:71:a3:44:58:fd:66:c8:b1:ed:2d:51:5e:d8:
5e:f7:a5:53:3f:df:e7:9b:d0:d9:98:e7:7f:a8:5a:7c:0f:31:
a4:4f:9a:aa:b1:d2:bb:cc:11:ca:cb:c3:60:71:9a:6f:94:70:
1b:aa:ab:4f:d8:ca:49:54:48:92:aa:94:0d:d9:d1:01:1f:dd:
f4:c5:76:8a:08:65:ad:2d:5b:78:a0:a4:2b:99:09:56:b1:fe:
22:65:70:cf:2b:22:74:9e:1b:95:bf:9a:fb:cf:47:e6:38:eb:
5c:f8:6e:db:b8:9f:73:13:bb:30:a2:b8:a2:f7:a8:ea:e9:f0:
99:a8:dd:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:46 2024 by rpki-client on console-fra.rpki-client.org