Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/bE3tpDjH9oHypoc1cHuIa35uEPU.roa
File: bE3tpDjH9oHypoc1cHuIa35uEPU.roa (raw, json)
Hash identifier: jiYRpBE81zjlbYmCRrZZDIvkdicNXVzQoFlX07aTOvo=
Subject key identifier: 6C:4D:ED:A4:38:C7:F6:81:F2:A6:87:35:70:7B:88:6B:7E:6E:10:F5
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 018A873BFD3F433A3AC5FD44B29395260F20
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/bE3tpDjH9oHypoc1cHuIa35uEPU.roa
Signing time: Tue 12 Sep 2023 02:32:50 +0000
ROA not before: Tue 12 Sep 2023 02:32:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 95.214.173.0/24 maxlen: 24
193.239.197.0/24 maxlen: 24
193.239.196.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Sep 2023 06:29:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:87:3b:fd:3f:43:3a:3a:c5:fd:44:b2:93:95:26:0f:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Sep 12 02:32:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c4deda438c7f681f2a68735707b886b7e6e10f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:0a:e9:ea:f5:ef:1a:34:5e:b3:bb:b9:df:3a:
0c:34:b7:a5:61:1f:60:5b:0a:94:2b:52:cb:68:ab:
7e:11:cb:90:2b:68:8d:33:5d:ec:ce:91:11:49:6e:
8f:f5:43:2c:5d:2b:fc:08:3f:6f:aa:49:f4:36:f8:
68:8f:be:ec:9a:85:dd:4b:a5:65:b7:43:53:6a:41:
4a:4b:82:c4:5a:f9:d4:98:2a:36:94:72:51:a9:50:
30:87:72:ac:f4:ea:ff:a0:3a:f0:c5:08:fb:6c:47:
71:3b:cd:18:d8:33:27:e3:51:8a:08:92:89:91:64:
42:2c:fe:62:30:d8:93:73:46:cc:e2:f4:30:51:d9:
ad:69:f0:d3:11:d8:33:29:fd:22:d2:5d:11:08:5b:
f4:89:93:41:cc:5f:ff:17:3a:48:50:eb:d4:57:f7:
f5:51:6d:72:b2:e3:1d:47:74:50:8c:e2:e7:d8:bc:
7a:a9:e1:08:9b:f1:e0:84:1b:ec:80:4b:85:69:8f:
21:c7:5c:ef:64:c6:2e:3d:e9:36:9c:64:27:36:22:
b1:ae:43:9c:c0:e3:31:b7:af:dc:d2:d8:49:b9:9b:
cd:45:5f:2b:17:9e:35:ad:ad:aa:9b:4d:00:49:23:
b5:46:ee:34:54:fe:e0:b0:1e:7f:97:88:6f:25:fe:
5c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:4D:ED:A4:38:C7:F6:81:F2:A6:87:35:70:7B:88:6B:7E:6E:10:F5
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/bE3tpDjH9oHypoc1cHuIa35uEPU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.173.0/24
193.239.196.0/23
Signature Algorithm: sha256WithRSAEncryption
05:27:23:9e:86:ff:af:33:11:5f:d5:23:6d:27:e0:fe:ea:44:
87:70:01:4d:db:d6:76:d7:d9:94:96:01:37:44:f8:45:cb:20:
59:d7:fe:f0:ef:bd:56:21:4a:f6:98:e2:d6:38:ce:b5:6f:8f:
99:0f:10:89:d7:c0:ad:27:f7:fe:05:1c:1c:be:8f:48:5c:f4:
22:da:3c:09:d0:f3:90:6c:f2:a3:21:2b:1b:fe:b6:70:d2:0d:
9a:b9:7c:e9:ce:de:22:92:20:ca:05:37:39:9c:74:9d:81:4d:
bc:a2:d3:8e:88:84:04:8f:04:13:24:b4:c1:34:ed:97:de:b9:
87:26:1e:01:52:a3:e9:4a:09:90:45:df:17:8a:3c:57:0a:af:
65:8e:0d:c8:7e:dc:7a:13:7e:d9:c1:97:94:5e:13:8a:32:a7:
1e:62:9a:f4:f1:2b:a9:b2:a9:cf:af:d2:40:a1:3d:49:6a:dc:
da:ed:18:fe:b8:85:1c:01:04:e3:af:0e:a9:4a:40:50:5d:53:
94:44:14:8b:fa:89:46:1e:0f:ae:84:d4:96:28:5f:97:1a:3e:
82:19:6c:49:f0:68:e1:14:04:33:9d:b6:19:04:54:c4:48:f9:
5f:41:d6:dd:7b:a8:b5:bc:6d:d9:7f:d7:38:a2:71:ba:67:89:
e9:be:91:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:43 2024 by rpki-client on console-ams.rpki-client.org