Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/hiu74lbRL2OPW4C5p-CSa_r8i6U.roa
File: hiu74lbRL2OPW4C5p-CSa_r8i6U.roa (raw, json)
Hash identifier: nVQA0bKKTynvkgFrzAgI8e84dSfj3ZDSKNiuh52wnIo=
Subject key identifier: 86:2B:BB:E2:56:D1:2F:63:8F:5B:80:B9:A7:E0:92:6B:FA:FC:8B:A5
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 018A63210BB28FF02C57995DC973CEE8FC29
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/hiu74lbRL2OPW4C5p-CSa_r8i6U.roa
Signing time: Tue 05 Sep 2023 02:17:04 +0000
ROA not before: Tue 05 Sep 2023 02:17:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44592
IP address blocks: 95.214.172.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 04 Nov 2023 16:39:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:63:21:0b:b2:8f:f0:2c:57:99:5d:c9:73:ce:e8:fc:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Sep 5 02:17:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=862bbbe256d12f638f5b80b9a7e0926bfafc8ba5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:a3:33:06:cb:a5:f3:59:97:fc:d9:e2:17:a0:
58:c9:a1:e8:91:f3:01:0d:89:0c:f4:d4:ed:06:79:
55:ff:d1:37:50:f2:92:83:85:2d:0b:ca:17:b9:09:
b0:3e:b6:74:c0:98:ca:6f:da:ea:74:49:88:3c:31:
ca:14:fa:01:12:a0:51:7a:2b:61:ce:77:c6:0b:6c:
99:ba:03:41:10:0b:0e:cb:79:9a:f0:5c:71:0a:14:
3a:50:60:4e:87:32:b5:65:04:7e:4c:ac:0b:0a:27:
cf:8b:6a:7d:bc:13:10:77:5b:ec:39:bc:b8:07:41:
b2:fe:ac:8e:8a:15:4b:b6:6c:83:14:7c:36:06:3e:
cc:4e:d9:8a:50:29:e6:61:30:d2:1c:43:9a:dd:e0:
f8:f7:56:df:66:27:3b:98:4a:9d:64:25:fa:f9:0c:
1a:f3:71:31:fe:91:ef:31:ba:12:4d:d6:bc:ee:32:
cc:db:0a:b2:80:8f:f3:fb:a2:65:d7:1f:d1:a3:a0:
2a:66:f1:2c:5a:2c:7d:cc:99:28:56:08:18:48:fb:
d6:a8:b2:57:4a:16:92:a0:63:bc:dc:d6:d3:1d:91:
9e:27:57:f8:8f:18:2d:09:37:a1:38:73:04:53:31:
76:d4:89:ff:35:de:19:09:e4:90:40:52:2a:e8:95:
a4:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:2B:BB:E2:56:D1:2F:63:8F:5B:80:B9:A7:E0:92:6B:FA:FC:8B:A5
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/hiu74lbRL2OPW4C5p-CSa_r8i6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.172.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:a8:e7:9a:f0:7e:f4:da:09:ce:d7:6e:60:5e:4f:6f:10:6a:
a2:6a:9e:a3:b2:e1:d4:9d:cf:36:64:e9:15:7d:bf:6f:ed:a6:
73:1f:ec:36:ef:67:b6:68:d8:9e:32:19:7f:bd:16:93:04:88:
e4:43:59:8d:bd:09:cf:7b:ad:69:62:1c:e2:e1:da:5b:c8:45:
08:b4:27:39:77:fd:4e:aa:15:d4:b7:cc:39:61:8d:79:65:2b:
08:cf:8a:bf:4f:c7:17:ef:41:57:45:be:bb:c4:71:91:21:2c:
12:ff:8d:9c:df:5f:e9:93:5e:63:a4:47:65:1e:ed:b6:f2:e0:
14:79:e9:c9:24:ec:33:7e:f4:d8:69:1a:b9:2d:0b:66:7e:91:
95:5c:1b:47:ff:7b:ad:bc:98:ca:2c:ef:34:12:35:62:70:fc:
25:f0:e4:48:b5:2b:22:a4:45:ae:22:61:87:16:c7:86:8d:22:
b9:38:94:99:2e:fe:be:be:4c:2e:f9:fa:e0:0c:56:94:49:9f:
42:90:ea:14:cc:15:4d:f3:24:53:c3:ac:a3:bd:3d:15:45:d2:
7f:a3:ac:32:f8:dc:9c:d6:03:43:64:c1:ff:3d:8f:2b:41:03:
e5:aa:84:05:6e:ad:06:ab:10:2d:46:2f:02:83:4c:c6:04:a7:
46:af:28:af
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYpjIQuyj/AsV5ldyXPO6PwpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4MTA3YWI2OTIxZWY4Y2IyZGVjYTNlYjc2NjQ3OGNmZjNl
NWZjNmQwHhcNMjMwOTA1MDIxNzA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NjJiYmJlMjU2ZDEyZjYzOGY1YjgwYjlhN2UwOTI2YmZhZmM4YmE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiKMzBsul81mX/NniF6BYyaHokfMB
DYkM9NTtBnlV/9E3UPKSg4UtC8oXuQmwPrZ0wJjKb9rqdEmIPDHKFPoBEqBReith
znfGC2yZugNBEAsOy3ma8FxxChQ6UGBOhzK1ZQR+TKwLCifPi2p9vBMQd1vsOby4
B0Gy/qyOihVLtmyDFHw2Bj7MTtmKUCnmYTDSHEOa3eD491bfZic7mEqdZCX6+Qwa
83Ex/pHvMboSTda87jLM2wqygI/z+6Jl1x/Ro6AqZvEsWix9zJkoVggYSPvWqLJX
ShaSoGO83NbTHZGeJ1f4jxgtCTehOHMEUzF21In/Nd4ZCeSQQFIq6JWkEQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIYru+JW0S9jj1uAuafgkmv6/IulMB8GA1UdIwQY
MBaAFCgQeraSHvjLLeyj63ZkeM/z5fxtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0JCNnRwSWUtTXN0N0tQcmRtUjR6X1BsX0cwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi8wODgyNmUtNzdkMC00MzdiLWExYzIt
YzBmYjNlZjc2NDBlLzEvaGl1NzRsYlJMMk9QVzRDNXAtQ1NhX3I4aTZVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi8wODgyNmUtNzdkMC00MzdiLWExYzItYzBmYjNlZjc2NDBl
LzEvS0JCNnRwSWUtTXN0N0tQcmRtUjR6X1BsX0cwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAX9asMA0G
CSqGSIb3DQEBCwUAA4IBAQBeqOea8H702gnO125gXk9vEGqiap6jsuHUnc82ZOkV
fb9v7aZzH+w272e2aNieMhl/vRaTBIjkQ1mNvQnPe61pYhzi4dpbyEUItCc5d/1O
qhXUt8w5YY15ZSsIz4q/T8cX70FXRb67xHGRISwS/42c31/pk15jpEdlHu228uAU
eenJJOwzfvTYaRq5LQtmfpGVXBtH/3utvJjKLO80EjVicPwl8ORItSsipEWuImGH
FseGjSK5OJSZLv6+vkwu+frgDFaUSZ9CkOoUzBVN8yRTw6yjvT0VRdJ/o6wy+Nyc
1gNDZMH/PY8rQQPlqoQFbq0GqxAtRi8Cg0zGBKdGryiv
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:43 2024 by rpki-client on console-ams.rpki-client.org