Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/obM0JzlyTnM0HQSwhfZlMshxGv4.roa
File: obM0JzlyTnM0HQSwhfZlMshxGv4.roa (raw, json)
Hash identifier: /rT3VMiVFRXoFs8qnAZzaeZtAz6rM7iQSwM5gR808ok=
Subject key identifier: A1:B3:34:27:39:72:4E:73:34:1D:04:B0:85:F6:65:32:C8:71:1A:FE
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 0190B5FE83E3C98A52733A9BFCABCA6396D2
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/obM0JzlyTnM0HQSwhfZlMshxGv4.roa
Signing time: Mon 15 Jul 2024 10:44:34 +0000
ROA not before: Mon 15 Jul 2024 10:44:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 95.214.175.0/24 maxlen: 24
193.239.197.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Jul 2024 18:12:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:b5:fe:83:e3:c9:8a:52:73:3a:9b:fc:ab:ca:63:96:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Jul 15 10:44:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a1b3342739724e73341d04b085f66532c8711afe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:3d:37:8a:20:72:27:12:38:b3:75:42:4a:71:
f1:a5:55:0e:3e:c4:31:10:3a:a9:56:f2:bc:69:98:
d3:46:a6:bd:31:de:cc:6b:99:90:b0:82:78:de:60:
4c:cc:ad:8d:25:06:8e:28:06:35:ca:b7:c3:c0:6a:
d8:14:ba:eb:c7:93:e0:a8:bd:f6:a7:fe:44:ba:bd:
59:75:d1:2a:4e:c1:c2:6f:58:59:af:9c:7a:0c:bb:
bb:0c:a0:ca:86:24:0d:67:98:70:bb:08:20:c4:13:
89:09:d0:bd:11:81:9a:cd:07:d7:61:a8:65:ad:55:
f3:15:8e:e8:fe:a9:f6:db:df:a6:f4:4b:eb:ff:c9:
5a:2b:e0:9d:39:a4:15:66:4a:ea:e8:61:71:3d:3b:
89:67:fe:45:72:c3:e8:25:f2:95:4a:88:92:ec:c4:
89:47:be:3a:a1:3f:0f:1c:db:e6:ac:fe:93:22:68:
56:91:79:74:0e:2b:08:ae:26:c0:d0:31:bb:c2:36:
44:75:27:ed:72:af:b1:60:be:1d:77:f7:40:55:96:
f0:0d:15:b1:04:04:5a:76:1c:a6:df:9f:12:74:a4:
8e:fb:3e:7c:1d:e8:23:32:86:7b:a2:e1:18:57:4b:
b6:2d:f8:dd:ff:8b:d3:13:e2:81:a8:e7:14:59:bc:
ea:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:B3:34:27:39:72:4E:73:34:1D:04:B0:85:F6:65:32:C8:71:1A:FE
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/obM0JzlyTnM0HQSwhfZlMshxGv4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.175.0/24
193.239.197.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:29:23:a1:39:45:93:23:21:06:cd:49:ce:8e:e8:1c:99:39:
b5:aa:d1:cc:d9:36:65:59:7a:0e:1b:e1:45:ef:b5:dc:8c:46:
21:d1:aa:c1:f7:f0:f8:13:11:1b:ca:4f:34:c4:a0:19:eb:58:
cf:43:23:fb:d4:de:e7:c7:5a:e3:c2:a2:e1:7d:20:25:53:78:
9f:bd:92:d6:15:81:0b:78:6f:df:ce:3d:a6:73:be:f9:aa:d8:
4a:da:1c:bf:c2:05:b9:f2:74:d6:8b:bd:bf:ee:37:e2:3b:da:
df:71:83:96:c3:2f:ae:f9:60:f6:3a:08:7c:89:52:f4:06:0f:
93:ed:15:e2:a3:99:6e:8e:4a:06:4e:1d:ac:8e:3a:ab:fb:9e:
5c:35:8f:67:38:77:1c:03:3f:5a:ce:1d:71:5c:e9:12:ea:6b:
fb:0e:f7:ae:3f:10:e6:ba:47:87:c8:22:f8:2f:77:82:1f:1b:
fd:b9:7b:5b:db:4b:5e:5a:48:dd:95:2b:94:27:a6:ef:82:1f:
c7:65:ea:d1:ae:e1:b1:06:76:37:d3:69:b6:84:ad:35:13:cf:
93:a6:75:29:f6:af:62:b3:2d:a0:b0:b1:f1:03:df:32:dc:8d:
ad:9a:ac:86:f8:42:70:95:9f:04:b5:7e:4c:de:25:8c:21:cd:
87:c4:4f:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 17 22:48:31 2024 by rpki-client on console-ams.rpki-client.org