Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/rEpFn3YgOLMiBLhKRoid9MMSRhw.roa
File: rEpFn3YgOLMiBLhKRoid9MMSRhw.roa (raw, json)
Hash identifier: E7RAuqkf/HIcdLYFuXonJ7CCG7rkJvbbc3aWJ3PvFw4=
Subject key identifier: AC:4A:45:9F:76:20:38:B3:22:04:B8:4A:46:88:9D:F4:C3:12:46:1C
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 018D2CD19EA064EF0510F0939A8B1FC38B53
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/rEpFn3YgOLMiBLhKRoid9MMSRhw.roa
Signing time: Sun 21 Jan 2024 16:19:11 +0000
ROA not before: Sun 21 Jan 2024 16:19:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199415
IP address blocks: 95.214.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Jul 2024 13:02:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:2c:d1:9e:a0:64:ef:05:10:f0:93:9a:8b:1f:c3:8b:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Jan 21 16:19:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ac4a459f762038b32204b84a46889df4c312461c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:29:23:a2:87:dc:2a:49:89:d8:70:ab:fb:89:
dd:a2:dc:f4:64:76:ed:f5:fb:fb:94:5c:0b:98:2a:
92:cd:70:a5:11:fc:d1:0e:d6:9c:3a:98:b5:b7:69:
64:9c:b4:5d:af:3b:fb:7a:06:af:bb:7e:4c:61:9a:
38:42:11:24:ac:b3:c9:ac:f2:9e:ea:77:65:bd:b9:
55:40:79:9f:80:93:32:81:eb:68:2f:d2:76:af:f8:
73:d9:d9:6d:8f:48:de:8c:ec:6b:b9:09:97:f1:04:
98:b1:00:79:b4:90:61:98:74:c5:2d:49:18:aa:02:
3a:46:7f:78:e2:a1:d8:f2:e4:36:b5:2f:9d:d5:83:
da:65:91:53:00:61:bd:52:ff:d4:de:ef:ae:2a:aa:
6d:89:9b:70:92:1a:5d:46:a0:67:11:0e:8b:40:4b:
99:bb:c1:b9:c7:de:8b:55:a0:49:3b:32:d3:24:75:
cc:fb:bb:6e:3c:a1:11:d2:11:25:de:bb:a5:e4:5a:
c7:ca:37:9f:32:17:73:91:8e:4a:45:c6:13:a4:ce:
f7:0d:50:76:13:0d:eb:e5:03:97:df:e6:ed:14:25:
40:41:e8:44:02:d8:26:db:48:8a:16:15:13:5d:8a:
b1:6a:93:32:1f:9b:64:1c:99:cc:bd:eb:19:b3:0b:
5b:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:4A:45:9F:76:20:38:B3:22:04:B8:4A:46:88:9D:F4:C3:12:46:1C
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/rEpFn3YgOLMiBLhKRoid9MMSRhw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.175.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:a2:18:4b:2b:04:1f:4f:08:1f:4e:65:4f:96:03:29:70:40:
cd:fe:db:a1:8d:41:27:1e:61:87:0f:e7:28:ce:fd:67:ca:55:
ef:b2:b6:cd:34:0a:2a:3a:a8:c0:57:e0:1c:6f:32:48:88:17:
67:67:a0:f2:75:55:8e:bb:1c:7f:bd:fc:86:5e:13:0a:a4:1f:
fb:bc:9e:cd:2a:e4:4b:43:90:2c:49:a1:ae:85:06:70:f5:5d:
fc:5c:15:1c:c2:f4:c5:5b:56:eb:44:72:a4:06:35:2b:c0:ec:
83:07:3a:6c:67:98:6f:d1:0f:81:da:07:e4:9f:63:cd:87:45:
06:c8:37:31:ee:a0:17:a3:40:09:14:4e:6d:7c:ac:0e:aa:1f:
0d:10:db:a4:2a:ad:c4:4d:09:b2:29:9c:c0:2f:88:9f:3e:65:
c9:9c:1a:4a:cf:38:b7:e4:24:ab:f6:0d:1c:be:a4:73:00:b4:
12:7d:24:1f:fd:37:1c:7c:db:58:e6:cc:e1:2d:ab:05:ca:d7:
76:52:34:08:b7:70:f5:5a:ac:f0:1c:fc:e4:f9:ca:f9:74:81:
d3:04:55:22:1f:31:b3:e0:60:68:d5:cf:2a:0e:64:6c:58:f6:
f8:b1:ba:a8:ea:f3:34:ca:ac:97:f0:06:50:ca:d0:72:b9:67:
e8:49:fa:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 11 14:48:01 2024 by rpki-client on console-fra.rpki-client.org