Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/urkNBj7WKkY9OUTPDN3N4czRP6U.roa
File: urkNBj7WKkY9OUTPDN3N4czRP6U.roa (raw, json)
Hash identifier: hIwN98GxlS2U/hKmlVUxmrv0u7a4hiyhsVk8OtKyFhU=
Subject key identifier: BA:B9:0D:06:3E:D6:2A:46:3D:39:44:CF:0C:DD:CD:E1:CC:D1:3F:A5
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 0191ED54E25314795FC0CDC244313FDB3C90
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/urkNBj7WKkY9OUTPDN3N4czRP6U.roa
Signing time: Fri 13 Sep 2024 21:40:48 +0000
ROA not before: Fri 13 Sep 2024 21:40:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 95.214.172.0/24 maxlen: 24
193.239.196.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 15 Sep 2024 04:40:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:ed:54:e2:53:14:79:5f:c0:cd:c2:44:31:3f:db:3c:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Sep 13 21:40:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bab90d063ed62a463d3944cf0cddcde1ccd13fa5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:bb:6c:0b:30:b9:54:3c:9f:55:d3:f5:10:06:
7f:a1:fd:73:1f:21:82:4b:34:67:74:0f:54:56:1a:
39:a8:14:b6:7e:2a:8b:09:be:75:d9:2c:1e:c6:69:
71:10:51:6a:cb:88:6e:08:9c:7c:a5:ec:cd:f3:7d:
67:cb:2e:0a:79:9a:0c:13:69:99:14:85:bf:a7:c7:
c5:f1:0b:c7:c5:cb:a9:ac:f2:82:f1:0d:53:b7:83:
b3:98:84:2b:ae:da:fa:14:b7:b2:f1:81:37:cb:c4:
e8:c1:10:fc:cb:8c:05:84:e2:e4:8c:d5:9c:ea:76:
0f:91:4f:1e:af:e4:d7:39:c1:ca:d2:b8:6b:ab:bf:
a6:51:84:a5:71:7a:04:08:47:8d:e0:3a:54:bb:46:
fb:42:a0:f3:41:13:05:2f:7c:db:b1:38:a7:ef:76:
31:6f:f0:01:49:7b:b2:ab:b8:2a:ad:8a:e4:c7:55:
ab:8a:94:6f:aa:b3:36:34:a8:36:73:3c:c8:b0:79:
b6:66:8c:02:af:5e:29:d5:bc:27:a7:7e:ad:2e:72:
d6:99:31:5a:7f:99:08:33:f0:fd:54:63:f0:4b:3a:
19:41:da:4e:89:66:51:81:05:19:11:82:f7:c5:1b:
91:85:d6:15:3a:dc:e0:44:4b:b2:78:b1:fd:f2:16:
2e:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:B9:0D:06:3E:D6:2A:46:3D:39:44:CF:0C:DD:CD:E1:CC:D1:3F:A5
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/urkNBj7WKkY9OUTPDN3N4czRP6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.172.0/24
193.239.196.0/24
Signature Algorithm: sha256WithRSAEncryption
82:a2:6b:f0:09:24:f6:ff:47:58:a9:62:7d:a6:3f:1b:44:5f:
ff:39:bb:ad:ae:0e:44:c3:ba:21:30:21:a9:6f:f1:1a:dd:b1:
c3:a0:75:70:e0:b1:de:15:49:48:5b:b9:f4:09:ab:b8:fa:60:
4e:f7:92:6b:21:3e:12:a7:6e:c5:eb:73:60:5b:2e:43:0e:ee:
13:45:ec:ce:e1:80:cb:ee:06:f2:a4:18:ae:f5:1d:f1:1e:79:
be:68:30:6d:54:6a:dd:5b:5a:ac:11:ad:59:22:a6:e5:fc:cd:
5e:1c:81:20:ef:b9:2a:37:7a:ae:7c:e4:39:16:dc:69:be:3e:
24:1f:f8:1d:5d:4f:e4:67:bb:c3:c0:8c:84:83:c7:ba:2e:4d:
f9:55:75:29:2d:75:64:3f:89:f0:2d:a1:28:4e:62:a8:3b:54:
93:99:78:d1:86:c4:92:d9:d9:67:a9:bb:98:3f:da:96:73:6a:
0a:c0:a0:c5:7d:47:94:91:ce:92:65:f8:a0:e3:d5:98:cc:74:
6e:91:60:13:d5:73:e1:93:49:73:c1:93:38:f4:bc:15:3e:46:
fe:df:54:ca:47:75:ce:67:99:6c:90:ab:25:ec:35:dd:93:38:
d6:5b:99:25:94:7b:49:49:9c:62:1e:f1:78:bc:4e:95:2e:75:
8e:0e:f0:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 15 07:27:39 2024 by rpki-client on console-fra.rpki-client.org