Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/xusCM8pN-sYuzbV1bD05_rdFUoU.roa
File: xusCM8pN-sYuzbV1bD05_rdFUoU.roa (raw, json)
Hash identifier: DiATtLoWNnf9XAiBwLksbx7+VFTcWrlSd3bmSu0ImNs=
Subject key identifier: C6:EB:02:33:CA:4D:FA:C6:2E:CD:B5:75:6C:3D:39:FE:B7:45:52:85
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 0185972F056A904900E0DE13AA0DC23AAE04
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/xusCM8pN-sYuzbV1bD05_rdFUoU.roa
Signing time: Mon 09 Jan 2023 15:38:39 +0000
ROA not before: Mon 09 Jan 2023 15:38:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396998
IP address blocks: 95.214.180.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:97:2f:05:6a:90:49:00:e0:de:13:aa:0d:c2:3a:ae:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Jan 9 15:38:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c6eb0233ca4dfac62ecdb5756c3d39feb7455285
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:5d:d9:7f:9a:99:e3:7d:6c:eb:4d:f5:b3:a8:
f3:27:87:0d:17:83:d9:76:30:47:aa:d9:b2:e2:f3:
6a:c9:61:7d:16:d7:01:91:ae:4e:34:b7:d1:ea:a7:
1b:07:e6:81:87:1c:ed:67:27:54:e4:27:97:5f:b6:
7f:ec:5f:27:93:7f:86:33:7c:88:41:c5:93:d6:e0:
2a:ea:8e:84:cc:c1:9f:5b:66:4d:dc:2d:e2:25:ef:
e9:79:08:f1:bc:bb:d2:94:68:fb:d9:f6:a4:32:c3:
df:5d:62:c3:1d:18:32:75:f4:c4:54:3b:93:45:0e:
25:e0:3d:65:b8:7b:55:ff:01:4b:71:d0:18:d0:55:
0c:84:c4:9b:9e:35:67:0e:ee:1e:98:83:10:19:a7:
4e:24:b2:a0:84:e1:63:68:da:42:12:64:0a:19:a3:
05:ab:45:3f:d7:84:59:80:79:84:96:1a:bb:40:ef:
f7:d9:71:90:f3:11:35:61:ff:c4:dd:0a:27:db:34:
df:09:7d:b6:d7:cb:c4:7d:37:c9:de:01:3c:06:3a:
a2:3f:2b:9b:26:09:48:8b:84:41:7e:a5:09:db:ee:
ae:dd:63:7b:7c:d2:80:c2:fe:89:ac:e9:3a:08:57:
ca:37:d9:5b:18:a8:38:00:d9:07:f7:9f:83:fe:0d:
7f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:EB:02:33:CA:4D:FA:C6:2E:CD:B5:75:6C:3D:39:FE:B7:45:52:85
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/xusCM8pN-sYuzbV1bD05_rdFUoU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.180.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:c9:dd:e6:50:39:ab:3b:36:d1:8a:c0:db:9b:bf:01:76:e0:
57:ec:b9:b8:f7:3a:76:78:1e:c4:03:d7:88:dd:2f:c6:32:3b:
69:4a:27:99:50:a0:09:18:1f:8f:f8:84:64:3e:a8:8f:ca:25:
42:95:3b:0c:0c:df:f2:35:f2:24:f3:39:4b:36:20:13:10:d4:
63:3a:1f:b9:97:13:9d:a4:45:8e:22:03:cb:13:16:8e:13:77:
52:54:46:12:49:a5:39:ea:4b:4b:c9:74:26:c6:88:35:b5:08:
57:5a:87:e6:7c:a6:20:9d:11:f9:98:8b:84:ae:12:e4:d8:b3:
cb:c1:70:c3:fb:32:ce:d0:d9:39:a6:b5:e8:c2:cf:77:85:58:
93:54:81:ae:19:62:8e:f8:78:ec:59:e0:05:49:a6:5a:28:32:
9f:a4:4a:75:d5:e9:85:46:ef:a6:b9:78:34:f4:ee:71:2e:80:
ea:71:1f:77:3a:41:17:52:fb:e0:b4:49:6b:a4:94:e1:a3:8d:
db:10:a1:d9:92:d4:e9:bc:fe:37:b6:20:07:3b:00:e4:c4:60:
d5:2c:fd:bf:65:bb:d5:af:6e:0a:d0:e3:4c:b8:1b:40:04:65:
a4:71:ef:f0:11:86:28:90:28:cf:77:6f:aa:ef:1c:1e:15:d3:
5a:a3:50:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:27 2023 by rpki-client on console-fra.rpki-client.org