Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/JIJbXSqOnk_FCv3ImwtODcNf3gY.roa
File: JIJbXSqOnk_FCv3ImwtODcNf3gY.roa (raw, json)
Hash identifier: awA0MUG4JD6Hr7LnvlI8icFivtjf+u98SNLdsDsKz1o=
Subject key identifier: 24:82:5B:5D:2A:8E:9E:4F:C5:0A:FD:C8:9B:0B:4E:0D:C3:5F:DE:06
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 018CC2DB3BE236FC90D5F917680C2301A726
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/JIJbXSqOnk_FCv3ImwtODcNf3gY.roa
Signing time: Mon 01 Jan 2024 02:29:56 +0000
ROA not before: Mon 01 Jan 2024 02:29:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209896
IP address blocks: 95.214.152.0/22 maxlen: 22
45.86.20.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 17 Apr 2024 09:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:3b:e2:36:fc:90:d5:f9:17:68:0c:23:01:a7:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Jan 1 02:29:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=24825b5d2a8e9e4fc50afdc89b0b4e0dc35fde06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ee:eb:43:f9:f4:1f:21:2d:6a:97:36:29:2b:
be:de:d4:9b:46:9a:59:c2:9f:ae:99:81:59:c0:b5:
65:60:09:4c:1d:9b:f8:eb:32:61:b5:81:6c:e4:0d:
40:5f:0a:4c:fa:98:ad:bb:9c:a4:70:1b:7b:f6:65:
f9:10:42:a6:99:35:c6:73:c4:5e:57:94:10:6f:b8:
13:a4:da:5b:dd:27:c1:1b:e7:5e:e3:42:c9:22:dd:
56:12:44:ca:99:4e:7e:b2:1c:d3:70:71:33:d0:ae:
e0:d7:34:d1:2f:03:96:25:9f:c7:0f:44:32:19:47:
57:52:3a:c6:21:fa:f9:04:e5:db:d4:92:69:41:1f:
9d:96:11:3b:d8:2f:fd:b4:91:33:39:89:98:58:ae:
79:81:37:2d:6f:12:66:06:25:2c:24:4f:dd:08:0e:
87:f0:03:b7:69:0d:16:14:f2:6e:63:d7:65:65:d8:
43:47:3c:31:a8:c2:21:c7:96:2b:c5:e6:78:9e:3d:
67:c7:b6:11:fd:ce:94:c9:60:42:7a:86:9d:c8:5d:
0c:05:81:40:90:87:70:05:21:82:d3:06:e8:2d:28:
67:cc:17:ed:85:00:4a:34:56:cd:f6:f6:3e:cb:33:
b2:74:d6:ab:14:06:3e:62:97:e0:0c:82:12:7a:2f:
06:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:82:5B:5D:2A:8E:9E:4F:C5:0A:FD:C8:9B:0B:4E:0D:C3:5F:DE:06
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/JIJbXSqOnk_FCv3ImwtODcNf3gY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.20.0/22
95.214.152.0/22
Signature Algorithm: sha256WithRSAEncryption
45:93:7e:ef:c6:31:47:f6:52:42:e1:98:d7:16:9b:d6:76:4f:
68:28:04:f1:19:85:cf:9b:c0:b5:c4:77:ba:8a:e7:af:33:d4:
0b:e7:99:a5:79:67:bd:07:e8:8f:18:c1:91:ec:55:06:16:c5:
03:d4:6f:77:e6:51:f1:a8:a5:07:9d:69:37:94:20:a5:35:75:
23:02:32:ae:c0:12:3e:4b:ef:46:5f:e6:0e:e5:4d:eb:89:90:
6f:a7:df:e2:dd:aa:0e:7a:6a:1f:a7:db:b4:27:a7:46:3d:a7:
ea:f5:e2:e6:2f:9e:19:af:3e:31:7d:93:87:bd:fb:67:f1:bf:
d5:9b:97:de:43:b0:07:49:42:45:af:20:9f:43:e8:0b:8d:a9:
73:91:a6:3c:d5:a9:ce:04:d4:5f:a0:65:78:04:9f:f7:db:54:
d7:f4:22:4b:cf:9e:77:1c:61:6a:75:62:e0:61:50:9e:bb:9a:
f6:09:f9:96:f3:c5:3f:97:9d:a3:87:eb:b8:7a:93:30:45:91:
be:09:94:18:3d:a1:47:c6:e4:ba:57:ec:9a:5c:21:b2:13:7a:
25:15:d0:b3:d1:42:41:ac:dc:81:92:60:f1:1b:85:31:5b:a0:
b1:31:0f:2e:ff:f7:7f:9c:7e:cc:ad:45:20:58:e8:9a:92:5c:
a5:03:54:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 17 10:56:26 2024 by rpki-client on console-fra.rpki-client.org