Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/ban_MDjwwoxeAokdahvTnIPAGaA.roa
File: ban_MDjwwoxeAokdahvTnIPAGaA.roa (raw, json)
Hash identifier: ZxT74OAK5gVuPvEuA99ATY8oFjpgxVOJwAVS3/F80tQ=
Subject key identifier: 6D:A9:FF:30:38:F0:C2:8C:5E:02:89:1D:6A:1B:D3:9C:83:C0:19:A0
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 01856F42AE49CE5DBA3E1055FB7D5450CF86
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/ban_MDjwwoxeAokdahvTnIPAGaA.roa
Signing time: Sun 01 Jan 2023 21:35:19 +0000
ROA not before: Sun 01 Jan 2023 21:35:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212496
IP address blocks: 95.164.91.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:ae:49:ce:5d:ba:3e:10:55:fb:7d:54:50:cf:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Jan 1 21:35:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6da9ff3038f0c28c5e02891d6a1bd39c83c019a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:1f:52:66:dc:d6:41:4b:a7:d2:b3:9a:2e:f8:
1a:ed:e6:51:ff:11:40:d7:09:75:fe:0a:36:66:4f:
94:88:ae:e3:cd:85:72:b5:35:42:30:78:c2:b6:dd:
87:b7:bf:a3:d9:78:70:89:0f:0d:c1:a2:51:32:d9:
62:76:71:8e:0f:53:06:e9:8c:2a:60:36:74:03:cd:
0a:0d:8d:e7:de:ea:8e:d6:17:cf:ac:8a:a4:40:f1:
83:25:c7:d2:2f:8a:81:9b:1b:fb:40:14:fb:7a:37:
14:40:15:1f:e5:9d:98:f7:ea:59:79:6e:11:c6:ce:
be:c7:4b:67:14:10:2b:39:3f:5f:64:6d:4a:50:7a:
b6:eb:dc:37:1b:1e:5f:ab:b8:b6:21:20:13:02:22:
28:58:e0:cf:f5:b3:1c:5d:f7:b1:61:55:c9:f3:64:
ae:46:6b:2c:49:62:51:a6:64:b2:5a:05:a3:9a:d4:
4e:82:09:c0:ce:7e:e8:f0:93:70:8b:94:2b:34:95:
37:ef:b1:4b:37:13:1b:eb:9b:66:c1:46:ec:29:7d:
4f:50:94:6a:a9:23:67:64:27:8f:a6:54:c0:5b:a1:
ba:82:e0:09:38:14:89:71:f4:b7:d5:e9:cb:6f:db:
21:30:ab:ce:26:71:a6:f0:64:62:03:e8:f0:10:7f:
6d:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:A9:FF:30:38:F0:C2:8C:5E:02:89:1D:6A:1B:D3:9C:83:C0:19:A0
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/ban_MDjwwoxeAokdahvTnIPAGaA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.164.91.0/24
Signature Algorithm: sha256WithRSAEncryption
72:da:eb:b4:f1:70:9d:47:e7:56:83:f9:6b:eb:c4:ac:d8:d6:
80:73:d7:02:cc:89:74:d7:ef:41:7f:89:8c:e1:6a:a6:c4:3b:
d2:5c:f4:81:3f:bc:e2:06:83:d2:41:cc:aa:74:0f:ac:c7:f9:
db:47:59:8f:e3:ef:d4:09:99:84:5d:51:c8:b7:9d:7e:f7:54:
4e:c3:f9:5e:98:bd:b5:7d:9f:91:28:26:63:2c:7a:a4:33:31:
c4:3d:98:a2:cc:4a:b8:32:7c:5c:d0:21:ed:e3:07:c2:1d:99:
03:e4:34:d6:c0:75:6e:db:e3:20:f6:5f:ea:8b:2b:5a:a1:88:
f8:3d:6a:f7:12:e5:9a:6d:42:e5:33:54:a8:0e:78:e6:35:a0:
9a:de:1f:19:cd:9f:ea:e6:d1:12:30:08:6d:68:e2:7a:c6:5f:
dc:a0:aa:7e:a9:10:ae:a8:14:44:5a:51:e7:a4:ef:0f:80:4e:
eb:9b:81:c6:db:9c:ae:df:ea:7d:3a:6b:dd:be:1e:26:c4:c9:
29:d8:cb:43:03:19:cd:df:f7:01:66:0d:a5:cb:78:c7:a3:a6:
9b:db:c3:7e:4f:d8:b2:00:6a:09:5f:08:63:bc:b7:7d:47:5d:
29:ec:ba:b9:72:9a:83:68:51:6e:2a:24:a1:57:86:8d:a0:09:
1c:ab:8d:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:49 2024 by rpki-client on console-ams.rpki-client.org