Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/de3041-9536-492e-a9cd-f2ae7bc7ecc5/1/i6y1kR7jW4ZVL-2ZWaYVam7MXiU.roa
File: i6y1kR7jW4ZVL-2ZWaYVam7MXiU.roa (raw, json)
Hash identifier: 4YFcWmzX3f617Xs/m82mzvLDppzftcp+Ip2PocJxeqQ=
Subject key identifier: 8B:AC:B5:91:1E:E3:5B:86:55:2F:ED:99:59:A6:15:6A:6E:CC:5E:25
Certificate issuer: /CN=2909fffcd81a66bc98b629d4c0579247645f0fe4
Certificate serial: 01856FD52BEA3DA946500B73B081D5C7B2A4
Authority key identifier: 29:09:FF:FC:D8:1A:66:BC:98:B6:29:D4:C0:57:92:47:64:5F:0F:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQn__NgaZryYtinUwFeSR2RfD-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/de3041-9536-492e-a9cd-f2ae7bc7ecc5/1/i6y1kR7jW4ZVL-2ZWaYVam7MXiU.roa
Signing time: Mon 02 Jan 2023 00:15:19 +0000
ROA not before: Mon 02 Jan 2023 00:15:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205631
IP address blocks: 185.95.30.0/24 maxlen: 24
2a05:1500:400::/40 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:2b:ea:3d:a9:46:50:0b:73:b0:81:d5:c7:b2:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2909fffcd81a66bc98b629d4c0579247645f0fe4
Validity
Not Before: Jan 2 00:15:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8bacb5911ee35b86552fed9959a6156a6ecc5e25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:0d:42:1a:38:3d:66:e8:89:39:9c:9a:f4:9d:
3c:fb:de:d9:a1:1f:6e:10:9a:97:e1:31:b6:2d:4f:
b2:58:ba:2f:48:a8:00:6e:57:38:d8:82:83:00:fc:
d6:35:c2:07:3f:4d:1f:3b:7a:74:4d:8d:73:2b:37:
a8:94:7e:d7:4b:f4:4b:8f:eb:ee:21:29:da:f1:4d:
d9:a1:20:c2:4f:ce:db:4a:dd:16:bd:a8:f5:e6:e1:
6f:55:e6:f1:8d:01:e4:79:dd:06:f3:3c:b8:3e:f3:
fb:b8:f2:84:c4:27:37:8c:18:8a:9e:64:83:82:66:
95:63:5b:57:f0:e2:93:fd:b0:98:5c:27:0e:8f:08:
f5:76:49:f4:e7:db:4c:92:82:20:ca:49:0a:6c:a3:
71:f5:9a:5c:b5:a2:58:f3:d2:74:03:08:e8:3f:f8:
2e:67:11:d1:10:70:72:21:c0:b7:d1:8f:ee:24:db:
b4:c9:5e:2d:4b:99:58:ff:1e:27:ab:4e:63:04:ed:
24:52:7a:8a:06:0c:4c:78:ea:d1:de:ba:57:6d:da:
24:67:e7:92:62:39:db:d6:88:a6:cf:88:1e:2f:0c:
96:29:d5:7d:21:1d:e6:d8:1a:07:21:08:a4:c6:d0:
80:a9:a6:bc:a5:ed:04:0a:6d:87:fb:c2:59:26:54:
76:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:AC:B5:91:1E:E3:5B:86:55:2F:ED:99:59:A6:15:6A:6E:CC:5E:25
X509v3 Authority Key Identifier:
keyid:29:09:FF:FC:D8:1A:66:BC:98:B6:29:D4:C0:57:92:47:64:5F:0F:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQn__NgaZryYtinUwFeSR2RfD-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/de3041-9536-492e-a9cd-f2ae7bc7ecc5/1/i6y1kR7jW4ZVL-2ZWaYVam7MXiU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/de3041-9536-492e-a9cd-f2ae7bc7ecc5/1/KQn__NgaZryYtinUwFeSR2RfD-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.95.30.0/24
IPv6:
2a05:1500:400::/40
Signature Algorithm: sha256WithRSAEncryption
22:58:45:f2:24:4c:93:47:ca:13:2e:33:15:24:89:c0:9d:e8:
b6:75:a3:01:3b:04:a5:60:a8:db:30:49:bc:19:4f:cc:18:af:
4b:c9:9f:3d:65:47:8a:b6:b1:3f:81:0d:ad:b0:c8:cf:69:fc:
83:37:e6:0f:f1:c7:6e:ad:f7:d9:83:8b:71:55:14:20:a3:15:
9d:c0:79:27:64:68:e3:cf:44:cb:60:92:af:69:1f:e0:6a:42:
10:1b:ca:d7:a7:ec:5c:3a:27:ba:80:3b:54:b4:fb:3a:ad:0f:
83:9b:7f:f9:5a:37:02:7f:0b:07:c7:17:3d:e6:9b:7f:32:cc:
29:60:76:c4:e9:cb:13:af:56:27:68:2e:a6:f4:99:91:09:3b:
e2:ba:08:b7:b9:a3:0d:f3:a3:d5:52:08:cb:40:6d:1c:ae:6e:
2c:ed:4e:84:99:5e:95:f9:34:d9:dd:29:a6:d7:77:70:00:80:
03:6c:fa:5a:74:76:58:1a:92:d1:9b:68:c0:43:01:27:47:cf:
f0:8e:10:20:ea:aa:9b:23:61:4b:66:c4:31:df:18:41:d0:55:
de:50:7c:de:44:23:25:76:80:33:09:64:b5:cf:ef:e6:ac:f1:
26:a1:e1:6a:0e:52:f4:03:fa:c3:d9:59:28:f0:0a:57:a7:dc:
5c:e8:ad:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:15 2024 by rpki-client on console-fra.rpki-client.org