Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/1d3hIU086ptA2ZCwA1Y4QJP85oo.roa
File: 1d3hIU086ptA2ZCwA1Y4QJP85oo.roa (raw, json)
Hash identifier: 6UTc4ly3l1ZuQdHbqGTahCiK5qkTZp34vqE28n0580M=
Subject key identifier: D5:DD:E1:21:4D:3C:EA:9B:40:D9:90:B0:03:56:38:40:93:FC:E6:8A
Certificate issuer: /CN=8844fc4ae106499e0575ff3ca1556dbc0d9b4651
Certificate serial: 01856ECB7DAE470512669B2FD8813FF82757
Authority key identifier: 88:44:FC:4A:E1:06:49:9E:05:75:FF:3C:A1:55:6D:BC:0D:9B:46:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iET8SuEGSZ4Fdf88oVVtvA2bRlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/1d3hIU086ptA2ZCwA1Y4QJP85oo.roa
Signing time: Sun 01 Jan 2023 19:25:07 +0000
ROA not before: Sun 01 Jan 2023 19:25:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58224
IP address blocks: 95.215.173.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 20 May 2023 07:45:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:7d:ae:47:05:12:66:9b:2f:d8:81:3f:f8:27:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8844fc4ae106499e0575ff3ca1556dbc0d9b4651
Validity
Not Before: Jan 1 19:25:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d5dde1214d3cea9b40d990b00356384093fce68a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b8:8b:e4:e2:9f:e9:27:03:db:a3:28:61:96:
7b:90:2d:56:f1:e7:86:2f:b9:b6:49:20:ef:9b:0e:
9b:a9:4c:68:5c:ea:5c:c9:b7:86:cd:ef:dd:13:03:
3d:c6:ba:9d:ec:d7:d5:bd:7d:21:cc:42:b3:c1:cb:
72:7f:1e:e1:03:4d:6e:3c:86:ff:0a:ec:54:46:3a:
33:7e:09:71:4c:90:7c:9c:f4:a8:df:9f:b5:06:29:
4d:7e:5e:17:92:27:48:5e:af:46:a9:7c:7d:ec:c8:
64:cc:47:13:9c:42:6a:b8:3d:46:d5:5e:c5:52:f5:
46:09:63:77:71:a4:76:25:d5:9c:65:45:99:a5:21:
c0:00:63:ba:3d:fb:d2:4e:55:ea:4b:b6:96:2f:57:
5d:4f:64:08:9e:c1:98:70:20:4a:08:88:f6:ec:80:
7e:96:b8:fe:05:85:04:a1:2f:91:8c:eb:95:2d:9e:
aa:59:df:e4:31:d6:0c:ed:f9:64:d7:4c:6b:b3:42:
fb:30:55:18:e1:33:2d:06:b6:be:26:b4:4a:ed:1e:
c2:41:6e:1e:7e:45:b3:10:d9:83:0d:c7:48:e2:ce:
21:16:ce:58:ec:c2:99:bf:4f:ba:67:3e:94:04:33:
0a:40:43:8a:3c:ce:6f:67:d5:18:63:9d:05:59:13:
b5:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:DD:E1:21:4D:3C:EA:9B:40:D9:90:B0:03:56:38:40:93:FC:E6:8A
X509v3 Authority Key Identifier:
keyid:88:44:FC:4A:E1:06:49:9E:05:75:FF:3C:A1:55:6D:BC:0D:9B:46:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iET8SuEGSZ4Fdf88oVVtvA2bRlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/1d3hIU086ptA2ZCwA1Y4QJP85oo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.215.173.0/24
Signature Algorithm: sha256WithRSAEncryption
88:d2:60:41:8e:69:0a:61:f4:7f:73:a7:e9:c9:a8:1f:c0:d8:
80:86:75:4c:e6:da:fb:dd:d9:e3:63:3b:c9:78:7b:1f:a0:69:
1e:4c:9e:58:4f:78:ec:b8:82:7e:f8:db:ed:13:bc:a9:fd:d0:
db:ef:74:05:6c:bd:57:1d:85:50:a6:1b:54:48:ed:5b:de:ed:
8f:dd:89:e7:fb:e8:be:0d:6d:77:92:c9:bd:e0:d7:20:bb:b1:
07:6e:b5:3f:9e:31:dd:16:8a:e6:70:7a:e9:9c:40:57:0a:e9:
75:b9:c8:1f:b7:29:92:1e:7e:4e:7f:f4:94:ce:b7:3e:18:fa:
25:d7:0f:01:53:73:fc:09:a7:80:60:9d:75:d7:12:df:f1:b8:
6e:f2:b4:a0:5f:84:69:b7:02:05:61:18:d1:df:ba:5e:f9:26:
77:bd:cb:ef:5e:60:8e:d9:9e:19:73:ac:e7:b4:33:8e:bd:f4:
9c:72:46:39:54:60:6c:88:d7:86:7f:2a:1b:35:6e:98:74:53:
19:fc:22:e5:d1:69:b9:a9:58:fd:58:25:28:60:ed:cb:0f:40:
0d:0a:b1:35:58:3a:a8:d2:7c:98:e2:2b:e1:db:71:6e:88:81:
e2:24:2b:b8:9d:81:22:ca:2f:c7:d4:6c:6d:38:a9:c9:e2:83:
66:bf:c2:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:00 2024 by rpki-client on console-ams.rpki-client.org