Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/rZhBmAL2FIJWdjG6QAlI4aZW3cs.roa
File: rZhBmAL2FIJWdjG6QAlI4aZW3cs.roa (raw, json)
Hash identifier: 4SNiWHu3NqN42ovK8H3kAnRtPNSAXSsdPqfC4DQxZsA=
Subject key identifier: AD:98:41:98:02:F6:14:82:56:76:31:BA:40:09:48:E1:A6:56:DD:CB
Certificate issuer: /CN=8844fc4ae106499e0575ff3ca1556dbc0d9b4651
Certificate serial: 0188381ED4DCEAE5B8F1958B2EDF00910C4F
Authority key identifier: 88:44:FC:4A:E1:06:49:9E:05:75:FF:3C:A1:55:6D:BC:0D:9B:46:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iET8SuEGSZ4Fdf88oVVtvA2bRlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/rZhBmAL2FIJWdjG6QAlI4aZW3cs.roa
Signing time: Sat 20 May 2023 07:45:24 +0000
ROA not before: Sat 20 May 2023 07:45:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59441
IP address blocks: 95.215.173.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:38:1e:d4:dc:ea:e5:b8:f1:95:8b:2e:df:00:91:0c:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8844fc4ae106499e0575ff3ca1556dbc0d9b4651
Validity
Not Before: May 20 07:45:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ad98419802f61482567631ba400948e1a656ddcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:01:7f:c3:99:24:1d:3c:59:b7:e5:89:49:67:
68:88:14:00:82:96:69:57:38:e6:02:1d:e9:cf:fb:
07:61:ad:31:eb:3c:18:9c:4e:7d:85:32:61:38:1b:
db:98:3a:da:8d:85:61:17:3c:0a:ac:cd:a7:34:ca:
72:c8:56:9d:34:82:6f:9c:02:56:da:19:11:ea:dd:
f7:50:36:13:d4:2c:54:85:0b:03:43:b9:3a:1d:6c:
08:de:c4:54:e5:f1:1e:b8:db:e8:e1:3f:a7:48:8e:
4a:0b:76:60:55:13:0e:70:dc:1d:c1:b9:85:e8:79:
98:dd:fc:b2:89:e5:51:aa:ed:5b:52:ed:42:e2:e7:
59:62:92:2b:3a:d1:62:0f:aa:c7:78:5c:e7:81:28:
58:a2:eb:ec:63:69:09:3e:e6:23:57:3f:ee:dc:db:
5e:a4:5e:15:b2:2e:02:3f:1e:dd:bf:1b:17:c4:2d:
04:fa:96:48:b7:7b:0b:89:9f:e7:38:3d:90:47:6a:
86:96:09:93:59:2f:8b:da:8c:c1:ec:08:7e:52:2c:
ad:dc:49:92:9a:36:a3:7e:6d:6d:e4:cb:35:a8:66:
55:f8:01:8f:5a:1e:4e:a0:3c:7a:95:2e:d0:f2:34:
ba:b1:81:29:70:2a:9e:f0:2b:af:ea:3c:24:b7:01:
36:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:98:41:98:02:F6:14:82:56:76:31:BA:40:09:48:E1:A6:56:DD:CB
X509v3 Authority Key Identifier:
keyid:88:44:FC:4A:E1:06:49:9E:05:75:FF:3C:A1:55:6D:BC:0D:9B:46:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iET8SuEGSZ4Fdf88oVVtvA2bRlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/rZhBmAL2FIJWdjG6QAlI4aZW3cs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.215.173.0/24
Signature Algorithm: sha256WithRSAEncryption
09:ac:e8:f5:be:ee:04:b9:b6:80:be:ff:46:93:00:35:83:96:
df:c2:e5:a9:6b:60:e4:cb:8f:08:5b:5b:c8:ea:73:e2:8a:30:
cf:5e:c3:d3:f2:bb:bd:e8:a9:88:c7:88:c9:bb:ff:be:f6:91:
01:51:e9:47:f4:0d:cc:40:9c:50:d2:80:82:eb:ef:44:57:4d:
3a:e5:31:47:1b:00:dd:bc:1a:38:b4:3f:fa:89:a8:40:48:ad:
ef:80:4c:44:fb:df:5d:5c:37:4e:94:08:dc:03:85:4f:e7:52:
5b:9f:11:f5:27:7c:ef:95:ce:62:dd:13:21:7e:88:26:17:01:
78:b5:b2:bd:71:4c:34:5e:58:09:3a:6d:9d:d2:03:c0:12:6f:
8f:92:79:e8:00:7d:8b:1d:ee:34:e2:d5:fa:d7:80:73:3f:a8:
61:6b:10:ad:3b:a8:16:46:c2:78:0d:4f:e0:29:a4:d2:bb:a3:
70:d5:8d:dc:6e:6f:b3:4d:8d:c0:57:1f:24:79:ed:c5:70:59:
18:19:10:47:4c:9a:33:37:4b:54:2a:74:63:f3:06:3c:75:c2:
c9:96:60:2a:5f:1b:08:04:21:1b:81:46:c8:0d:4e:97:e7:a3:
62:87:ce:82:f8:11:0d:dd:ba:da:81:6b:c7:21:1a:fc:71:7e:
d1:af:7d:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:45 2024 by rpki-client on console-fra.rpki-client.org