Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/47ada5-183f-446d-b705-023f2be5daa4/1/L4fWhNEQ49EHI0ZzWKpUvwv8iRs.roa
File: L4fWhNEQ49EHI0ZzWKpUvwv8iRs.roa (raw, json)
Hash identifier: qmh9wRxHfBdfFTwhQ5hiC9N9FL6SYOHKMF7460Odqoc=
Subject key identifier: 2F:87:D6:84:D1:10:E3:D1:07:23:46:73:58:AA:54:BF:0B:FC:89:1B
Certificate issuer: /CN=fdf4b621eeb739d24fc92ad78d2776da7b870027
Certificate serial: 0185701511F0992186A95267B39D1935DE32
Authority key identifier: FD:F4:B6:21:EE:B7:39:D2:4F:C9:2A:D7:8D:27:76:DA:7B:87:00:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_fS2Ie63OdJPySrXjSd22nuHACc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/47ada5-183f-446d-b705-023f2be5daa4/1/L4fWhNEQ49EHI0ZzWKpUvwv8iRs.roa
Signing time: Mon 02 Jan 2023 01:25:07 +0000
ROA not before: Mon 02 Jan 2023 01:25:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49999
IP address blocks: 188.95.70.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:11:f0:99:21:86:a9:52:67:b3:9d:19:35:de:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fdf4b621eeb739d24fc92ad78d2776da7b870027
Validity
Not Before: Jan 2 01:25:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2f87d684d110e3d10723467358aa54bf0bfc891b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:4b:9f:d2:76:13:71:f2:29:34:86:e0:f6:94:
07:7e:bf:07:7c:4b:39:ad:7b:43:6a:62:29:5b:b4:
ff:70:0e:14:8b:f5:f8:06:54:f4:fa:68:4a:07:10:
1f:6d:4c:e1:d8:a7:61:84:00:9f:e5:14:1a:1d:3a:
46:4e:18:1c:de:fe:e0:d8:23:87:e9:96:d5:40:04:
09:e0:43:0e:f0:9c:c7:08:a2:41:62:26:21:55:84:
aa:bb:b9:dc:e9:f9:d2:c6:79:61:88:29:c8:33:5d:
49:15:7f:66:22:f2:35:a8:a7:05:82:d1:eb:a3:19:
1a:5d:8d:45:b4:0d:51:8f:63:f9:b1:34:d3:00:52:
36:d6:94:6d:ca:52:a8:d1:f6:d3:a7:38:de:24:d8:
34:bd:c6:4f:32:2f:3b:0b:29:96:3c:c2:15:8b:9c:
6a:b4:57:b6:75:0a:7f:b1:fd:91:36:7b:1f:08:b7:
d8:b7:c0:21:5c:f8:a1:4b:04:42:d3:17:d6:4c:35:
61:b9:02:17:c8:1c:ba:00:86:1c:22:c7:76:5e:74:
eb:aa:1b:2f:11:68:ff:8d:3a:f8:af:a6:77:93:b6:
aa:a5:1d:d3:75:5f:b3:c5:7a:22:45:23:4c:44:0f:
22:bb:eb:f6:dc:f6:37:8e:9b:e9:25:0d:da:4a:ee:
b8:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:87:D6:84:D1:10:E3:D1:07:23:46:73:58:AA:54:BF:0B:FC:89:1B
X509v3 Authority Key Identifier:
keyid:FD:F4:B6:21:EE:B7:39:D2:4F:C9:2A:D7:8D:27:76:DA:7B:87:00:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_fS2Ie63OdJPySrXjSd22nuHACc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/47ada5-183f-446d-b705-023f2be5daa4/1/L4fWhNEQ49EHI0ZzWKpUvwv8iRs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/47ada5-183f-446d-b705-023f2be5daa4/1/_fS2Ie63OdJPySrXjSd22nuHACc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.95.70.0/24
Signature Algorithm: sha256WithRSAEncryption
94:54:ea:82:31:f4:cd:c6:39:bb:27:09:23:5c:46:90:58:c7:
b3:e5:f7:5e:13:45:7a:be:65:5c:98:d4:1a:4e:f0:ae:6a:20:
db:21:21:b4:ee:1d:e8:fd:7f:aa:bd:f2:32:de:43:89:4c:97:
7d:57:b8:c6:ba:92:bb:8d:72:b5:5a:37:1d:df:48:9a:e9:06:
e6:bf:db:02:86:e9:78:7c:42:90:36:e8:fa:67:4d:86:91:e1:
de:47:ec:5c:0b:9c:ae:e2:1b:90:f9:80:e9:17:3a:00:2f:3f:
d2:71:49:a9:dd:b8:96:37:a5:95:70:c3:12:09:c4:eb:59:ce:
ee:fd:0b:4a:99:f7:f8:1c:02:72:d5:54:f4:a2:ad:fe:9e:37:
b8:93:a2:f8:a5:b6:51:27:a7:75:2f:6c:04:57:d0:e0:35:ca:
06:c9:e6:9e:15:b7:b0:01:42:6a:ee:ed:be:91:46:f8:2d:fc:
c8:e2:41:b4:ef:6f:b2:1a:54:07:f8:6c:99:82:e6:9c:65:bc:
85:e6:e7:2d:6c:63:e7:31:39:bd:59:6a:f9:5f:71:e5:6d:78:
8e:53:2e:e9:b2:94:4a:ce:a8:c7:f0:e9:f6:d2:3f:16:9b:dd:
2b:43:2c:df:55:18:bb:60:39:aa:11:b8:a7:d4:54:81:b3:73:
be:cf:c1:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:37 2023 by rpki-client on console-fra.rpki-client.org