Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/P7sV-t7O4IrO6s6Ae6I52yDvTCc.roa
File: P7sV-t7O4IrO6s6Ae6I52yDvTCc.roa (raw, json)
Hash identifier: m8AwN0k0tOUQ6MGG4fAiyKz1ZJpMxN3V0huK/fNr6dc=
Subject key identifier: 3F:BB:15:FA:DE:CE:E0:8A:CE:EA:CE:80:7B:A2:39:DB:20:EF:4C:27
Certificate issuer: /CN=3ad734cf90c773428806b968209515b914831a9d
Certificate serial: 018AD65E6D6DCE0322743DEE03E6E5045BBC
Authority key identifier: 3A:D7:34:CF:90:C7:73:42:88:06:B9:68:20:95:15:B9:14:83:1A:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Otc0z5DHc0KIBrloIJUVuRSDGp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/P7sV-t7O4IrO6s6Ae6I52yDvTCc.roa
Signing time: Wed 27 Sep 2023 11:20:27 +0000
ROA not before: Wed 27 Sep 2023 11:20:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 188.95.69.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d6:5e:6d:6d:ce:03:22:74:3d:ee:03:e6:e5:04:5b:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad734cf90c773428806b968209515b914831a9d
Validity
Not Before: Sep 27 11:20:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3fbb15fadecee08aceeace807ba239db20ef4c27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:e5:36:3b:98:d4:67:42:65:99:9e:df:fe:7e:
2e:c6:76:73:99:43:90:87:62:38:70:0f:c7:1b:7c:
1a:71:c4:d9:76:5c:e9:65:de:8b:ab:76:1c:e3:be:
6c:73:7d:00:50:9a:94:87:62:25:5a:1e:e8:ad:7e:
3e:aa:c4:07:4d:22:0b:95:02:93:18:62:e8:f0:86:
34:24:1e:4f:50:05:5f:41:58:8f:c1:02:a6:f7:40:
0e:a2:09:f8:62:1d:aa:3e:2b:aa:b3:06:d9:38:a8:
fc:a1:d4:c7:da:f5:bd:a7:a0:7d:c4:68:64:a7:49:
64:dc:d4:90:b7:b5:eb:ee:eb:c4:93:6b:94:55:f8:
24:6f:09:c0:21:0e:58:97:b4:e8:2c:18:fb:06:2f:
c3:44:8c:49:27:bc:7e:2d:28:98:45:26:79:ab:17:
2a:79:cf:4d:28:d6:e3:29:1a:2c:7a:8d:51:c7:ff:
b6:68:0d:bf:f6:b8:f4:51:64:60:27:5f:f6:68:97:
59:7d:0f:1f:e4:49:af:62:60:5c:50:5e:37:fe:fb:
d7:d0:f5:e5:74:2d:cc:51:e8:f1:7b:20:c8:ce:9f:
4c:8c:32:07:60:61:42:e9:1a:1e:5e:63:5c:47:df:
49:99:cb:4c:51:58:af:4b:92:e4:35:62:85:16:f7:
14:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:BB:15:FA:DE:CE:E0:8A:CE:EA:CE:80:7B:A2:39:DB:20:EF:4C:27
X509v3 Authority Key Identifier:
keyid:3A:D7:34:CF:90:C7:73:42:88:06:B9:68:20:95:15:B9:14:83:1A:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Otc0z5DHc0KIBrloIJUVuRSDGp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/P7sV-t7O4IrO6s6Ae6I52yDvTCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/Otc0z5DHc0KIBrloIJUVuRSDGp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.95.69.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:e9:78:7b:fe:4b:d0:88:38:82:91:09:4f:c2:3b:af:3b:ea:
2f:47:84:e5:23:37:17:11:6f:30:65:9d:20:2b:52:b0:ae:81:
f8:e8:db:2f:4d:08:2d:12:86:eb:b6:2b:29:dd:3f:da:6a:a4:
b4:13:6d:7b:21:d8:56:a7:1e:6e:90:a5:3b:e8:6d:7e:d0:b2:
e9:b1:41:cf:54:02:ca:25:0b:bd:73:48:ba:7d:37:36:af:a0:
2b:1c:19:c2:85:37:57:06:4a:7d:5f:45:8b:60:b4:66:90:ff:
de:c4:bc:31:57:86:db:af:a4:ae:2d:8b:c7:00:27:35:9b:72:
7d:e1:26:c2:a9:89:50:b4:a9:92:c3:a5:a0:89:90:bc:8c:d1:
9d:78:15:b1:db:1f:c4:f3:dc:6e:fc:c4:ac:18:89:83:c7:22:
cc:b5:80:38:2c:16:75:c3:32:7f:4b:d8:e7:e2:a5:f7:cd:89:
84:71:07:c7:7c:48:26:34:6c:d0:32:9b:f5:18:ce:5a:cb:25:
a6:8b:2e:c9:d9:39:69:1a:66:84:8e:35:ae:b9:0d:83:d1:78:
df:8d:e1:cb:80:3b:57:ce:3e:18:a2:35:9a:4c:06:14:ff:f2:
51:e9:87:84:98:82:12:46:bb:4b:66:4d:7f:cc:95:56:fe:db:
1a:1c:7d:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:19 2024 by rpki-client on console-ams.rpki-client.org