Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/720394-cf71-40a3-a538-ed01ed7c129b/1/fHtMDjySwJMjhATKKxOJ3n1sxcw.roa
File: fHtMDjySwJMjhATKKxOJ3n1sxcw.roa (raw, json)
Hash identifier: 7TONo+NAC0nD66bfO3wX6ItkZWrCx+kI8jA/klnjk3Q=
Subject key identifier: 7C:7B:4C:0E:3C:92:C0:93:23:84:04:CA:2B:13:89:DE:7D:6C:C5:CC
Certificate issuer: /CN=c255989d579c4b5eade852f97f62e9bf2cfbde3c
Certificate serial: 01857155419B31CC3B86872746204573526A
Authority key identifier: C2:55:98:9D:57:9C:4B:5E:AD:E8:52:F9:7F:62:E9:BF:2C:FB:DE:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wlWYnVecS16t6FL5f2Lpvyz73jw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/720394-cf71-40a3-a538-ed01ed7c129b/1/fHtMDjySwJMjhATKKxOJ3n1sxcw.roa
Signing time: Mon 02 Jan 2023 07:14:50 +0000
ROA not before: Mon 02 Jan 2023 07:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 188.95.141.0/24 maxlen: 24
188.95.140.0/24 maxlen: 24
188.95.142.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:55:41:9b:31:cc:3b:86:87:27:46:20:45:73:52:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c255989d579c4b5eade852f97f62e9bf2cfbde3c
Validity
Not Before: Jan 2 07:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7c7b4c0e3c92c093238404ca2b1389de7d6cc5cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:2f:5d:43:2d:56:d7:d8:65:2e:68:b7:d0:c0:
d6:a0:8f:46:b8:8b:46:dd:e8:f6:f8:41:20:e7:40:
3f:f5:11:92:6f:63:b7:90:10:95:c0:ac:ee:4b:cb:
f4:15:d4:62:46:fc:ee:8f:f0:c4:b5:09:b2:31:14:
27:b3:8f:e9:d2:86:81:f5:84:bd:85:13:71:f9:b7:
c8:d3:18:3b:61:86:0a:da:d0:c4:cc:f2:8c:bc:89:
f1:72:3e:0d:dc:83:0d:7a:82:5d:73:22:15:da:1e:
80:5d:b0:8c:76:f9:30:2c:c8:c0:27:db:be:11:3b:
4a:3b:e2:95:94:79:b6:5f:12:9c:44:b6:88:65:15:
08:49:70:ac:b8:01:6f:17:bb:ef:c1:f3:22:ae:25:
bd:20:58:28:5c:01:23:e0:5f:41:bf:79:fd:67:6a:
65:76:3c:2c:a9:04:f4:07:2a:4d:82:e8:a1:58:c6:
c4:d3:42:32:65:d6:c3:b7:04:b9:70:23:d7:cc:ef:
67:36:32:04:37:69:7a:4e:b0:0e:e1:b8:4e:8f:6a:
37:46:12:7d:b8:cf:f8:15:03:5b:d9:41:90:90:3f:
47:1b:78:de:9f:0e:97:87:27:18:bd:a1:f3:68:06:
27:d9:f7:dc:3e:e5:6c:07:bf:74:1e:75:ff:d6:e9:
9a:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:7B:4C:0E:3C:92:C0:93:23:84:04:CA:2B:13:89:DE:7D:6C:C5:CC
X509v3 Authority Key Identifier:
keyid:C2:55:98:9D:57:9C:4B:5E:AD:E8:52:F9:7F:62:E9:BF:2C:FB:DE:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wlWYnVecS16t6FL5f2Lpvyz73jw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/720394-cf71-40a3-a538-ed01ed7c129b/1/fHtMDjySwJMjhATKKxOJ3n1sxcw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/720394-cf71-40a3-a538-ed01ed7c129b/1/wlWYnVecS16t6FL5f2Lpvyz73jw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.95.140.0-188.95.142.255
Signature Algorithm: sha256WithRSAEncryption
62:7d:56:fd:52:99:2b:77:82:ff:c9:9c:45:51:e1:5c:6f:35:
21:bf:ce:3d:9d:c8:21:bb:6c:0c:0c:1c:80:72:26:3e:b9:43:
72:2c:2b:14:97:af:c4:2e:7c:4f:37:37:c0:b8:dd:d7:ed:e0:
18:09:0a:56:f2:3b:93:06:fc:7b:ad:dd:5c:63:a7:55:f0:12:
84:98:9a:0c:9c:ed:dd:c6:8e:60:3e:e1:ac:a0:16:75:c5:13:
92:a2:61:a2:07:18:6b:58:bb:3c:61:1a:96:61:de:90:c8:83:
cd:e1:41:21:38:12:9a:22:11:f7:c7:35:bc:87:a0:72:b2:76:
90:48:77:9b:dd:3b:c2:e7:13:50:53:6c:c6:c7:f5:7e:d1:27:
83:a5:5c:1e:2c:83:4d:b3:a7:51:01:ed:52:97:ea:5b:e9:d3:
14:d2:b2:c7:83:29:34:d8:01:0d:84:85:c8:1f:f0:2d:31:4d:
40:68:d3:d0:93:a0:84:61:ff:b7:0c:83:8c:a3:56:e9:0e:2c:
f6:e9:85:cf:8f:e3:84:b7:32:b1:db:10:9d:27:5a:39:b8:be:
6e:b0:0f:44:fe:95:e3:8c:22:cd:ed:c1:df:b8:10:fa:86:de:
9d:d6:f1:4f:8c:b5:a4:82:5b:db:a7:55:5e:7f:f9:d7:ce:ec:
a5:b9:83:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:11 2024 by rpki-client on console-fra.rpki-client.org