Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/1-mN3Edqc2QKFg06lM4lVl1cSf2o.roa
File: 1-mN3Edqc2QKFg06lM4lVl1cSf2o.roa (raw, json)
Hash identifier: ITtxY5Bp9vdVgByjDSXENRA18dlF8yShnKDOgS9CxJI=
Subject key identifier: FA:63:77:11:DA:9C:D9:02:85:83:4E:A5:33:89:55:97:57:12:7F:6A
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0188778AE08E2C8DF4A38A58BC314EAAB2BE
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/1-mN3Edqc2QKFg06lM4lVl1cSf2o.roa
Signing time: Thu 01 Jun 2023 15:19:30 +0000
ROA not before: Thu 01 Jun 2023 15:19:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49529
IP address blocks: 95.46.146.0/23 maxlen: 24
31.148.198.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Jun 2023 08:36:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:77:8a:e0:8e:2c:8d:f4:a3:8a:58:bc:31:4e:aa:b2:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jun 1 15:19:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fa637711da9cd90285834ea53389559757127f6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:95:e6:f6:a9:20:1a:5b:e2:ec:50:d3:ac:9e:
b4:51:07:c7:f4:7f:3f:60:aa:bb:7f:d1:d8:fd:d0:
a7:e1:cf:fa:7e:00:eb:0d:d1:10:b7:34:11:93:4e:
34:b8:68:4e:16:82:1e:32:31:fd:2a:35:5b:b4:2d:
6e:5b:71:4b:50:f1:73:fc:20:6c:7c:8b:c6:c2:0d:
e4:f6:b6:a3:ab:71:06:f3:8d:f4:11:4d:dc:b9:e2:
9e:f0:6d:40:23:8a:42:60:07:7f:cc:62:22:08:0a:
03:9d:56:21:89:14:15:41:16:b6:aa:d9:9e:35:0f:
31:61:be:6d:d9:d5:4f:3c:77:4f:6e:08:2d:bb:04:
43:36:74:66:d2:c4:39:77:c1:1c:8b:58:09:bb:67:
3e:3b:ec:c7:98:bf:98:7b:cf:f9:01:87:4b:e8:a3:
6d:c9:64:cf:70:cf:2e:c6:ce:a0:a0:e2:2d:e2:cb:
7d:bd:88:5d:ca:7c:55:0f:41:5d:4f:81:da:88:c1:
96:e1:6e:62:f8:db:0e:46:ec:73:bf:dc:35:7d:e7:
71:83:39:5c:09:79:1f:5c:ca:0e:22:4e:6c:23:78:
35:06:47:12:93:fd:01:70:6d:56:f4:21:1a:e7:72:
48:76:88:f4:c7:5a:aa:20:91:8d:bf:a0:31:84:eb:
00:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:63:77:11:DA:9C:D9:02:85:83:4E:A5:33:89:55:97:57:12:7F:6A
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/1-mN3Edqc2QKFg06lM4lVl1cSf2o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.198.0/23
95.46.146.0/23
Signature Algorithm: sha256WithRSAEncryption
69:3b:e9:c2:77:ba:c2:00:de:bd:1d:95:00:ff:d1:0f:8a:02:
57:db:08:bf:dc:c8:f6:9d:03:48:f6:97:77:21:36:5c:50:ca:
03:b4:39:2b:db:8f:ac:db:9a:d3:26:84:27:63:34:3f:9e:9f:
5c:55:08:1c:f0:e2:b9:56:c3:04:b3:cc:a8:74:8e:75:5d:9d:
3a:d6:e1:0f:dd:e0:dd:7d:65:b1:31:61:8c:98:d6:61:9b:d8:
11:e2:4f:0b:01:ca:82:df:b1:06:e9:b2:7d:e8:52:eb:e0:43:
a5:86:66:ff:d5:fa:f8:71:4a:92:55:a4:c1:be:3c:db:39:d1:
78:ad:bb:12:1c:b5:30:99:50:b2:43:05:fd:69:19:9b:b1:ff:
f2:b7:97:3c:d5:7d:5b:3d:23:8a:2c:46:6d:ad:da:5b:69:4c:
5a:7a:ae:f9:40:db:e2:eb:59:98:11:f5:b0:f0:21:f0:7e:5b:
b8:ef:a6:61:4c:c5:f4:24:3a:83:6b:a7:13:2f:f6:50:84:30:
ec:57:05:8b:76:39:62:0a:a5:5c:47:1c:e1:ad:b1:9f:3b:e6:
7e:af:4e:37:17:a1:2e:6e:22:98:90:81:d9:17:29:a9:46:f7:
5c:77:60:80:74:a2:8e:49:56:08:7d:ee:00:61:6e:c2:a3:e1:
77:a5:f4:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:35 2024 by rpki-client on console-fra.rpki-client.org