Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/DvKpV6FbXEHoqPCEbKAfYY8K7rQ.roa
File: DvKpV6FbXEHoqPCEbKAfYY8K7rQ.roa (raw, json)
Hash identifier: 6pMNcDkg7Zfp6kK/+eXheJNHSI+ggb/5MXrftmtwLM8=
Subject key identifier: 0E:F2:A9:57:A1:5B:5C:41:E8:A8:F0:84:6C:A0:1F:61:8F:0A:EE:B4
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 01857095B3FD02B6CB332188860F8DB8E3D7
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/DvKpV6FbXEHoqPCEbKAfYY8K7rQ.roa
Signing time: Mon 02 Jan 2023 03:45:37 +0000
ROA not before: Mon 02 Jan 2023 03:45:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210390
IP address blocks: 95.46.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:b3:fd:02:b6:cb:33:21:88:86:0f:8d:b8:e3:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ef2a957a15b5c41e8a8f0846ca01f618f0aeeb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:e8:4c:d2:6a:b1:55:fa:65:01:b3:ea:8b:25:
01:de:c6:e0:2c:17:e3:8d:85:50:2d:63:38:28:98:
8b:9a:ae:f2:9c:ea:ec:08:5c:d2:1b:d0:96:e2:c9:
4f:04:44:ab:e3:81:86:f6:98:36:6d:e2:78:06:23:
37:75:5f:27:a4:84:cd:09:51:65:3f:53:5e:cf:13:
70:58:9f:2a:d6:09:c7:23:4e:3c:55:8a:f2:63:37:
1a:61:67:91:e3:98:db:65:9d:84:87:a1:53:9e:09:
22:f6:89:03:04:1e:19:9a:fe:59:f8:e3:22:6a:00:
fe:4b:27:cf:5c:aa:70:3a:2f:06:be:db:12:cb:fe:
fb:7d:69:62:f3:53:e9:d8:e8:44:77:ab:60:49:d4:
f5:cc:12:fa:fe:db:97:92:8c:72:e0:bc:46:5d:c5:
05:b6:cb:31:42:35:d5:a9:bb:9a:65:6e:1c:1b:6e:
7f:18:3f:95:2c:4e:32:f1:5a:f1:65:45:58:94:9c:
37:6e:f6:c4:f8:66:72:4d:46:5c:53:8f:0c:0b:8d:
da:99:66:aa:0a:8a:7c:ff:2a:61:7d:78:e3:3c:49:
aa:f0:c2:83:11:ed:54:c1:5f:1a:4e:44:68:a5:7e:
e6:ac:40:9f:99:ea:90:92:8c:9b:b2:a8:a1:8b:5f:
0e:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:F2:A9:57:A1:5B:5C:41:E8:A8:F0:84:6C:A0:1F:61:8F:0A:EE:B4
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/DvKpV6FbXEHoqPCEbKAfYY8K7rQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.46.96.0/24
Signature Algorithm: sha256WithRSAEncryption
11:7a:ef:e2:5e:8d:91:59:b2:d4:d6:e6:8c:39:81:21:e0:2e:
15:7b:69:2b:74:22:82:b9:2c:e5:84:43:8a:8f:f6:44:67:19:
6f:f7:07:cc:86:32:ca:b6:35:bb:0d:06:86:08:3a:e1:68:4b:
0d:94:7f:75:27:a7:2e:0b:42:d9:77:e7:a8:77:09:71:ec:a2:
95:a6:19:70:4b:3b:3e:ca:a2:11:93:0b:05:57:5e:ca:df:29:
de:1e:be:ff:5a:e8:c7:c1:06:90:13:64:5d:2d:b9:1d:b3:ea:
ac:d8:c3:b1:d3:88:5c:8b:83:37:5f:4b:6a:73:d0:9f:87:b7:
63:86:9f:42:95:d0:e4:c4:85:92:e7:a6:de:42:d9:c0:64:10:
39:10:db:7f:72:bf:7b:80:06:db:7a:3b:62:c3:95:52:82:04:
14:cd:5e:11:4c:03:d0:56:2d:5d:a0:ca:15:8a:0b:3e:18:0e:
ad:97:a7:01:1c:db:4d:8a:d4:8e:91:60:bd:83:54:c4:fe:3f:
1e:4d:c5:d3:c0:da:e0:88:f7:43:b5:d2:5a:a7:f5:d8:2f:77:
a1:b1:fc:f8:6c:d6:7f:d0:76:b3:3b:59:5b:73:b2:f7:40:21:
eb:48:0d:09:b3:3f:05:f1:d4:9f:13:05:98:53:61:3b:c1:cc:
9a:c3:58:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:49 2024 by rpki-client on console-ams.rpki-client.org