Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/WK3nb2dJ3BmOGY8AgEcFUr4uldI.roa
File: WK3nb2dJ3BmOGY8AgEcFUr4uldI.roa (raw, json)
Hash identifier: XptYdowNuVIWaBy5FEVdqGY8qdlSy1eTGZFA0cBu6CI=
Subject key identifier: 58:AD:E7:6F:67:49:DC:19:8E:19:8F:00:80:47:05:52:BE:2E:95:D2
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018570951CFD3569B756D6CCFEBD16AE2B0A
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/WK3nb2dJ3BmOGY8AgEcFUr4uldI.roa
Signing time: Mon 02 Jan 2023 03:44:58 +0000
ROA not before: Mon 02 Jan 2023 03:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41932
IP address blocks: 95.47.144.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:1c:fd:35:69:b7:56:d6:cc:fe:bd:16:ae:2b:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=58ade76f6749dc198e198f0080470552be2e95d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:46:41:8f:bf:8c:ab:78:fa:70:ab:11:f6:c2:
78:4a:fd:71:43:7f:b8:98:22:30:f2:a9:e3:4c:77:
a6:35:71:3d:e5:17:08:8f:cb:d9:30:ef:57:0a:58:
c2:82:4a:d8:f2:dd:dc:d6:e1:d5:16:32:9a:b6:9a:
79:51:d9:55:67:7e:e3:c9:66:62:52:09:be:04:77:
c7:6c:50:68:e9:bc:d0:25:09:b1:9c:e2:5f:87:85:
cf:92:4c:91:b1:c9:2f:57:08:c3:66:05:64:e9:2f:
03:e5:07:f4:d1:75:c2:81:cb:8f:1d:ba:b0:dd:d3:
6d:7a:f5:54:f4:59:eb:cc:41:59:d0:9c:1d:83:4e:
7b:b1:e2:4b:e8:40:b5:76:93:9c:80:16:24:60:ab:
0d:78:57:b7:43:c7:e0:0f:72:0d:8e:01:c6:e7:39:
bf:e1:18:69:fa:76:73:73:63:0d:c4:4d:e6:83:ac:
4f:b9:73:27:1e:19:f7:e4:f5:5f:3f:13:cb:e9:50:
8e:cb:97:d9:9d:08:b7:19:63:86:22:e1:be:1e:92:
1d:f4:1c:39:d9:fb:20:d5:bf:00:c0:8b:2f:c9:f0:
75:2d:db:2d:25:ee:43:eb:7d:cc:aa:77:3b:80:c7:
86:e9:bb:a0:9f:75:df:c8:27:06:09:d2:96:c5:a4:
0c:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:AD:E7:6F:67:49:DC:19:8E:19:8F:00:80:47:05:52:BE:2E:95:D2
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/WK3nb2dJ3BmOGY8AgEcFUr4uldI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.47.144.0/24
Signature Algorithm: sha256WithRSAEncryption
11:2a:03:dd:91:b5:2f:29:cd:69:66:58:55:48:4f:db:f1:f7:
9e:ef:24:9e:0d:50:60:bf:7b:ae:8f:d6:c7:cd:62:fa:39:45:
ca:d4:73:81:de:2d:17:cf:9f:c0:89:35:3b:35:a6:4c:64:43:
c5:61:43:52:5c:e6:1d:ca:0d:3d:db:2d:17:f8:14:39:e9:84:
d7:4f:eb:35:f2:f7:ad:7b:a9:e4:ae:48:e7:d4:72:ca:8c:f0:
32:3b:51:bb:a1:04:25:ee:d7:5d:76:b3:6a:29:b9:66:79:b9:
76:46:9c:22:a6:ee:c6:7d:ab:c2:fb:64:3a:20:84:39:8e:5b:
2c:cc:bc:37:89:3e:d7:e7:e2:b4:1b:b3:ae:14:37:a6:80:d2:
10:a8:0a:75:d8:c2:4a:69:65:5a:e5:ea:15:cb:4f:5b:57:8d:
e2:cc:fc:aa:21:13:41:d3:72:64:69:8d:b7:f3:f6:e9:13:b1:
3c:ce:90:12:56:6e:4f:67:5a:7e:a7:68:da:f4:dd:c9:d3:cd:
2d:77:d6:c7:72:75:18:0d:40:3c:0a:5f:4d:6c:da:16:c2:49:
69:68:a7:96:8e:cc:c5:0b:18:c6:1f:f8:72:61:e4:34:42:d3:
c6:c5:ac:08:5c:50:f6:e4:26:4e:cc:4a:66:6e:11:c6:b9:91:
d2:e4:9e:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:24 2023 by rpki-client on console-ams.rpki-client.org