Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/XkN1itm3_F7Y89MFRTHdJffdSzQ.roa
File: XkN1itm3_F7Y89MFRTHdJffdSzQ.roa (raw, json)
Hash identifier: Qxx4ulwvgMMuhYeOCmEVXN3h2IY0qqz0z7WTo8qz7bw=
Subject key identifier: 5E:43:75:8A:D9:B7:FC:5E:D8:F3:D3:05:45:31:DD:25:F7:DD:4B:34
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018F96D3F86862D4E0D2F8DE633DB4BC4B40
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/XkN1itm3_F7Y89MFRTHdJffdSzQ.roa
Signing time: Mon 20 May 2024 16:27:05 +0000
ROA not before: Mon 20 May 2024 16:27:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206326
IP address blocks: 95.47.104.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 05:49:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:96:d3:f8:68:62:d4:e0:d2:f8:de:63:3d:b4:bc:4b:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: May 20 16:27:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5e43758ad9b7fc5ed8f3d3054531dd25f7dd4b34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d2:fe:39:19:4e:3a:a3:25:8c:67:9e:c9:e8:
ba:4e:73:e3:85:68:62:d3:fc:40:96:34:a4:58:fa:
fc:3d:69:6c:cd:2b:42:01:be:7d:67:09:c0:1a:36:
8e:b2:e1:b7:00:ce:40:42:08:f2:7f:d8:57:57:bc:
32:31:7e:41:e7:0f:6c:fd:c7:29:f3:fb:18:4f:51:
35:f8:fa:bb:df:1a:fb:56:0f:de:b0:12:a2:62:8c:
32:68:c6:71:b8:9e:65:c6:9f:49:b0:7a:00:2a:8b:
f1:89:39:9c:ab:2d:d2:b7:12:fc:eb:25:31:e8:d5:
8a:37:e1:4e:61:2b:25:1e:8d:d2:08:08:a7:a1:92:
2d:20:84:da:b4:6f:75:69:57:26:08:16:25:26:54:
b3:af:c8:99:ff:ba:20:3f:c5:f8:02:1e:0c:08:52:
7f:c3:ed:aa:46:21:3c:c6:01:f8:ee:5d:7e:2a:f3:
90:00:d4:16:c3:61:ff:73:b6:0f:a9:56:29:a5:07:
56:de:d5:96:b4:26:54:a5:a6:f0:35:06:8e:46:9d:
ce:3a:79:49:54:6d:d9:29:30:0b:7c:fa:79:17:59:
d5:f1:5b:8b:ca:05:7d:20:76:e5:eb:bb:c3:77:99:
f8:56:23:75:60:fa:bd:92:d3:c8:aa:3c:76:24:6a:
10:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:43:75:8A:D9:B7:FC:5E:D8:F3:D3:05:45:31:DD:25:F7:DD:4B:34
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/XkN1itm3_F7Y89MFRTHdJffdSzQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.47.104.0/23
Signature Algorithm: sha256WithRSAEncryption
68:30:f9:14:15:b4:de:0d:18:5c:2e:cd:a1:0f:c4:59:df:7c:
97:5b:bf:7a:45:61:fb:d9:2b:4f:89:7e:72:bb:b4:59:00:2a:
43:bf:30:7c:7b:e9:ca:b5:47:fa:4a:4f:21:38:d4:66:e9:30:
02:36:77:46:49:32:62:9c:e5:1b:ce:b0:d9:34:67:be:d4:98:
8b:7a:e9:13:0f:a9:4b:a7:54:2e:75:fa:78:58:1f:fd:12:f8:
86:3e:89:88:82:fc:80:05:8b:36:0a:a3:3d:7c:57:92:43:c7:
e2:4f:54:1a:2d:8b:68:00:3f:2c:dc:a6:d6:e2:81:e2:10:71:
34:10:c9:96:23:9a:a9:67:35:57:7a:ed:f8:f6:05:65:2c:b8:
2c:d4:f2:06:20:c1:d5:12:76:77:31:7f:20:6a:3e:ce:a3:be:
04:d9:28:d7:91:b5:54:f8:a4:30:2d:89:1f:d8:a8:e0:b3:ad:
6f:af:2e:1c:0e:6c:be:dd:0d:5b:56:96:75:55:74:34:5e:3d:
62:02:a2:b9:21:0c:1a:fb:fc:b1:64:41:26:61:7c:82:0d:92:
cd:f2:4c:d2:46:37:b6:d8:f1:58:98:0a:3a:47:7e:57:92:61:
7b:a7:a7:94:ec:7a:32:da:fa:5f:05:69:89:53:3a:14:29:ca:
40:cf:2c:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:55:02 2025 by rpki-client