Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/biO0DbGrUBD-jBfj6kTDZZ2FBWs.roa
File: biO0DbGrUBD-jBfj6kTDZZ2FBWs.roa (raw, json)
Hash identifier: CLOfoNWUv0HBfG2AFfrUysip4mMRzhZpw1Xejyra5K0=
Subject key identifier: 6E:23:B4:0D:B1:AB:50:10:FE:8C:17:E3:EA:44:C3:65:9D:85:05:6B
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018CCA29EBDCE7F4A88EAA5FB1020B473B07
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/biO0DbGrUBD-jBfj6kTDZZ2FBWs.roa
Signing time: Tue 02 Jan 2024 12:33:14 +0000
ROA not before: Tue 02 Jan 2024 12:33:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41773
IP address blocks: 95.47.250.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sat 02 Nov 2024 14:45:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:eb:dc:e7:f4:a8:8e:aa:5f:b1:02:0b:47:3b:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 12:33:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6e23b40db1ab5010fe8c17e3ea44c3659d85056b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b2:3e:df:51:db:84:e4:01:bf:6f:ed:de:97:
9a:ef:50:05:78:8d:0a:a0:88:1d:40:e2:48:bd:f5:
ce:b2:8f:a7:8b:eb:c5:9a:a3:be:cc:a4:1b:f5:85:
0f:89:6d:4f:2d:6b:0f:8a:08:cc:56:4b:ac:46:01:
95:ab:bd:48:d2:57:f3:ba:06:99:7c:b6:99:89:ad:
fc:f8:4d:21:12:68:f7:22:4a:d2:1d:be:9c:67:50:
1b:25:5e:86:e5:e7:57:9d:51:d4:5b:fe:05:f5:84:
f5:e8:c7:3f:06:44:3b:47:26:77:8d:14:e1:6a:a1:
33:6f:aa:0d:8b:5a:50:e2:a2:4a:ca:ca:0d:82:ca:
6c:11:bd:55:56:fb:71:58:49:d4:f6:49:60:29:9a:
28:2d:8e:3d:d9:a0:44:02:f5:00:84:0e:36:50:42:
38:1e:64:f0:b3:1f:ee:15:97:4e:96:0e:84:41:24:
d6:70:28:85:af:89:5c:06:ad:c8:2c:1a:01:dc:78:
a6:3c:11:8c:92:6e:7e:7f:ca:c0:e3:14:f7:bb:51:
a8:31:8c:de:12:f9:ee:80:65:cb:5b:62:fd:69:93:
99:f1:ae:e5:21:77:de:ac:21:f0:c5:98:5b:80:cb:
58:36:ee:62:4c:8b:e4:75:b0:93:82:fe:5b:25:87:
1f:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:23:B4:0D:B1:AB:50:10:FE:8C:17:E3:EA:44:C3:65:9D:85:05:6B
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/biO0DbGrUBD-jBfj6kTDZZ2FBWs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.47.250.0/23
Signature Algorithm: sha256WithRSAEncryption
69:af:49:bc:ba:3c:19:c4:8a:d2:a5:fd:98:b9:86:20:2a:49:
48:fc:5b:e2:30:37:ff:1b:22:82:8b:d1:ba:9e:e9:0d:5b:de:
06:63:7d:81:e6:15:83:b3:06:c6:37:5f:6f:61:37:bd:8c:c0:
54:4b:be:16:9a:89:e8:ac:04:06:57:5a:77:10:6c:9e:96:bd:
08:40:f4:4a:80:2b:5e:09:de:c6:fd:7a:06:86:88:d8:7c:4f:
8a:d2:b1:51:79:56:5a:44:75:43:09:bd:a7:11:7c:61:a6:f2:
6b:fa:f8:e1:46:1a:42:a8:af:b7:49:52:45:2b:db:15:9e:20:
54:9c:0d:7b:51:0f:de:a5:d0:82:ca:93:ed:72:fb:57:82:b0:
53:c5:af:bb:5b:b4:92:ce:f1:dd:77:da:eb:ae:09:79:b0:20:
ed:41:97:d5:fb:9b:18:aa:35:c1:de:35:bf:e7:f5:3b:9d:e8:
38:06:96:68:65:06:78:8a:d9:76:31:ec:6a:9e:47:7e:f0:84:
ab:57:d1:a9:2e:ef:b2:c2:95:d6:03:93:f4:44:35:54:8d:ec:
12:d3:6a:87:ab:59:54:85:6c:7d:49:de:32:83:b5:ae:d5:d9:
ae:b8:78:53:3e:ce:f3:62:d1:73:bc:3d:2a:f3:27:73:9a:f2:
1e:a9:69:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:25:09 2025 by rpki-client