Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/i4-0RWToR0xALWw9k2VN9qKTERE.roa
File: i4-0RWToR0xALWw9k2VN9qKTERE.roa (raw, json)
Hash identifier: FitxQjzfQQtS6L9vtjRhXk6FovZgPVyHJ0H1bBjOM7g=
Subject key identifier: 8B:8F:B4:45:64:E8:47:4C:40:2D:6C:3D:93:65:4D:F6:A2:93:11:11
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018570954D662F48261F8129E97B3661254C
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/i4-0RWToR0xALWw9k2VN9qKTERE.roa
Signing time: Mon 02 Jan 2023 03:45:10 +0000
ROA not before: Mon 02 Jan 2023 03:45:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50765
IP address blocks: 95.47.62.0/24 maxlen: 24
2a02:128:6::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:4d:66:2f:48:26:1f:81:29:e9:7b:36:61:25:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b8fb44564e8474c402d6c3d93654df6a2931111
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d0:55:c8:f7:82:6f:eb:35:60:06:a2:cc:45:
f3:6e:96:0f:1b:95:7a:c2:60:ee:eb:02:d9:51:b7:
77:35:bc:1c:18:38:3c:ec:c5:b7:c9:e1:da:ae:f9:
a2:3d:17:0d:7d:33:a3:c1:6a:47:c5:66:64:51:df:
98:46:cd:23:aa:56:69:4c:fb:29:ba:2f:3a:66:5d:
0a:96:75:a7:2d:c5:99:86:3a:9a:9b:ca:de:8e:96:
7d:0e:56:6b:12:af:85:26:2f:ca:97:86:04:30:1e:
a2:ce:88:94:a9:19:a6:28:34:0a:f4:49:2c:43:8a:
2d:ab:bc:78:b7:43:07:92:85:0a:49:00:f5:4a:ee:
11:8c:8f:4b:95:44:76:79:1a:d5:ba:eb:e4:dd:df:
16:f4:90:e3:7f:24:d6:9d:34:ea:b4:f6:43:1e:27:
4d:60:28:5d:12:e4:f3:4a:c0:98:1d:5f:75:1d:eb:
4f:fe:57:36:0c:4c:96:c4:c9:e9:4f:fb:94:bd:70:
81:72:49:66:fb:e8:86:05:25:40:23:f6:d0:7f:da:
f4:e7:5c:3f:f4:a8:01:a7:69:29:73:7e:7c:22:8d:
6a:ae:6e:8a:58:7b:3a:6f:ec:57:23:65:1c:5c:b0:
0f:81:82:42:b4:3c:35:b5:63:8d:a4:b4:3b:24:48:
c6:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:8F:B4:45:64:E8:47:4C:40:2D:6C:3D:93:65:4D:F6:A2:93:11:11
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/i4-0RWToR0xALWw9k2VN9qKTERE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.47.62.0/24
IPv6:
2a02:128:6::/48
Signature Algorithm: sha256WithRSAEncryption
25:f1:29:9d:bd:1f:e8:10:93:77:29:ee:a0:cf:89:59:83:6e:
02:0e:90:40:87:85:01:2d:2d:68:5a:ea:92:22:a1:e2:6e:2d:
73:c7:e4:d7:6e:cf:d0:cd:b5:7a:04:69:64:1a:cc:b3:97:9d:
de:ae:14:2f:99:ef:9c:5b:84:ef:76:aa:a5:1c:68:6a:9c:a4:
e7:63:87:15:de:6f:ba:ec:a2:0a:4f:60:02:5b:89:47:2d:1e:
f9:a8:b1:d5:23:32:5e:ce:c1:1a:7b:94:b5:78:cd:81:aa:4a:
74:54:1f:ce:08:16:18:37:1e:7a:9a:3c:82:bb:7e:39:38:d4:
2f:3f:73:05:34:80:9b:de:08:30:74:88:62:01:84:2a:5c:27:
95:0d:63:f2:00:99:ac:36:c3:5c:17:d7:21:fa:61:f4:72:03:
00:aa:05:4b:b5:bd:4c:88:2e:b4:f9:9d:b8:31:e3:16:11:c9:
34:8e:e6:0d:bd:00:ec:d0:49:1d:49:5b:c3:e8:f1:11:56:9b:
38:78:e7:2e:a8:a4:c9:1d:6f:d6:6b:6b:80:c7:ee:7b:cc:55:
a6:fe:89:80:e4:a7:be:19:a1:72:eb:b7:ee:ea:51:c0:9a:b1:
75:67:d3:f7:6e:ca:4e:7c:f6:e8:03:9c:93:b5:54:df:89:cd:
7e:a3:e2:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:37 2024 by rpki-client on console-fra.rpki-client.org