Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ozTOQLXdqd08wJ0_WenoRacoIdY.roa
File: ozTOQLXdqd08wJ0_WenoRacoIdY.roa (raw, json)
Hash identifier: YHDk012vUzXA8v0yfESfyPzppM/MRr8aqAAuX+QFZsc=
Subject key identifier: A3:34:CE:40:B5:DD:A9:DD:3C:C0:9D:3F:59:E9:E8:45:A7:28:21:D6
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018570953D5FA8B2C4CFF304B46CEC3E08B5
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ozTOQLXdqd08wJ0_WenoRacoIdY.roa
Signing time: Mon 02 Jan 2023 03:45:06 +0000
ROA not before: Mon 02 Jan 2023 03:45:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49168
IP address blocks: 95.47.253.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:3d:5f:a8:b2:c4:cf:f3:04:b4:6c:ec:3e:08:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a334ce40b5dda9dd3cc09d3f59e9e845a72821d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:dc:37:70:68:88:47:3b:d4:f2:38:c6:ed:cb:
20:26:1e:dd:a6:ca:b2:e9:45:6f:85:ea:94:fc:6c:
63:c3:9e:59:4b:0d:51:69:a3:56:ab:b7:65:16:1f:
f7:54:d9:cb:5d:89:4d:97:46:82:a9:59:0f:16:e0:
33:e6:52:a8:ec:15:f1:66:c8:b4:20:ce:9e:93:f4:
a2:a6:51:3e:b2:a7:2b:7a:e9:c0:1c:5e:5e:45:01:
e7:83:91:1d:32:68:7a:de:d3:98:3e:03:47:6d:78:
bc:c7:34:6e:4f:be:a5:af:68:91:1a:5a:0f:68:cb:
65:00:78:72:7c:4d:6d:47:30:a9:5c:e1:2d:40:6a:
20:2f:fb:29:d8:16:f9:91:1a:bb:40:1c:18:b7:12:
24:28:df:f2:79:e3:8b:e7:fe:60:9d:33:55:f8:24:
d8:ed:db:95:f9:d1:f8:43:3c:9f:80:83:23:a3:18:
49:44:76:f1:69:46:da:6b:e6:5e:42:94:31:6d:4a:
ab:ce:9f:71:d6:a8:18:5d:27:23:78:5f:c1:dd:95:
f1:1b:98:82:a0:e3:e9:d1:2a:f3:58:e4:44:1f:9a:
ce:44:5e:61:54:ea:f4:7f:f2:b8:e8:12:99:57:05:
4a:07:43:d2:e1:93:4e:df:44:4c:8c:47:7c:8c:47:
22:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:34:CE:40:B5:DD:A9:DD:3C:C0:9D:3F:59:E9:E8:45:A7:28:21:D6
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ozTOQLXdqd08wJ0_WenoRacoIdY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.47.253.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:c9:c0:00:f5:0f:55:1a:bb:19:f9:bd:cc:bc:6d:8c:2c:d2:
71:44:4e:02:4e:dd:ed:de:5e:24:23:db:75:79:38:3b:84:8f:
2d:d7:44:2d:75:94:b2:ec:c4:7c:c3:cf:84:8d:f5:44:5b:7a:
b4:21:1a:55:9b:be:45:dd:41:a2:8b:04:d5:f8:e6:0e:40:30:
bc:20:9b:0e:0e:68:41:d4:ae:d1:54:55:84:d7:bb:c2:fe:86:
c1:f6:48:6f:d7:01:7c:71:e6:46:5e:78:47:93:47:51:2b:77:
cd:1a:62:06:89:f8:d8:df:0c:bf:8f:45:5d:24:15:07:c1:c7:
c2:8f:b0:2d:9d:5a:85:19:9b:02:70:a8:7d:a7:ce:8a:97:13:
c6:c3:47:85:48:bc:8d:eb:b4:78:03:79:6c:d7:a7:67:33:24:
8f:46:66:bc:d8:ff:18:39:7c:b5:aa:cc:47:3b:36:37:c9:c8:
0f:50:ee:81:7d:0e:29:59:51:09:c9:b8:5a:d5:ea:bc:33:66:
1b:d9:a8:74:b9:8d:ab:14:b5:7f:35:90:94:d8:7a:77:c6:3e:
9d:fd:2b:eb:54:7c:66:05:bc:16:a4:1c:6d:e9:54:d8:4d:b4:
4c:18:1f:b9:29:7f:d4:8a:2e:41:d9:b8:72:5e:7d:3e:e3:8d:
6d:25:e2:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:34:32 2024 by rpki-client on console-fra.rpki-client.org