Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/p4z9ozOXBrtYJQQ9M6fyBZONCfU.roa
File: p4z9ozOXBrtYJQQ9M6fyBZONCfU.roa (raw, json)
Hash identifier: ssmnyP9ql7GUIE6zNmjIVOeB6f7B4mrSidYKGMmUeuA=
Subject key identifier: A7:8C:FD:A3:33:97:06:BB:58:25:04:3D:33:A7:F2:05:93:8D:09:F5
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018627653DE0221AD7B310546B44D0B8A447
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/p4z9ozOXBrtYJQQ9M6fyBZONCfU.roa
Signing time: Mon 06 Feb 2023 15:43:11 +0000
ROA not before: Mon 06 Feb 2023 15:43:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44834
IP address blocks: 95.47.170.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 07 Feb 2023 10:07:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:27:65:3d:e0:22:1a:d7:b3:10:54:6b:44:d0:b8:a4:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Feb 6 15:43:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a78cfda3339706bb5825043d33a7f205938d09f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:09:4d:f4:ad:9c:d8:7b:e9:c1:71:20:15:79:
10:5e:70:dd:3b:1d:bd:7d:b3:2a:59:8b:4b:71:3c:
0a:4f:bc:7f:88:11:ad:2a:99:30:0b:fc:03:77:63:
27:74:c8:ad:68:07:0f:7d:44:06:cd:2c:51:aa:b8:
e9:a0:42:87:75:02:7b:5f:12:14:d6:2a:d8:7f:0f:
0d:e5:76:4d:e4:fd:9a:38:9e:f4:5b:da:4a:d4:41:
c9:5f:8b:99:ac:32:0d:f6:48:9a:fd:c2:0f:1c:40:
a0:34:b9:e2:b0:dd:f8:6d:36:05:2d:e1:35:85:0e:
b0:35:44:37:bd:56:6d:ff:b7:f4:ea:d6:ca:37:7d:
83:f6:03:84:0a:40:e3:2c:d4:b1:9c:a7:f9:0c:a2:
ae:ce:97:3c:58:cb:86:7d:0e:cc:ed:fb:58:8b:95:
30:2f:42:fc:b6:6e:59:1b:90:b8:07:49:d8:11:f4:
ec:3a:a3:92:fe:f7:43:b6:68:82:7a:91:47:b4:cd:
c1:31:b5:f6:f2:28:31:7f:c1:33:b2:e1:05:50:f7:
cb:72:0d:3d:fd:a0:dc:42:75:dd:94:45:1d:c0:1c:
9b:b1:18:2e:e4:5c:7d:9c:a1:bb:25:b5:ab:05:d3:
c5:87:2d:b3:fb:b0:c6:41:2e:fe:a4:05:56:f7:b7:
42:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:8C:FD:A3:33:97:06:BB:58:25:04:3D:33:A7:F2:05:93:8D:09:F5
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/p4z9ozOXBrtYJQQ9M6fyBZONCfU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.47.170.0/23
Signature Algorithm: sha256WithRSAEncryption
24:79:06:99:e1:ed:8c:a5:4b:3a:d9:bf:6c:0a:d7:ed:c9:bd:
f0:f6:46:a7:d1:18:21:68:d9:18:c0:54:6c:d6:5f:72:f2:81:
eb:6c:4e:0a:77:ec:6f:46:ac:2f:6f:6d:aa:41:c6:a1:35:f6:
bf:95:eb:2d:3d:5f:2f:ea:1f:6a:9c:08:9f:28:27:e4:45:f6:
e2:d8:3d:ff:50:f3:d5:a4:ee:ae:d9:ea:9b:43:b0:dd:fb:78:
22:ab:30:33:65:d3:f6:f9:91:c3:1b:56:b1:73:e2:3d:06:01:
b7:c2:d7:87:05:ae:b1:71:5a:8c:80:c2:b6:c0:42:c0:f7:83:
05:11:99:fb:b3:42:e1:d2:42:70:eb:47:e5:27:51:4d:29:1c:
64:88:3c:4d:ab:6e:45:b4:1f:44:fd:1b:8d:81:34:79:2f:d6:
ce:ea:83:0d:38:81:91:7b:2f:b9:76:55:44:c1:5a:2c:00:ab:
a9:47:c7:47:2a:5c:42:72:c4:ea:4a:34:f1:b8:a6:ef:dd:ef:
66:78:b9:70:34:9b:61:d1:a8:9a:07:4f:28:1f:b3:f3:28:65:
6d:c8:6e:15:c1:30:65:a4:a0:f1:6f:28:06:e6:aa:9e:a9:6b:
1b:47:b9:e8:26:b0:b6:e9:83:ca:1d:b4:6f:fb:fe:55:14:2f:
3d:6b:cc:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:37 2024 by rpki-client on console-fra.rpki-client.org