Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/rN_8JS11iOawHcE3y8imRfrUVbM.roa
File: rN_8JS11iOawHcE3y8imRfrUVbM.roa (raw, json)
Hash identifier: XDg3L+fEWuQq889ZfN25ZhfoDnqIPC5cufWGD/W98lI=
Subject key identifier: AC:DF:FC:25:2D:75:88:E6:B0:1D:C1:37:CB:C8:A6:45:FA:D4:55:B3
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018570952F42E320FF2C2B8E64B8C36D60A5
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/rN_8JS11iOawHcE3y8imRfrUVbM.roa
Signing time: Mon 02 Jan 2023 03:45:03 +0000
ROA not before: Mon 02 Jan 2023 03:45:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44834
IP address blocks: 95.47.170.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 06 Feb 2023 15:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:2f:42:e3:20:ff:2c:2b:8e:64:b8:c3:6d:60:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=acdffc252d7588e6b01dc137cbc8a645fad455b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a8:ee:c4:1e:a0:38:f6:19:d9:47:7a:e0:44:
e3:00:a8:7f:0d:b6:4b:1b:ad:a3:80:d6:55:67:bf:
ca:01:f1:ca:1d:8c:cc:eb:97:1b:49:55:52:55:00:
a2:a7:63:98:f7:01:3f:c5:c1:02:e6:ea:2b:4b:db:
48:7f:df:1a:dc:48:07:fb:d8:02:60:9f:84:ce:a8:
aa:58:4f:21:62:ba:03:d4:29:f7:35:13:af:c4:fc:
ed:1b:18:c4:be:b9:76:3f:ff:36:ad:43:4c:b5:a1:
d3:13:1a:04:e4:b3:67:ec:3f:12:7d:75:03:50:35:
14:fe:80:35:3d:9e:8a:b9:cb:9b:94:84:a4:db:cb:
9f:86:ba:40:d9:c5:3d:69:16:ab:e8:e1:76:4d:b2:
b0:ed:94:e6:91:1e:91:79:f4:b2:cf:f3:dd:d4:4c:
33:b4:c9:38:7a:cf:91:91:ef:86:b1:11:07:8c:66:
22:bb:ec:e5:97:0f:51:b3:e9:35:57:8f:71:a4:9f:
38:06:29:f3:c2:c5:fe:67:35:e0:da:89:86:57:4f:
ba:71:35:31:76:9c:95:99:b6:3e:d8:54:ae:9b:a0:
e3:f2:08:4a:ad:3e:2b:3e:c4:ef:42:99:6a:d6:7b:
1b:a4:44:4d:9f:54:23:86:30:09:62:6d:a3:5e:21:
6b:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:DF:FC:25:2D:75:88:E6:B0:1D:C1:37:CB:C8:A6:45:FA:D4:55:B3
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/rN_8JS11iOawHcE3y8imRfrUVbM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.47.170.0/23
Signature Algorithm: sha256WithRSAEncryption
90:bc:99:6d:e4:9f:f7:66:61:01:f1:bb:34:7d:2d:dd:80:85:
ff:d2:2e:40:b1:b3:11:ff:fd:70:62:4f:28:09:54:d8:88:04:
63:e5:2f:9b:0c:81:3a:03:eb:31:91:ef:c9:e1:13:2c:5d:47:
c8:12:e8:b3:5c:04:f4:00:7a:3d:30:12:b1:85:a8:20:b1:6b:
12:f2:55:21:25:95:a6:17:ab:96:fa:04:a5:2d:36:39:3d:0c:
94:73:36:37:04:0a:c1:64:d4:cd:e4:39:83:15:e2:31:55:04:
0b:57:10:dd:fd:1f:73:c8:6b:bc:ee:e1:b2:22:44:ff:63:81:
71:50:e3:97:3e:58:eb:3e:f1:59:e5:5c:8d:38:81:3c:1c:9b:
8b:39:61:61:66:03:e0:3c:db:f9:47:ca:72:f5:5b:80:b8:34:
34:cb:e3:3b:d2:3f:44:56:f7:2f:83:bc:8f:52:ec:99:de:aa:
b0:e1:e8:fe:60:a2:ae:8b:95:cd:75:e4:a2:7e:2e:94:0e:a7:
f4:69:60:22:ae:2f:26:b8:78:53:d8:05:26:75:a5:74:05:2d:
a0:26:f6:4b:b8:76:ad:10:eb:9f:95:67:0b:70:60:7c:7d:10:
b3:6b:9f:cc:0c:0c:81:65:59:97:b4:21:12:41:6a:c9:e3:97:
e9:c1:1e:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:38 2024 by rpki-client on console-fra.rpki-client.org