Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/5e5c30-8aa4-47e8-bd8f-fbe1a0d0aa98/1/K2ih393Euclhy-rdtnf28uH2GyQ.roa
File: K2ih393Euclhy-rdtnf28uH2GyQ.roa (raw, json)
Hash identifier: 454qByK3LdyaHI99CnDixTau9CnLX41DVuIjQOSyw4I=
Subject key identifier: 2B:68:A1:DF:DD:C4:B9:C9:61:CB:EA:DD:B6:77:F6:F2:E1:F6:1B:24
Certificate issuer: /CN=557b0ac10b8642a27dd3d74ed6cb5ee045e67b97
Certificate serial: 0186084936837BC1B211F158722DF089E070
Authority key identifier: 55:7B:0A:C1:0B:86:42:A2:7D:D3:D7:4E:D6:CB:5E:E0:45:E6:7B:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VXsKwQuGQqJ909dO1ste4EXme5c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/5e5c30-8aa4-47e8-bd8f-fbe1a0d0aa98/1/K2ih393Euclhy-rdtnf28uH2GyQ.roa
Signing time: Tue 31 Jan 2023 14:44:21 +0000
ROA not before: Tue 31 Jan 2023 14:44:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60974
IP address blocks: 95.169.195.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:08:49:36:83:7b:c1:b2:11:f1:58:72:2d:f0:89:e0:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=557b0ac10b8642a27dd3d74ed6cb5ee045e67b97
Validity
Not Before: Jan 31 14:44:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b68a1dfddc4b9c961cbeaddb677f6f2e1f61b24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:e4:22:c3:31:28:d9:54:fe:ab:8e:b6:34:f2:
d1:fd:9f:11:83:56:87:76:72:79:ab:c8:57:b9:f8:
08:1d:f2:52:80:e4:9e:f5:5f:b0:f7:e4:1a:e6:f7:
95:8d:df:4a:94:70:c6:b4:1a:9f:d8:95:02:12:15:
f1:86:15:a1:d3:a7:d7:d6:06:1d:d7:f3:7f:cd:0e:
67:3d:f6:2d:bb:8e:2e:6c:c0:65:de:83:d2:9d:73:
c3:a8:1f:2b:fe:9e:a3:01:5c:40:9d:78:d7:7c:6b:
ad:7d:67:ca:12:95:14:17:1d:73:99:cb:48:af:b5:
ad:01:f6:56:01:e0:25:dc:de:c1:e8:3b:77:90:dd:
63:16:c3:5e:82:d0:33:16:4d:3d:ee:04:49:99:53:
5f:ae:58:21:40:8e:aa:2f:26:ef:d5:f2:2f:a3:7f:
68:0c:91:39:d8:4a:62:1b:9a:fd:01:80:7f:5c:6a:
83:52:87:02:1d:04:18:8b:32:26:b9:88:cc:9b:7e:
de:05:30:b7:9c:2e:29:cd:ed:d0:49:6c:de:52:61:
e7:ef:ee:c2:8d:05:f0:52:b7:64:a8:7d:d1:52:94:
61:4f:7a:16:41:39:52:5e:03:40:18:8a:2a:3b:2e:
b9:0f:cc:4e:ca:f9:bf:6d:48:9c:06:f0:2d:7c:31:
5d:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:68:A1:DF:DD:C4:B9:C9:61:CB:EA:DD:B6:77:F6:F2:E1:F6:1B:24
X509v3 Authority Key Identifier:
keyid:55:7B:0A:C1:0B:86:42:A2:7D:D3:D7:4E:D6:CB:5E:E0:45:E6:7B:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VXsKwQuGQqJ909dO1ste4EXme5c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/5e5c30-8aa4-47e8-bd8f-fbe1a0d0aa98/1/K2ih393Euclhy-rdtnf28uH2GyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/5e5c30-8aa4-47e8-bd8f-fbe1a0d0aa98/1/VXsKwQuGQqJ909dO1ste4EXme5c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.195.0/24
Signature Algorithm: sha256WithRSAEncryption
28:09:1c:46:64:12:20:ad:8e:26:bb:e4:e5:68:ac:c4:bd:a9:
eb:7a:c8:94:ad:5f:a4:4d:72:c4:4f:3d:09:91:a3:4d:32:05:
4a:b1:45:08:b7:e6:ea:2c:01:4d:08:b0:3b:99:f6:8a:ef:9b:
47:ad:de:a0:54:e3:de:8a:22:23:59:31:e2:33:85:a0:7d:ca:
cd:02:d5:92:a8:54:47:c6:6b:79:fb:d7:ae:45:68:aa:1b:42:
48:2a:ef:b8:23:5e:00:16:6e:7e:a3:a2:50:72:ed:85:bc:46:
1a:6b:d3:78:c9:9e:8d:4d:ca:de:69:84:82:21:3c:bf:72:ab:
01:8f:93:0d:1f:cd:9a:d3:fe:81:20:8b:79:06:fc:2d:ea:7c:
b3:a1:a6:9f:09:1b:e1:43:ff:1b:6b:cc:bf:72:1d:d3:b9:28:
ca:6b:64:56:2b:7a:1a:93:71:15:2b:d9:6f:8a:85:c5:91:57:
0e:2c:55:27:5c:dd:1d:fc:4f:37:6a:01:4f:93:b1:46:e8:0d:
0b:22:1c:60:a4:a9:ca:c8:b0:ff:da:aa:41:f2:04:57:10:3b:
d8:b5:32:a1:2c:26:dd:d5:e3:9a:7b:b2:28:90:85:69:5b:6a:
36:49:7c:cd:2c:c2:29:0f:2d:a9:cf:97:1d:79:f5:9b:32:75:
1f:11:34:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:08 2024 by rpki-client on console-fra.rpki-client.org