Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/2jVV4K1eoBQwjVKcSK7neicRCJQ.roa
File: 2jVV4K1eoBQwjVKcSK7neicRCJQ.roa (raw, json)
Hash identifier: cW7V8PIOEVV9wcMb8e7ubIcPCHyExEmbh/ii5dl1zSg=
Subject key identifier: DA:35:55:E0:AD:5E:A0:14:30:8D:52:9C:48:AE:E7:7A:27:11:08:94
Certificate issuer: /CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Certificate serial: 01856C65F3E308BC0B9808A195BF4CEE1CDD
Authority key identifier: 83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/2jVV4K1eoBQwjVKcSK7neicRCJQ.roa
Signing time: Sun 01 Jan 2023 08:14:58 +0000
ROA not before: Sun 01 Jan 2023 08:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61264
IP address blocks: 95.181.144.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:65:f3:e3:08:bc:0b:98:08:a1:95:bf:4c:ee:1c:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Validity
Not Before: Jan 1 08:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=da3555e0ad5ea014308d529c48aee77a27110894
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:1e:3a:14:12:c1:71:0a:4f:a6:6f:3d:68:a6:
a7:a9:a5:95:f2:9e:b4:b7:f3:be:95:23:cd:11:9a:
51:64:b6:e1:5c:86:a7:df:95:db:16:70:dd:ad:49:
7a:bb:3a:97:8c:28:7f:0b:f0:87:44:1a:d4:cf:58:
7b:40:7b:a5:37:83:59:0c:34:49:30:49:21:7a:93:
d8:29:53:44:6f:23:d0:0e:e2:a3:94:47:73:86:41:
65:44:22:15:70:1d:ed:8b:b4:f9:12:a6:4b:a8:58:
e3:63:87:b9:8e:d6:3b:6f:00:62:00:e5:4b:e7:d4:
34:53:ed:65:ac:44:b0:1e:4a:ee:de:ff:7b:dc:40:
d3:4c:e3:e8:4e:ac:c1:ef:ed:f1:34:5e:42:78:99:
9a:9d:bb:e4:92:2a:f4:39:ef:e0:27:c0:4d:0f:58:
e5:c1:06:18:07:51:8f:24:a1:e1:b4:f4:5f:9f:90:
8e:67:28:aa:97:8e:b3:09:14:ad:e7:49:1c:93:ab:
eb:bc:8e:89:64:6b:3f:11:6b:e8:35:10:fd:5d:8b:
fe:d6:0d:78:39:bf:bd:1e:0f:71:eb:a2:69:e1:d2:
a5:6c:47:ba:23:6b:a8:84:95:08:41:9e:de:44:ec:
43:9a:bd:38:7b:27:0e:80:43:b0:e4:4a:48:66:d0:
71:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:35:55:E0:AD:5E:A0:14:30:8D:52:9C:48:AE:E7:7A:27:11:08:94
X509v3 Authority Key Identifier:
keyid:83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/2jVV4K1eoBQwjVKcSK7neicRCJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/gzjvQbLAEFqRzLuciTN_rrEp_4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.181.144.0/24
Signature Algorithm: sha256WithRSAEncryption
39:5e:a4:33:cd:cf:aa:94:d4:af:8d:ff:77:57:9a:08:67:c2:
73:43:da:63:c8:40:ad:07:e9:6b:8f:d7:16:69:d7:cb:65:6e:
01:30:29:b4:fe:91:b0:3b:4f:88:65:85:73:9f:e6:8e:48:36:
5c:80:eb:51:97:47:d1:4f:54:cd:f3:84:7b:d6:0f:1e:93:76:
41:a3:2e:a5:2c:de:a6:0a:14:78:f8:32:c2:e1:97:b7:36:3e:
51:8b:5d:21:e4:7c:86:07:f0:2b:0e:2d:4c:37:9b:78:09:a7:
22:92:fc:9f:44:f2:5c:98:c3:46:c7:eb:08:b4:db:ae:67:04:
7d:b8:9a:95:83:87:dd:e8:6c:06:47:d6:8b:ab:91:8b:8c:35:
3a:b7:ee:99:59:2d:b4:31:84:a4:82:63:6e:f5:db:c5:94:35:
9d:77:39:b3:ee:24:00:6a:33:3f:cf:41:74:00:5a:36:e9:b7:
2d:02:47:60:a5:da:d2:71:57:3d:7e:ce:be:fe:76:94:fd:67:
24:af:78:53:66:cf:e1:c7:0a:77:58:de:02:22:8b:c4:4e:e1:
aa:28:fc:a9:34:56:46:b1:7b:cc:65:40:05:53:e5:b0:3e:a5:
21:ca:50:6e:39:d5:4d:58:a3:90:06:7d:01:39:0e:01:cd:f1:
54:70:02:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 08:09:43 2024 by rpki-client on console-fra.rpki-client.org