Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/bLUNNK82_joRsDl4_PBSshBxwig.roa
File: bLUNNK82_joRsDl4_PBSshBxwig.roa (raw, json)
Hash identifier: BjswwoZcCjtv+B2T+wO4aRH6IA0TYlKy+/Stb/lFkjY=
Subject key identifier: 6C:B5:0D:34:AF:36:FE:3A:11:B0:39:78:FC:F0:52:B2:10:71:C2:28
Certificate issuer: /CN=94166b704843d3d9754095c83a91b493828200a2
Certificate serial: 0191600458EA4CB030524867DA663439CB13
Authority key identifier: 94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/bLUNNK82_joRsDl4_PBSshBxwig.roa
Signing time: Sat 17 Aug 2024 11:06:23 +0000
ROA not before: Sat 17 Aug 2024 11:06:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207645
IP address blocks: 95.111.144.0/20 maxlen: 20
Validation: Failed, certificate revoked on Sat 17 Aug 2024 20:45:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:60:04:58:ea:4c:b0:30:52:48:67:da:66:34:39:cb:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94166b704843d3d9754095c83a91b493828200a2
Validity
Not Before: Aug 17 11:06:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6cb50d34af36fe3a11b03978fcf052b21071c228
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:1b:36:76:be:f8:10:bd:55:bb:83:cb:83:3c:
e8:50:c5:2a:50:f3:a2:d5:d2:26:de:0b:f0:ac:3d:
08:11:bf:bd:4d:54:d0:83:ec:12:13:bf:c5:d7:a7:
51:3f:b9:d7:bf:57:7b:de:64:1e:33:e0:e7:60:0d:
02:91:d8:0b:44:48:9f:4d:1e:ec:92:9b:49:b2:54:
d5:c2:1d:87:7a:e6:e2:93:6f:e4:2e:28:8b:79:45:
aa:5f:ee:1d:f4:14:e9:3b:d0:32:e4:a5:02:ff:e9:
2b:c6:30:95:a3:1f:b3:c9:2f:68:19:0b:f1:61:9a:
34:b1:6f:17:0c:35:81:a4:71:6d:ff:1b:e9:b5:39:
a9:df:ec:a6:45:4f:a7:33:3c:99:b4:4d:63:01:b6:
19:cd:6e:f9:f1:84:52:19:db:6e:50:b4:25:c1:db:
6d:e5:f8:78:63:0c:67:46:8a:71:b3:47:e5:72:5e:
7d:7c:32:de:87:05:82:ac:1a:db:dd:65:d8:f3:95:
53:53:ad:68:98:ce:74:01:dc:34:7e:03:ce:67:5b:
da:96:3e:11:ea:05:2b:0f:e2:8a:c5:69:a5:ed:4c:
36:71:93:69:75:ce:1d:7f:d0:59:62:de:93:7a:09:
69:b3:b0:df:ef:a1:98:98:ac:fb:fa:28:fe:8e:47:
90:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:B5:0D:34:AF:36:FE:3A:11:B0:39:78:FC:F0:52:B2:10:71:C2:28
X509v3 Authority Key Identifier:
keyid:94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/bLUNNK82_joRsDl4_PBSshBxwig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.111.144.0/20
Signature Algorithm: sha256WithRSAEncryption
47:87:9c:76:68:03:57:3b:c6:24:a0:f1:0d:3d:a3:82:98:df:
74:c5:cf:96:2f:48:b8:2e:da:4f:64:63:28:b2:e9:db:bb:53:
f3:43:6d:ee:f1:72:42:c7:b8:bb:bb:62:e3:d4:5d:19:5a:22:
ca:98:d0:fa:04:69:2e:00:2d:77:e3:ff:5a:27:3c:89:8a:b6:
38:10:d1:67:8d:56:3a:50:3a:e8:f4:b0:b5:cf:a2:9b:2e:95:
a8:32:cc:cf:93:bf:81:6f:cf:4d:5b:26:2d:33:6f:54:cc:02:
d0:3a:6b:cd:2f:65:72:55:8d:7c:1d:75:81:00:ab:90:07:76:
f5:a6:c6:cf:54:fb:f9:90:23:95:e3:ff:ad:e7:50:88:61:ca:
f8:5d:b6:b4:e4:9b:89:61:37:01:ca:02:82:cb:25:a9:1f:9d:
1a:9f:a5:7a:07:58:ea:ba:ac:1e:08:6c:dc:2b:0e:83:bb:b0:
80:86:5a:c1:dc:0a:00:0e:9c:ed:2d:99:37:af:9f:62:d8:5d:
87:9c:26:2f:89:a2:02:d0:19:8d:f9:55:25:3f:fc:fa:e5:ad:
e4:85:ca:18:e3:de:d4:01:a8:7d:36:ab:06:0c:8f:a1:df:c3:
12:46:d8:7f:86:d4:a8:c2:09:35:e6:73:26:83:1f:a2:fd:39:
8d:a8:b6:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 17 22:52:09 2024 by rpki-client on console-fra.rpki-client.org