Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/a15f96-ec18-4644-89b3-acc22bb4dced/1/5qKJlv9vT4zXaCN_ZTPlJG_7On4.roa
File: 5qKJlv9vT4zXaCN_ZTPlJG_7On4.roa (raw, json)
Hash identifier: m1KMgz7VO7/n9rzXPBnldPB1ypJb4QfbBVQaOE3DAw8=
Subject key identifier: E6:A2:89:96:FF:6F:4F:8C:D7:68:23:7F:65:33:E5:24:6F:FB:3A:7E
Certificate issuer: /CN=272ed090acf7c829a22bbfbe2b0e998cd20ad826
Certificate serial: 0192158B13B0CA89EB6C611867533BE9DC85
Authority key identifier: 27:2E:D0:90:AC:F7:C8:29:A2:2B:BF:BE:2B:0E:99:8C:D2:0A:D8:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Jy7QkKz3yCmiK7--Kw6ZjNIK2CY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/a15f96-ec18-4644-89b3-acc22bb4dced/1/5qKJlv9vT4zXaCN_ZTPlJG_7On4.roa
Signing time: Sat 21 Sep 2024 17:04:48 +0000
ROA not before: Sat 21 Sep 2024 17:04:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57391
IP address blocks: 95.81.82.0/24 maxlen: 24
95.81.83.0/24 maxlen: 24
95.81.86.0/24 maxlen: 24
95.81.87.0/24 maxlen: 24
95.81.89.0/24 maxlen: 24
95.81.95.0/24 maxlen: 24
95.81.124.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 09:48:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:15:8b:13:b0:ca:89:eb:6c:61:18:67:53:3b:e9:dc:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=272ed090acf7c829a22bbfbe2b0e998cd20ad826
Validity
Not Before: Sep 21 17:04:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e6a28996ff6f4f8cd768237f6533e5246ffb3a7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:b2:cd:19:a5:16:d1:a4:9d:fc:0d:e0:b4:40:
61:88:de:7b:aa:3e:2d:81:5b:3a:1f:33:88:48:7c:
9c:89:5c:ce:e4:6a:90:f3:cc:42:51:17:3a:e8:84:
41:73:32:dc:e0:db:30:5d:28:a7:16:fd:a8:be:26:
36:05:44:a2:7b:43:6f:af:b5:1b:3e:e4:7f:2e:2f:
4e:12:fd:f8:ea:53:75:7e:98:4d:f5:98:dd:5a:6d:
80:ed:5f:ca:1b:e2:ae:7f:82:83:b3:cc:d3:82:2a:
a5:d8:e1:ed:91:d9:01:3b:54:29:d5:34:90:d7:49:
b5:60:8f:01:93:0c:b8:1b:55:cd:17:1e:ae:96:52:
35:97:4b:d2:de:8a:fb:5d:d2:b7:95:ae:08:48:6c:
89:0d:cb:e3:e5:cf:1d:1a:3c:e8:be:4f:da:51:3d:
5b:0e:0d:2c:fe:41:25:6d:60:f9:c4:96:d2:b1:76:
7a:0e:0c:f2:be:df:40:3f:ff:cc:0d:ea:f4:77:a2:
b1:9d:bb:61:42:b6:01:c5:9e:92:e9:80:0b:82:94:
0d:d3:ec:22:91:e4:d4:60:e9:56:08:48:21:95:2f:
1e:f6:1a:7a:f8:3d:d2:fa:d1:4e:85:10:72:9a:1e:
3c:29:ef:a7:c2:ef:98:18:40:f6:f4:df:21:23:07:
73:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:A2:89:96:FF:6F:4F:8C:D7:68:23:7F:65:33:E5:24:6F:FB:3A:7E
X509v3 Authority Key Identifier:
keyid:27:2E:D0:90:AC:F7:C8:29:A2:2B:BF:BE:2B:0E:99:8C:D2:0A:D8:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Jy7QkKz3yCmiK7--Kw6ZjNIK2CY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/a15f96-ec18-4644-89b3-acc22bb4dced/1/5qKJlv9vT4zXaCN_ZTPlJG_7On4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/a15f96-ec18-4644-89b3-acc22bb4dced/1/Jy7QkKz3yCmiK7--Kw6ZjNIK2CY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.81.82.0/23
95.81.86.0/23
95.81.89.0/24
95.81.95.0/24
95.81.124.0/22
Signature Algorithm: sha256WithRSAEncryption
62:81:08:29:5b:88:dd:3a:16:a1:4a:3f:ac:be:95:42:9e:3d:
91:a5:57:4f:89:79:06:53:1c:23:ba:bb:e8:4c:d4:25:9b:bb:
11:42:1e:c4:50:f1:94:14:0e:00:1f:a0:03:36:59:5a:07:d4:
5e:6c:c4:11:85:af:66:41:5b:f2:34:e9:16:41:6d:16:28:cb:
f2:ee:b1:d1:90:ac:0b:b4:c8:22:1b:af:02:7f:84:95:1a:60:
89:bb:ef:4f:bd:dc:e7:59:4c:ca:3f:e7:3d:1d:cd:6b:fb:d0:
25:84:a0:f7:5d:d6:71:1b:22:73:2f:fa:83:4c:dd:f1:0e:55:
b7:a7:ab:bb:20:13:22:42:0a:aa:bb:09:2b:a7:b0:bb:02:eb:
24:0f:1e:9c:04:ed:e2:6b:f1:48:52:3f:06:ad:6b:c7:93:9c:
e0:cd:86:ad:f1:dd:e1:07:61:ee:2a:1f:71:a3:37:c9:82:4f:
ec:34:1e:6e:8e:13:0a:f6:5f:03:9f:1a:20:3b:1a:94:26:56:
da:1e:f4:e0:5a:1c:b2:91:1b:91:cc:7f:b2:04:82:a7:29:f5:
6d:04:4d:17:4e:1d:e6:c5:4f:aa:31:8a:84:5c:ad:1c:57:f0:
86:c3:fd:e1:77:f4:b5:45:aa:68:2f:06:19:cf:76:8d:a2:d8:
ee:3b:e3:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 07:17:02 2025 by rpki-client