Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/b66d75-a0bb-4960-beea-0117841d255b/1/u8WOIfqYZPaVOky9jVIsjbzfgNA.roa
File: u8WOIfqYZPaVOky9jVIsjbzfgNA.roa (raw, json)
Hash identifier: /i3qLfUXP8+k/pXozaAEngat+cvlNZebEv80CJHeH5c=
Subject key identifier: BB:C5:8E:21:FA:98:64:F6:95:3A:4C:BD:8D:52:2C:8D:BC:DF:80:D0
Certificate issuer: /CN=078b3739f78d96844a4ef68626dc87ac2eefa50f
Certificate serial: 018B1A10E131F4C65585D30EB783FE8E0715
Authority key identifier: 07:8B:37:39:F7:8D:96:84:4A:4E:F6:86:26:DC:87:AC:2E:EF:A5:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B4s3OfeNloRKTvaGJtyHrC7vpQ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/b66d75-a0bb-4960-beea-0117841d255b/1/u8WOIfqYZPaVOky9jVIsjbzfgNA.roa
Signing time: Tue 10 Oct 2023 14:49:55 +0000
ROA not before: Tue 10 Oct 2023 14:49:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59488
IP address blocks: 95.215.222.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1a:10:e1:31:f4:c6:55:85:d3:0e:b7:83:fe:8e:07:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=078b3739f78d96844a4ef68626dc87ac2eefa50f
Validity
Not Before: Oct 10 14:49:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bbc58e21fa9864f6953a4cbd8d522c8dbcdf80d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:4d:f1:08:88:fc:0d:8a:d6:4e:c4:98:cc:00:
aa:fd:6d:d9:9a:94:f7:41:74:41:e8:6d:c8:84:c6:
0d:91:1f:da:4b:ab:1a:b2:44:9c:c4:ae:7a:21:5d:
56:91:fa:ad:f4:e0:d6:8a:9b:2f:d8:18:d0:8b:a3:
f9:c1:84:fb:48:e9:ae:69:6c:33:cb:ff:9f:55:ca:
5c:e0:60:39:ab:f1:f2:42:b0:77:74:03:19:ac:0b:
86:69:d7:ee:e8:f3:2f:66:1e:89:4e:be:9a:9d:0e:
f5:cb:4f:04:6b:42:7a:d8:c5:3b:ee:03:2a:5c:72:
ad:ed:23:53:59:43:80:c3:94:33:fd:16:79:cb:23:
2a:5e:a9:14:d3:0d:4e:64:8d:c2:29:f7:68:4d:78:
0b:87:df:cf:78:b7:d4:34:ce:4d:40:0d:1c:c2:87:
1a:31:09:17:ae:b9:72:5b:94:32:34:f0:65:4f:ea:
38:a5:40:61:2c:08:fb:c3:63:84:82:d8:2e:ac:cc:
29:e5:69:a7:95:6a:f4:45:e0:50:df:7f:e8:35:77:
e5:74:ee:ea:54:6d:1c:4f:4d:3b:d8:03:91:c2:bd:
03:d2:b0:a4:2f:e1:06:06:65:6a:2c:41:f0:d0:fc:
0b:d5:43:ac:97:ac:28:2d:59:1d:f6:b0:a9:2a:5d:
99:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:C5:8E:21:FA:98:64:F6:95:3A:4C:BD:8D:52:2C:8D:BC:DF:80:D0
X509v3 Authority Key Identifier:
keyid:07:8B:37:39:F7:8D:96:84:4A:4E:F6:86:26:DC:87:AC:2E:EF:A5:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B4s3OfeNloRKTvaGJtyHrC7vpQ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/b66d75-a0bb-4960-beea-0117841d255b/1/u8WOIfqYZPaVOky9jVIsjbzfgNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/b66d75-a0bb-4960-beea-0117841d255b/1/B4s3OfeNloRKTvaGJtyHrC7vpQ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.215.222.0/24
Signature Algorithm: sha256WithRSAEncryption
55:7e:35:95:3a:b3:82:8c:c2:97:4b:f1:8c:5f:cb:5d:df:20:
3f:12:33:30:26:3e:23:bf:4a:b7:68:b4:8a:5a:3f:3d:c5:b7:
89:1b:71:45:f4:8f:04:0e:e3:55:30:16:c3:bc:ee:0f:c7:d7:
5a:cf:cf:6d:fd:4a:c5:ba:d9:ac:02:47:69:bb:a0:95:af:f6:
73:88:40:1c:80:90:d0:0b:34:19:c1:97:ed:35:c9:fa:d8:65:
7e:95:05:f2:2c:a5:54:80:1d:62:9d:f4:31:41:59:12:9f:df:
ad:62:8a:77:a7:7a:1f:0e:09:b3:69:4d:e3:e5:c7:54:83:81:
1e:0f:da:74:23:82:68:f9:ff:e7:43:f0:c4:3a:3a:57:39:c0:
fa:a0:87:16:91:03:e7:d4:e5:85:70:2f:7a:21:8a:d4:96:fa:
99:fd:0d:fd:c6:64:96:aa:eb:de:16:ab:86:41:d1:a5:f5:35:
ef:44:2a:3d:10:ea:f1:5f:97:20:68:16:ba:8b:1d:bf:c4:9e:
6c:08:4c:97:7a:81:9a:ad:51:bb:a2:64:9f:3c:23:e6:fc:e7:
c9:95:b9:79:74:fd:79:fa:33:11:a9:2e:5b:7e:c2:6e:44:91:
1b:f7:fa:d4:bf:69:d8:6d:1f:ed:51:23:9d:18:c4:36:0e:bd:
08:b0:3e:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:34 2024 by rpki-client on console-fra.rpki-client.org