Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/pHiM4ks6bR2T_dXq9pr8HttNIlQ.roa
File: pHiM4ks6bR2T_dXq9pr8HttNIlQ.roa (raw, json)
Hash identifier: wyrVrUauhmLwmt6LkSOxYm1yCEM7/6mliHcfDW6taog=
Subject key identifier: A4:78:8C:E2:4B:3A:6D:1D:93:FD:D5:EA:F6:9A:FC:1E:DB:4D:22:54
Certificate issuer: /CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Certificate serial: 018E61D3729AA219A5C5ECA8B68873C65D19
Authority key identifier: 6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/pHiM4ks6bR2T_dXq9pr8HttNIlQ.roa
Signing time: Thu 21 Mar 2024 16:23:51 +0000
ROA not before: Thu 21 Mar 2024 16:23:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1299
IP address blocks: 95.101.133.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Mar 2024 10:51:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:61:d3:72:9a:a2:19:a5:c5:ec:a8:b6:88:73:c6:5d:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Validity
Not Before: Mar 21 16:23:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a4788ce24b3a6d1d93fdd5eaf69afc1edb4d2254
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:95:92:72:12:03:43:1c:f3:49:89:cc:2b:9c:
94:b5:3d:8a:1d:ef:c9:0c:10:22:3f:69:77:2e:c4:
28:56:c2:b8:1a:46:8a:57:cb:a4:19:4c:48:f4:6d:
87:dd:84:1c:90:59:03:76:91:8b:e3:05:ef:c5:f1:
2b:4c:3d:1b:33:21:8f:ae:aa:54:89:a2:11:d6:c6:
7c:4e:64:82:d4:1b:e6:5b:96:37:6d:18:73:94:80:
ee:67:e2:66:c9:e6:e7:05:21:ab:d6:c9:1e:ca:de:
fe:7e:46:a1:a4:56:02:ba:d8:b0:57:a2:1c:52:32:
64:04:88:90:7e:88:50:ce:8c:f4:9f:b1:73:ed:05:
b6:d9:d5:de:2a:50:3c:7d:ab:08:e9:83:03:87:88:
28:d7:4d:56:3a:2a:9d:59:9d:8e:10:d8:bb:e0:e5:
7a:87:e4:8a:58:16:49:fb:28:f9:e9:6f:a5:a7:c5:
e6:a6:c6:bf:3f:25:ea:31:50:a7:0b:25:6c:09:c3:
b2:74:14:50:cc:6c:4a:35:eb:f4:1f:0f:3a:71:0e:
6a:e9:3a:4f:de:83:cb:7c:c7:a5:88:52:ed:22:4e:
af:95:ae:50:31:84:1c:46:83:f6:8a:0d:3b:0c:31:
0d:57:3f:16:ff:2f:7a:55:e5:bc:dc:9e:11:a2:47:
83:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:78:8C:E2:4B:3A:6D:1D:93:FD:D5:EA:F6:9A:FC:1E:DB:4D:22:54
X509v3 Authority Key Identifier:
keyid:6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/pHiM4ks6bR2T_dXq9pr8HttNIlQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/a1_LvqSJN6RCur2zMCEyxLyb1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.101.133.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:2a:64:fd:a2:73:12:c8:e4:45:e1:bf:a1:5f:68:cc:70:a5:
1b:a0:3b:a7:cc:26:46:c6:5b:46:65:f9:94:53:2a:b9:58:1e:
e7:36:be:95:04:15:dc:41:ea:f3:86:92:76:00:f9:47:5c:12:
66:f6:45:b9:5c:96:1e:e6:cd:5a:66:18:06:d9:56:81:e1:cd:
b7:ce:1e:06:08:78:38:40:d1:71:31:b5:35:8f:64:15:39:25:
55:ad:a1:d7:d3:c1:a7:c6:67:df:42:46:7c:b8:07:0c:10:c2:
08:ea:0a:f9:23:a1:ad:90:45:e9:63:69:73:d7:83:49:b1:fe:
29:50:43:ba:b0:74:24:a9:12:84:24:4e:95:57:4b:29:25:36:
4e:cd:ba:e6:4d:58:0b:a9:03:28:ce:95:4a:4c:e6:9b:7c:d2:
d5:52:6e:03:54:33:8b:92:00:1b:d4:29:5c:a5:d0:c0:a1:63:
ab:7f:19:60:bb:98:1c:8f:a6:d2:11:9c:22:2b:71:f8:e6:4f:
e4:3f:1a:24:29:b9:44:0f:2a:bd:5c:b4:52:6b:fb:27:11:3b:
28:8d:97:5f:ba:3a:06:85:dd:18:bf:9f:27:f6:a1:56:c0:64:
dc:61:da:9b:ad:14:6a:d7:2b:65:0a:f2:7f:05:97:a8:36:ef:
86:c8:e1:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 27 15:17:37 2024 by rpki-client on console-fra.rpki-client.org