Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/8e1f53-b674-40e8-8bb8-db5d89e8a17c/1/iyhu9xhcp1ETFppjFLGdJ61Anqw.roa
File: iyhu9xhcp1ETFppjFLGdJ61Anqw.roa (raw, json)
Hash identifier: ydhGbl+MzTTnhURTuPJOAVxVKmj7TyXitc6o6Tl25OQ=
Subject key identifier: 8B:28:6E:F7:18:5C:A7:51:13:16:9A:63:14:B1:9D:27:AD:40:9E:AC
Certificate issuer: /CN=40cc81ff82ced61aef8476ace7a0e818bbae8fc4
Certificate serial: 0189889DB07D86F0DD2735AF668DE6211811
Authority key identifier: 40:CC:81:FF:82:CE:D6:1A:EF:84:76:AC:E7:A0:E8:18:BB:AE:8F:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QMyB_4LO1hrvhHas56DoGLuuj8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/8e1f53-b674-40e8-8bb8-db5d89e8a17c/1/iyhu9xhcp1ETFppjFLGdJ61Anqw.roa
Signing time: Mon 24 Jul 2023 15:56:22 +0000
ROA not before: Mon 24 Jul 2023 15:56:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204774
IP address blocks: 93.95.209.0/24 maxlen: 24
2a13:5000::/29 maxlen: 48
2a13:5000::/48 maxlen: 64
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:88:9d:b0:7d:86:f0:dd:27:35:af:66:8d:e6:21:18:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40cc81ff82ced61aef8476ace7a0e818bbae8fc4
Validity
Not Before: Jul 24 15:56:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b286ef7185ca75113169a6314b19d27ad409eac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f2:69:ea:92:ca:4e:76:bf:c9:e1:1e:d4:91:
02:11:04:77:66:ac:de:69:f4:49:47:ab:a6:41:d0:
e3:4a:7e:fc:61:06:38:46:fd:d3:65:77:90:c2:78:
7d:ac:f4:0f:6d:11:7b:9d:f7:44:2e:ea:b5:88:a0:
9c:4f:2e:12:c0:08:57:ae:4d:e8:5f:2c:eb:8b:9f:
be:21:f8:c0:14:07:11:10:9f:52:cf:e3:bd:a8:ca:
27:07:9d:3a:56:2b:b4:2a:53:34:f5:cf:f0:8f:1f:
78:2c:d8:42:c1:54:9e:10:c4:89:90:65:97:ce:60:
24:2c:ff:8a:10:68:9f:77:af:54:1b:9a:f7:ec:48:
88:d7:87:86:19:2e:ea:b2:47:a2:4c:4d:90:d8:51:
23:15:ea:72:83:c6:d9:ff:e4:de:55:bc:30:c9:6f:
53:80:a2:e6:cc:48:80:8b:05:d2:6b:24:76:9e:81:
e5:96:d7:24:46:ae:88:d9:d1:41:46:f6:d7:b7:d2:
b7:ac:96:89:e0:25:97:56:a4:dc:7f:34:83:c2:8a:
08:0f:84:07:ea:90:af:67:24:0f:db:f8:09:6d:8e:
bf:5d:91:a3:a3:9a:0a:29:be:44:08:f7:1f:83:fb:
45:aa:b6:e5:52:da:2e:e8:98:3f:ff:d0:38:3b:8a:
69:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:28:6E:F7:18:5C:A7:51:13:16:9A:63:14:B1:9D:27:AD:40:9E:AC
X509v3 Authority Key Identifier:
keyid:40:CC:81:FF:82:CE:D6:1A:EF:84:76:AC:E7:A0:E8:18:BB:AE:8F:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QMyB_4LO1hrvhHas56DoGLuuj8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/8e1f53-b674-40e8-8bb8-db5d89e8a17c/1/iyhu9xhcp1ETFppjFLGdJ61Anqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/8e1f53-b674-40e8-8bb8-db5d89e8a17c/1/QMyB_4LO1hrvhHas56DoGLuuj8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.95.209.0/24
IPv6:
2a13:5000::/29
Signature Algorithm: sha256WithRSAEncryption
3e:ac:43:4f:8d:db:2c:99:b6:ad:2e:b4:48:29:7a:ad:f5:bf:
ed:94:27:69:97:cf:b9:db:89:cc:de:e9:d9:3a:87:75:5d:06:
e3:3f:58:3a:56:b3:c8:69:45:d2:ad:2f:76:d3:d5:6f:cf:33:
51:7e:3a:f5:59:2d:ba:88:47:96:4d:6e:14:ed:54:9b:71:67:
e6:79:15:55:d5:48:ca:35:ed:06:93:3c:56:85:91:78:3c:ae:
e9:86:ab:ad:2b:77:82:6e:6e:7a:4e:56:5e:33:2d:3c:dc:37:
28:c8:4c:00:45:e6:eb:4c:1b:b7:69:7f:f4:21:19:65:c5:f0:
bc:49:5d:e6:39:3e:29:71:5d:8c:b7:1b:6f:75:5e:56:8f:28:
33:72:42:b9:04:52:f6:c9:27:8f:6d:3d:8d:e2:a9:ed:53:17:
1c:20:2f:93:6a:67:cc:cc:8d:c4:43:12:32:d2:f1:76:ec:3b:
b8:07:94:1d:49:b5:7c:3f:4b:1e:12:69:9c:ba:cc:7a:7e:7a:
12:90:fc:c7:67:b4:ca:da:b0:c8:58:fb:f8:05:7b:41:b0:8c:
6b:4c:24:9b:e6:a0:2a:49:92:d4:86:2c:ed:66:9d:b1:b2:d1:
cf:f3:c7:0b:54:51:25:0b:ea:e6:74:d2:28:bc:d8:ce:df:13:
c9:d9:35:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:02 2024 by rpki-client on console-fra.rpki-client.org