Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/e3086c-d72f-41ea-9444-bdea63e5a7c4/1/F0uxuAtEMIwAC9SNd2WoAXSZ0hA.roa
File: F0uxuAtEMIwAC9SNd2WoAXSZ0hA.roa (raw, json)
Hash identifier: 1SN4rat3AMKyFmIMBEJDof68Q2NHtRcC2d96v9PDcqE=
Subject key identifier: 17:4B:B1:B8:0B:44:30:8C:00:0B:D4:8D:77:65:A8:01:74:99:D2:10
Certificate issuer: /CN=1cbd5746e300091ded1a11a13b16807b4fd0f1fc
Certificate serial: 018CC2DAC2AB330F39385B8876189364D50D
Authority key identifier: 1C:BD:57:46:E3:00:09:1D:ED:1A:11:A1:3B:16:80:7B:4F:D0:F1:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HL1XRuMACR3tGhGhOxaAe0_Q8fw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/e3086c-d72f-41ea-9444-bdea63e5a7c4/1/F0uxuAtEMIwAC9SNd2WoAXSZ0hA.roa
Signing time: Mon 01 Jan 2024 02:29:25 +0000
ROA not before: Mon 01 Jan 2024 02:29:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8315
IP address blocks: 195.95.177.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 21:56:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:c2:ab:33:0f:39:38:5b:88:76:18:93:64:d5:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cbd5746e300091ded1a11a13b16807b4fd0f1fc
Validity
Not Before: Jan 1 02:29:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=174bb1b80b44308c000bd48d7765a8017499d210
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:c8:56:f2:d3:ea:28:d1:81:b2:93:ff:98:3a:
5e:58:3b:7b:a6:6b:84:37:4c:a5:ee:b9:25:59:5f:
68:2d:0f:a5:c1:7d:cc:f9:a9:b5:50:72:bf:eb:f1:
c9:01:a5:85:ff:85:f2:b5:b1:7d:61:33:96:30:ef:
4e:ed:58:21:ad:0f:ea:9c:ca:51:f7:36:21:74:7f:
a1:3d:60:a9:4d:c2:88:b5:7a:fe:21:92:76:32:73:
aa:21:29:7a:c7:1e:ef:d1:19:2e:4a:85:19:b4:14:
69:6f:02:17:24:4a:92:22:0a:10:b3:b0:c6:f5:5a:
a8:ce:be:33:d7:a5:30:b1:d4:fe:56:f5:20:f3:c5:
4c:c5:fc:93:73:6a:be:88:0c:8e:f7:44:b3:09:55:
00:eb:b9:34:50:54:f5:31:a5:db:8c:6c:b5:c7:74:
bd:5a:35:78:72:19:97:54:e0:f4:05:0c:bb:17:11:
36:0b:b5:60:4d:5c:6a:25:5f:42:1e:52:b0:c4:92:
58:7d:7b:29:6c:c0:28:f5:df:da:12:7a:34:56:9d:
51:b8:31:e1:d5:18:a4:4d:ff:49:cb:c8:84:dc:74:
43:9d:3d:aa:aa:50:f8:cc:fb:78:e9:92:7d:d9:2b:
53:14:e4:77:60:55:2a:0a:1e:d1:31:e8:8f:1c:9e:
37:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:4B:B1:B8:0B:44:30:8C:00:0B:D4:8D:77:65:A8:01:74:99:D2:10
X509v3 Authority Key Identifier:
keyid:1C:BD:57:46:E3:00:09:1D:ED:1A:11:A1:3B:16:80:7B:4F:D0:F1:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HL1XRuMACR3tGhGhOxaAe0_Q8fw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/e3086c-d72f-41ea-9444-bdea63e5a7c4/1/F0uxuAtEMIwAC9SNd2WoAXSZ0hA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/e3086c-d72f-41ea-9444-bdea63e5a7c4/1/HL1XRuMACR3tGhGhOxaAe0_Q8fw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.177.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:37:48:33:c3:07:f4:a6:4b:a0:7c:d9:92:d1:18:52:05:7f:
a0:ef:a4:c2:3a:1b:28:bd:4f:99:82:03:e1:b5:17:1b:5d:05:
31:74:7d:f1:91:a6:02:6c:be:18:32:7d:af:63:c9:44:bb:a8:
a6:e4:2a:a0:32:82:65:19:65:c4:b2:89:5a:6c:84:ce:b9:f1:
96:39:6e:75:b8:dc:49:b1:80:c0:3a:fb:bd:df:34:73:7d:76:
09:75:a1:14:b7:51:de:b0:40:b3:a3:ca:cf:d7:ac:44:d5:d9:
c4:a1:fa:3e:a1:e2:6f:62:05:38:b1:07:7f:21:63:f0:b2:a4:
e3:4b:3d:b8:00:47:4d:b8:ee:28:f0:bf:66:f4:60:4f:12:8c:
d0:2b:94:99:ea:f5:51:fb:a3:31:b9:16:43:1b:c9:32:be:c8:
67:51:8d:a3:13:0f:d2:b0:79:21:5f:dd:99:86:f7:1c:19:f0:
f2:9d:da:af:54:9e:d0:cb:45:6a:8b:3d:72:8f:5c:89:ea:3a:
2f:e1:da:68:61:3d:2e:d2:b8:a7:ad:83:e0:22:1e:6a:9b:6e:
15:07:4e:f4:36:75:b5:94:d5:4f:c2:36:05:06:1e:c8:08:ce:
e3:9a:76:92:25:34:ab:dc:68:e7:0c:fb:8d:e2:b8:5d:14:70:
1b:96:75:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:06:30 2025 by rpki-client