Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/9f9440-591b-44d3-87d6-7c445b3f9fc3/1/1-_2Lp99QzWqFA_O93_7ECjVf834.roa
File: 1-_2Lp99QzWqFA_O93_7ECjVf834.roa (raw, json)
Hash identifier: EttFL8Ab1s+c9RAHbb2VQZHDTItHbxIEw6c8a1CLPEw=
Subject key identifier: FB:FD:8B:A7:DF:50:CD:6A:85:03:F3:BD:DF:FE:C4:0A:35:5F:F3:7E
Certificate issuer: /CN=62bb1c6e5e886588cd47616bacbd7ccb64abf478
Certificate serial: 018570703DA058E9CF87071C9B6218DC5091
Authority key identifier: 62:BB:1C:6E:5E:88:65:88:CD:47:61:6B:AC:BD:7C:CB:64:AB:F4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yrscbl6IZYjNR2FrrL18y2Sr9Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/9f9440-591b-44d3-87d6-7c445b3f9fc3/1/1-_2Lp99QzWqFA_O93_7ECjVf834.roa
Signing time: Mon 02 Jan 2023 03:04:41 +0000
ROA not before: Mon 02 Jan 2023 03:04:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200796
IP address blocks: 185.95.152.0/22 maxlen: 22
185.95.152.0/23 maxlen: 23
185.95.154.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:3d:a0:58:e9:cf:87:07:1c:9b:62:18:dc:50:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62bb1c6e5e886588cd47616bacbd7ccb64abf478
Validity
Not Before: Jan 2 03:04:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fbfd8ba7df50cd6a8503f3bddffec40a355ff37e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:9a:d5:17:be:0d:43:39:ac:be:7f:e1:04:f3:
e3:f6:7c:ff:4a:b0:1b:76:b4:a4:64:12:63:83:66:
c9:a1:4f:40:40:26:bd:98:38:38:ab:fc:25:35:16:
dd:93:97:59:cc:11:b4:c5:52:dc:a3:6f:fc:de:31:
68:ad:1d:25:ed:8d:0a:d4:0a:9c:80:79:44:c2:18:
64:28:01:13:83:7c:49:f9:c6:34:9b:c2:95:ef:a8:
00:95:ee:23:bb:e3:8f:2b:3a:11:11:3c:69:87:0f:
f1:f6:48:42:52:ec:cb:07:0e:2d:2b:06:e3:a7:07:
5f:95:36:30:db:d5:d8:dd:57:08:f4:fe:46:e8:75:
c3:66:5a:a5:bb:d8:e3:2c:1f:ff:3d:41:a5:6c:45:
80:00:fd:8b:c8:db:38:05:79:ef:42:d8:8a:eb:74:
e4:af:e0:2b:1c:4f:5d:11:08:22:47:63:0a:cb:d0:
d3:27:97:9d:8c:39:2d:9d:35:18:52:f4:f1:95:08:
59:d2:ab:5c:b6:65:9b:bf:70:2c:b9:bb:ac:7d:65:
de:e1:0f:2d:1c:af:1d:d5:99:76:19:d6:7b:d1:97:
ec:dc:17:45:45:21:13:83:03:c0:03:e3:9f:d4:4c:
f9:2b:a0:d4:5a:cd:90:bf:e0:4e:c7:26:99:e7:96:
13:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:FD:8B:A7:DF:50:CD:6A:85:03:F3:BD:DF:FE:C4:0A:35:5F:F3:7E
X509v3 Authority Key Identifier:
keyid:62:BB:1C:6E:5E:88:65:88:CD:47:61:6B:AC:BD:7C:CB:64:AB:F4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yrscbl6IZYjNR2FrrL18y2Sr9Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9f9440-591b-44d3-87d6-7c445b3f9fc3/1/1-_2Lp99QzWqFA_O93_7ECjVf834.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9f9440-591b-44d3-87d6-7c445b3f9fc3/1/Yrscbl6IZYjNR2FrrL18y2Sr9Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.95.152.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:84:b4:ce:0a:d0:63:85:cc:87:03:a8:9e:32:15:4e:54:8e:
1a:e6:5a:51:e3:63:c7:27:d4:6e:80:78:89:cd:17:06:ef:b0:
9f:2a:96:20:62:77:72:60:00:37:ca:b4:2b:b6:16:5b:62:67:
8b:15:f6:f7:69:cd:61:f5:fb:b3:85:9f:9b:22:2d:58:70:4d:
ef:5d:26:00:bf:be:f0:48:89:5f:50:44:b5:6d:c9:87:f0:b3:
06:ee:1c:b4:99:11:12:f6:8f:b7:df:1e:d1:71:15:a0:0e:88:
87:47:03:92:32:70:7f:67:b4:ed:de:00:78:9e:39:97:87:d9:
39:b7:5d:30:35:d0:f3:40:19:03:c7:99:b7:31:65:28:b9:f7:
ce:a0:62:20:73:c3:db:33:79:24:99:09:a0:e0:79:6d:e8:92:
16:16:c4:8f:69:89:d8:0e:d9:e3:b6:f7:fc:d2:10:6b:60:85:
8d:77:12:99:ec:76:9a:a8:5d:b3:66:29:f0:0e:a3:14:4a:82:
02:98:19:df:3d:37:96:22:dc:e0:17:8b:ec:ef:9d:68:b1:f6:
e3:37:0c:1e:62:01:fd:b6:86:f2:70:1c:e5:bb:f6:29:59:3f:
52:4d:74:2c:a9:ab:b1:62:4b:13:d5:69:de:cf:e1:09:7a:ac:
2d:f0:b6:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:57 2024 by rpki-client on console-fra.rpki-client.org