Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/D6FqsepfkalgCLSMa2AO7zZ_ObQ.roa
File: D6FqsepfkalgCLSMa2AO7zZ_ObQ.roa (raw, json)
Hash identifier: ML/n3Y/F2P1wEvSHIki8mtSLZ9jekwXG/Mhxy2/se0E=
Subject key identifier: 0F:A1:6A:B1:EA:5F:91:A9:60:08:B4:8C:6B:60:0E:EF:36:7F:39:B4
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 01899E177F80F83DE879F1BB85CE7E8B1D9F
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/D6FqsepfkalgCLSMa2AO7zZ_ObQ.roa
Signing time: Fri 28 Jul 2023 20:01:27 +0000
ROA not before: Fri 28 Jul 2023 20:01:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48734
IP address blocks: 95.214.177.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 29 Oct 2023 19:02:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:9e:17:7f:80:f8:3d:e8:79:f1:bb:85:ce:7e:8b:1d:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jul 28 20:01:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0fa16ab1ea5f91a96008b48c6b600eef367f39b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:aa:26:b0:7c:6b:24:88:ea:35:02:3f:2f:c3:
8d:e1:f9:3f:1d:82:3f:d8:ba:f5:bb:9e:a9:d0:a8:
d8:ec:5b:ae:2c:ab:1e:a8:5f:6f:71:38:09:ea:60:
2a:47:41:c3:4e:b5:02:01:05:29:0b:4d:a3:7b:24:
bb:92:7c:6f:ea:21:3c:88:ca:0c:d9:a2:d0:e2:75:
20:b3:4e:de:a3:5a:c8:67:aa:eb:6a:39:3a:81:a9:
c7:12:93:a5:02:59:fe:28:bb:79:d8:69:ce:77:b0:
10:75:ba:f2:ad:b3:2a:12:8c:c9:34:d5:7c:39:d3:
2b:54:8e:3f:07:70:09:2f:75:8e:64:82:b2:03:68:
14:67:cd:aa:f5:9d:41:03:d1:a1:86:fe:0b:31:2d:
7b:70:85:b5:b5:1d:cc:73:f9:41:17:d9:65:65:1c:
a4:a9:40:27:53:13:b8:4c:22:00:3f:91:81:cb:de:
b3:9a:27:bf:5e:39:0a:bc:e5:ed:b4:54:cd:d5:a6:
2d:a2:bf:bf:8b:66:70:c5:b9:8f:8d:a8:49:e8:40:
a6:0b:fe:f8:fe:4b:eb:d4:e8:1d:c0:97:40:06:78:
38:60:ae:4d:74:cc:92:0c:ce:3a:e4:29:73:53:4c:
f4:07:5e:19:90:0a:58:a6:92:47:ee:69:79:69:db:
c1:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:A1:6A:B1:EA:5F:91:A9:60:08:B4:8C:6B:60:0E:EF:36:7F:39:B4
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/D6FqsepfkalgCLSMa2AO7zZ_ObQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.177.0/24
Signature Algorithm: sha256WithRSAEncryption
15:03:0c:15:b0:64:da:4f:1d:a5:ab:78:46:67:a6:e8:45:fa:
00:1a:2f:1a:f8:4b:20:7f:bd:b0:e3:1a:a9:d9:b7:fb:dc:59:
cf:4c:60:1a:8b:40:c4:b3:18:d7:fd:d9:b5:b5:d9:f1:94:6e:
1f:29:3a:74:ab:84:35:41:a0:e2:e5:cf:84:cb:a3:14:ef:ff:
f1:f0:01:04:73:c0:74:4c:53:19:04:42:04:d7:6a:d3:63:b2:
a3:2e:f5:83:21:b6:ae:d5:df:f5:da:18:be:9b:64:29:80:1f:
b4:0d:08:d2:89:19:68:59:d2:a7:ed:a5:cb:31:21:96:c5:5d:
e3:bc:fc:2e:06:54:32:8f:f9:e2:fa:74:64:cf:52:fe:34:8b:
0a:9c:ae:9d:d0:11:9c:0d:ab:c3:92:c0:dd:b8:bd:f6:21:59:
b6:c4:69:ab:28:3f:57:cd:4a:5b:0f:f0:ed:67:74:f0:4b:49:
0d:08:2c:f8:a5:36:27:a0:94:76:dd:c3:90:95:09:d7:b5:d3:
04:1e:3d:11:71:a5:55:30:b9:bb:94:be:f3:6f:5b:4c:6f:f1:
d1:10:aa:d4:68:57:6f:cf:62:a1:48:b1:18:a4:8a:a8:79:25:
d2:7a:c8:df:1d:e2:c1:c9:ca:3e:b7:25:5f:ff:b4:70:8a:3e:
d4:1f:23:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:00 2024 by rpki-client on console-fra.rpki-client.org