Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/kEZDnOP4Jg85u3_FiejOU4LKc5s.roa
File: kEZDnOP4Jg85u3_FiejOU4LKc5s.roa (raw, json)
Hash identifier: 9PvU+CMFLgm1xO91lsEOi3LMs3SJtOIu1j/DsFgRwGQ=
Subject key identifier: 90:46:43:9C:E3:F8:26:0F:39:BB:7F:C5:89:E8:CE:53:82:CA:73:9B
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 018CC500B193706690DB4482B60D4F2CA127
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/kEZDnOP4Jg85u3_FiejOU4LKc5s.roa
Signing time: Mon 01 Jan 2024 12:30:06 +0000
ROA not before: Mon 01 Jan 2024 12:30:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 95.214.177.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 07 Apr 2024 05:22:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:b1:93:70:66:90:db:44:82:b6:0d:4f:2c:a1:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jan 1 12:30:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9046439ce3f8260f39bb7fc589e8ce5382ca739b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:44:8e:4f:59:13:b0:65:89:0d:58:63:b8:ae:
e2:61:b7:5a:ce:70:a0:80:19:b5:cc:d6:40:5e:e0:
83:f9:15:4e:f1:5c:55:e8:5d:b5:40:35:2f:62:3e:
1e:3c:5f:b3:bd:1e:2f:0d:0b:3d:97:b8:8c:4c:70:
ab:62:49:bd:d7:e0:e8:9e:2c:99:70:6d:11:aa:f3:
77:e1:ce:98:d0:53:46:b9:6f:1a:0f:f7:18:7b:06:
69:0a:9e:c5:f4:1b:ea:f6:6d:37:3b:a6:c6:0a:e8:
f8:eb:a0:0e:a5:cf:3a:c2:e6:16:0f:63:cc:23:cb:
b2:80:7c:db:a1:e2:d6:64:d7:0e:a0:be:11:d5:f7:
05:05:04:39:24:61:93:1f:b5:9f:fa:78:d9:d7:08:
dd:bb:e2:ac:14:e4:a6:88:e6:4e:49:25:fc:69:ab:
2f:a4:be:4e:39:5f:70:13:95:b3:aa:b7:8e:2b:c7:
94:ad:c7:20:cd:db:6c:5d:45:0a:1b:61:7f:0b:7c:
34:1e:29:c1:30:5c:4e:57:08:f0:ef:97:d8:a8:d2:
4e:e8:21:b8:86:bd:49:3e:50:b1:73:db:be:26:6d:
3a:04:53:58:74:78:b3:da:33:a2:14:14:5d:8a:5b:
8d:d2:bb:7a:82:ad:c8:03:c7:fe:04:a2:c0:ce:66:
da:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:46:43:9C:E3:F8:26:0F:39:BB:7F:C5:89:E8:CE:53:82:CA:73:9B
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/kEZDnOP4Jg85u3_FiejOU4LKc5s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.177.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:e7:a2:b1:05:5e:39:10:0c:52:fe:75:39:53:8d:e4:6f:5d:
4c:e2:08:57:30:a6:43:1a:de:d4:b5:b5:35:13:92:0f:fe:37:
c1:e9:7c:45:ae:82:0d:87:a2:86:dd:bd:1d:51:00:f9:73:fe:
81:02:bc:e7:4a:ab:4d:a9:09:88:bf:14:60:f6:97:d4:92:0f:
bf:e0:bb:d7:44:2e:0a:36:da:f2:71:62:55:11:3e:42:66:f8:
19:c8:1f:43:27:4b:d3:bc:65:b5:bf:5a:a5:75:4c:b4:54:32:
e9:f5:b8:81:17:53:d8:e9:e3:0d:9d:d5:0c:ab:84:9a:95:b0:
0c:45:1e:7f:d7:98:0e:11:46:b6:40:ab:a3:9f:38:3c:fd:07:
f1:2b:a3:dc:6f:69:2d:60:30:3b:dc:74:fb:b6:6d:86:14:67:
ce:5b:92:21:7d:4e:21:7d:4f:cf:ba:85:34:a6:3e:7b:37:3e:
a9:bd:52:be:a4:69:2c:92:4b:df:a8:63:c5:25:7a:89:da:c8:
00:f8:f2:9a:9e:60:a9:93:9f:71:09:c3:ce:28:a2:e8:25:42:
46:1a:94:13:fd:5a:b9:55:ad:cd:5c:f1:ba:32:72:80:bd:e1:
b9:bf:b8:f2:80:0b:3d:b7:db:57:40:51:69:37:1b:d7:5a:27:
c9:25:4d:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:49 2024 by rpki-client on console-ams.rpki-client.org