Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/IWFV72w2k04vLx-qDNVIDLorGn4.roa
File: IWFV72w2k04vLx-qDNVIDLorGn4.roa (raw, json)
Hash identifier: hfh1w/M3AOXpwGva2Gi5WLRLPAdunt9ZpXazoZgK0lU=
Subject key identifier: 21:61:55:EF:6C:36:93:4E:2F:2F:1F:AA:0C:D5:48:0C:BA:2B:1A:7E
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01856CE64A972CBC2B79545755907B94B0CE
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/IWFV72w2k04vLx-qDNVIDLorGn4.roa
Signing time: Sun 01 Jan 2023 10:35:09 +0000
ROA not before: Sun 01 Jan 2023 10:35:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8734
IP address blocks: 95.43.206.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:4a:97:2c:bc:2b:79:54:57:55:90:7b:94:b0:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 10:35:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=216155ef6c36934e2f2f1faa0cd5480cba2b1a7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ce:25:42:a4:8d:eb:cc:26:ae:d8:ff:16:02:
21:22:21:54:13:e4:17:d7:e3:45:26:d1:ef:8a:b2:
e5:92:8b:70:6f:47:64:ec:11:17:48:36:0f:23:8d:
74:02:67:8f:0e:1b:38:a9:96:9c:6f:3c:46:86:35:
12:93:8e:ee:7a:cc:08:98:1d:30:c6:04:ef:37:9a:
e2:6b:f6:08:bb:16:d9:a6:d7:dc:78:89:93:04:b4:
4c:b3:4e:96:47:97:b6:35:eb:f9:e9:0d:0d:34:76:
74:fc:18:a1:d2:6c:a1:af:65:4f:b7:2e:46:bc:80:
65:90:ea:4f:bb:2d:d0:53:3d:4e:5c:5a:8f:d8:3b:
8b:31:4c:57:87:a7:ba:ac:d2:dd:58:63:11:ca:86:
61:70:d0:b1:91:d7:49:38:53:be:6e:14:5b:8c:ca:
b1:27:66:d4:c7:14:42:d9:c7:84:7c:ec:3a:ab:45:
84:41:1e:cc:a3:50:39:9c:68:9e:40:26:0e:47:b7:
9b:82:99:ac:61:65:44:ea:ae:3d:de:4a:66:95:ca:
af:10:9f:0d:df:0c:8d:9b:d2:87:d0:89:33:7b:88:
00:cb:e4:cb:c3:70:9b:ac:e1:68:38:4c:85:3e:89:
83:26:6b:6b:22:c0:b4:9e:9e:1e:b6:8f:54:69:78:
6a:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:61:55:EF:6C:36:93:4E:2F:2F:1F:AA:0C:D5:48:0C:BA:2B:1A:7E
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/IWFV72w2k04vLx-qDNVIDLorGn4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.43.206.0/24
Signature Algorithm: sha256WithRSAEncryption
24:03:96:b3:7d:d1:07:7e:79:66:41:14:b0:cf:8a:f8:38:59:
7d:47:fc:00:32:73:13:d2:61:67:e7:41:59:2a:f6:90:fa:10:
3f:11:38:49:99:1a:82:6b:30:af:f6:00:91:49:59:09:03:81:
e1:dc:ab:b0:f3:8f:6a:9d:55:f4:63:6b:cf:5a:03:88:28:85:
7c:b8:2d:bf:26:60:ef:b0:2f:f7:a3:82:49:4b:2b:36:a9:39:
38:59:6c:08:a8:6a:18:ce:1c:f3:ae:50:33:d0:e6:9c:39:81:
45:9a:e0:2e:b0:e5:92:3b:29:ba:5e:57:07:d2:dd:07:c6:15:
10:b1:2a:7a:47:2d:d7:fa:52:19:af:09:8e:3c:8c:5a:a1:6d:
27:07:d6:3d:2b:b7:97:a6:f0:88:d0:ea:84:66:66:fc:f0:6b:
be:65:2e:34:97:35:73:06:17:4d:18:77:46:6c:45:3a:22:48:
4b:ea:ef:17:17:be:10:18:04:8b:f6:51:c7:a7:6c:c4:27:af:
5a:b2:c3:ae:4c:0c:3a:a0:21:8f:50:90:8d:eb:40:13:4c:49:
55:8a:50:8e:83:f5:24:2d:1c:7c:39:55:e6:66:84:d7:5e:2b:
ff:8c:f7:64:09:e6:9c:85:53:39:60:1b:5e:35:99:d7:c5:30:
04:d2:53:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org