Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/At1eKGUAKXtRGMAgl8-ZG-42IKM.roa
File: At1eKGUAKXtRGMAgl8-ZG-42IKM.roa (raw, json)
Hash identifier: 8CC/xbCZvxnXx4p2Zl4Fm9Qvj62O/YE6igboXlP7ta4=
Subject key identifier: 02:DD:5E:28:65:00:29:7B:51:18:C0:20:97:CF:99:1B:EE:36:20:A3
Certificate issuer: /CN=aedaeea9117a1d5ccc320222955a09faa0798fd9
Certificate serial: 018842ECA39C473389E63E41ADC34C38B8CF
Authority key identifier: AE:DA:EE:A9:11:7A:1D:5C:CC:32:02:22:95:5A:09:FA:A0:79:8F:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rtruqRF6HVzMMgIilVoJ-qB5j9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/At1eKGUAKXtRGMAgl8-ZG-42IKM.roa
Signing time: Mon 22 May 2023 10:06:24 +0000
ROA not before: Mon 22 May 2023 10:06:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21734
IP address blocks: 95.172.76.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:42:ec:a3:9c:47:33:89:e6:3e:41:ad:c3:4c:38:b8:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aedaeea9117a1d5ccc320222955a09faa0798fd9
Validity
Not Before: May 22 10:06:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=02dd5e286500297b5118c02097cf991bee3620a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:30:41:f9:b1:96:88:6e:ff:33:40:28:9c:3a:
fb:89:4d:49:47:63:59:d7:99:f0:9b:88:27:d3:a0:
bc:3a:b2:ed:91:24:ac:f3:7e:70:a6:f7:8f:c1:27:
84:06:16:61:35:c2:01:d0:60:5e:04:30:28:9b:9c:
f1:4f:83:d3:89:77:a8:90:2b:0a:38:4d:77:d1:ec:
fa:56:91:c4:e4:2c:e0:73:0b:55:30:9a:62:d1:52:
48:de:a9:ce:e9:08:24:2b:3b:d4:ba:3e:20:1d:42:
9e:41:c2:0c:70:7f:af:c1:16:09:9e:69:50:8a:d2:
96:1a:76:6e:32:b4:6b:7b:dd:64:8a:1e:e4:cb:cb:
b6:6c:fa:f4:15:cd:11:00:59:2e:d4:7f:d5:cb:d0:
25:0e:f7:c9:f2:61:22:63:de:b5:f8:f8:b9:d7:02:
a1:86:c2:4b:d5:2b:bf:f0:7e:eb:3d:5a:e7:b4:08:
c0:49:d2:0a:c5:c6:cd:51:fb:25:78:95:0d:2b:2e:
38:47:8b:15:87:d5:35:c3:82:0f:71:02:2a:35:26:
b5:0e:6f:f5:ad:8c:73:62:ea:56:4a:45:e8:c3:10:
5c:55:bb:25:ce:94:ae:6d:4a:75:b6:61:b0:53:b1:
3c:d7:8a:ed:22:5a:5a:ff:96:62:08:d6:82:68:00:
5f:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:DD:5E:28:65:00:29:7B:51:18:C0:20:97:CF:99:1B:EE:36:20:A3
X509v3 Authority Key Identifier:
keyid:AE:DA:EE:A9:11:7A:1D:5C:CC:32:02:22:95:5A:09:FA:A0:79:8F:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rtruqRF6HVzMMgIilVoJ-qB5j9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/At1eKGUAKXtRGMAgl8-ZG-42IKM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/rtruqRF6HVzMMgIilVoJ-qB5j9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.172.76.0/24
Signature Algorithm: sha256WithRSAEncryption
20:8f:c4:33:42:ea:a3:ef:71:ba:dd:39:04:67:2d:fd:d6:b8:
47:9a:94:18:a0:7f:05:68:9e:e1:7e:da:a4:fc:02:1f:95:d6:
a7:35:e8:1f:b0:eb:86:7c:59:bc:6c:a0:be:7e:79:6b:a1:1f:
de:db:07:b6:9a:6b:5b:0c:06:f9:cc:4b:ec:a6:c8:fe:58:b3:
a8:1d:e9:f4:3b:28:82:58:de:75:0b:e4:04:20:88:6b:87:06:
47:9d:27:84:89:27:5e:59:48:7a:f9:2e:e9:35:7b:17:97:a3:
18:8c:8e:90:cf:2c:35:c4:2c:aa:63:4d:cd:df:1c:2e:cf:2d:
5c:6a:ef:9f:01:da:37:3e:78:95:62:c7:58:48:3c:03:ae:93:
c8:bc:4e:aa:79:49:1b:50:f4:d9:92:9f:76:65:e3:40:7c:d2:
d6:f6:1c:86:be:9b:28:dc:c4:a5:bf:ae:27:3b:09:56:9e:af:
96:e7:80:90:9a:19:84:85:99:aa:f7:33:bf:64:c9:e2:fb:c6:
22:39:86:8f:4a:e0:32:73:6c:63:2c:20:21:da:64:6b:ef:4b:
f9:a4:9e:90:3c:b5:73:97:4b:bd:36:73:92:59:a0:ae:db:7c:
f0:9d:eb:26:81:9d:56:56:98:12:28:7c:ca:c4:e4:cf:93:6e:
f5:6e:1b:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:58 2024 by rpki-client on console-fra.rpki-client.org