Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/CRs6N7Kas_aGLsZ-4Za6y4UkXHc.roa
File: CRs6N7Kas_aGLsZ-4Za6y4UkXHc.roa (raw, json)
Hash identifier: tDoMp1eSF2UJocU2vwjY3XrrUBJQaR9MFa6ZxGZkdQI=
Subject key identifier: 09:1B:3A:37:B2:9A:B3:F6:86:2E:C6:7E:E1:96:BA:CB:85:24:5C:77
Certificate issuer: /CN=d48a27f44b10404c52f6ffc4e08dc82bf8b5dee4
Certificate serial: 018BC7DCCA2417DF63847DDEF60E78B9F51A
Authority key identifier: D4:8A:27:F4:4B:10:40:4C:52:F6:FF:C4:E0:8D:C8:2B:F8:B5:DE:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/CRs6N7Kas_aGLsZ-4Za6y4UkXHc.roa
Signing time: Mon 13 Nov 2023 08:46:57 +0000
ROA not before: Mon 13 Nov 2023 08:46:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211936
IP address blocks: 95.178.8.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:c7:dc:ca:24:17:df:63:84:7d:de:f6:0e:78:b9:f5:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d48a27f44b10404c52f6ffc4e08dc82bf8b5dee4
Validity
Not Before: Nov 13 08:46:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=091b3a37b29ab3f6862ec67ee196bacb85245c77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6c:42:a9:dd:83:62:f2:5a:03:e0:93:02:81:
fa:cd:97:c4:14:24:35:b6:0a:45:1a:9e:1f:17:b8:
7a:0a:2a:54:17:34:30:e9:1f:d9:41:19:3b:a6:b8:
97:41:39:c9:68:7d:54:f9:ea:b5:5b:c1:3b:a7:19:
7b:51:f4:57:d7:cb:77:28:51:0e:7f:66:61:f9:50:
ed:1b:b4:a4:42:e3:ac:64:60:25:97:24:1b:76:d5:
fe:73:23:e9:91:de:82:e2:27:22:4d:6f:0b:69:b3:
1a:2a:e8:51:9c:40:16:b4:b0:91:06:52:9b:11:a5:
ea:bd:b5:d8:52:1b:1a:36:3f:67:05:9e:6d:c6:3a:
da:ad:04:f2:38:f2:fb:12:58:68:50:8a:df:6b:ec:
1c:c7:cd:ca:42:8c:7f:ca:82:f9:a7:04:46:2d:46:
23:0d:27:dc:69:9f:db:ed:bf:f9:23:4b:02:4c:87:
bc:35:0f:b7:5b:87:f6:a9:c1:25:17:02:c5:8e:b3:
3d:80:96:4d:a8:4f:48:2d:3c:8e:91:c3:4b:1a:ed:
fd:8d:ed:ad:c3:18:b8:8f:20:59:48:05:79:e8:49:
5a:31:ec:92:b8:af:99:d6:ce:9a:9f:2e:c5:ff:8c:
04:f3:16:04:dc:35:31:6d:83:e7:15:c7:df:ae:71:
a3:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:1B:3A:37:B2:9A:B3:F6:86:2E:C6:7E:E1:96:BA:CB:85:24:5C:77
X509v3 Authority Key Identifier:
keyid:D4:8A:27:F4:4B:10:40:4C:52:F6:FF:C4:E0:8D:C8:2B:F8:B5:DE:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/CRs6N7Kas_aGLsZ-4Za6y4UkXHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/1Ion9EsQQExS9v_E4I3IK_i13uQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.178.8.0/21
Signature Algorithm: sha256WithRSAEncryption
3c:93:fa:9e:a9:25:0f:62:9e:e2:54:6c:5a:1a:c2:2f:45:41:
39:0e:ad:1d:f4:ea:6f:9e:75:56:de:5e:62:9e:4f:5f:67:5b:
29:26:99:77:5d:b4:a7:7f:90:ca:f8:fa:cd:7d:b2:99:dd:58:
d5:f2:5d:f6:5f:08:24:ca:79:12:45:f0:54:70:ee:b9:0d:56:
80:55:c0:dd:44:4f:7d:46:32:8c:70:fc:27:20:36:22:99:f8:
94:f1:25:8f:a0:76:06:85:b7:c7:a9:59:1a:83:6b:bf:cf:d2:
3b:3c:46:7b:20:3a:eb:93:b1:70:2f:af:45:df:aa:c3:2d:07:
73:a7:3b:48:9b:b6:7d:79:1c:9c:d8:4a:72:18:30:a3:ad:ec:
c3:48:2f:15:73:3f:6e:f0:d2:1b:b6:87:8e:5a:46:eb:1e:3a:
47:74:39:af:3a:22:02:f4:e7:3d:e3:43:1c:4d:3e:6c:bb:99:
67:c2:db:ec:2c:4a:3b:53:11:c3:b7:66:96:01:7a:dc:1f:a2:
2e:77:49:37:5b:cb:95:f6:55:45:9b:bc:b0:1c:f5:f3:2a:b4:
ca:61:d8:b8:ec:5e:cf:0d:df:d5:a3:35:5d:25:14:44:28:1f:
d5:e5:fd:1a:0e:c3:28:4e:27:e7:62:b3:cc:c2:18:c0:83:6a:
27:e0:c9:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:35:41 2024 by rpki-client on console-ams.rpki-client.org