Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/mQtlaAbIKPDDlYxuWR25E00ByvI.roa
File: mQtlaAbIKPDDlYxuWR25E00ByvI.roa (raw, json)
Hash identifier: RFHGqjJoCwIAPu6oVMIGQjLHuUHm8MZFoJH2TMpAN24=
Subject key identifier: 99:0B:65:68:06:C8:28:F0:C3:95:8C:6E:59:1D:B9:13:4D:01:CA:F2
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0185710C1A1212E404FB006BF234BF36D945
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/mQtlaAbIKPDDlYxuWR25E00ByvI.roa
Signing time: Mon 02 Jan 2023 05:54:56 +0000
ROA not before: Mon 02 Jan 2023 05:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25227
IP address blocks: 185.106.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Jan 2023 15:24:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:1a:12:12:e4:04:fb:00:6b:f2:34:bf:36:d9:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 2 05:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=990b656806c828f0c3958c6e591db9134d01caf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:6e:a7:e5:42:39:09:2e:d9:1a:7c:7a:8c:09:
bb:d3:b1:20:ff:dc:5c:35:19:aa:ee:8e:f7:62:62:
d2:36:21:25:52:91:26:db:ad:f8:c9:33:b6:59:b4:
78:eb:ee:46:71:ce:0a:00:bc:23:a9:75:ef:5f:a6:
dd:3f:19:cd:f3:1f:51:7c:2c:ea:a0:b7:77:b7:90:
7e:70:f9:51:fa:ed:4a:6a:b1:19:c6:3c:bb:d5:e8:
0c:1b:73:58:c3:28:c9:b4:24:ad:37:db:03:16:09:
85:94:82:52:30:2d:f6:a6:e6:70:c9:08:ab:e7:ba:
a3:41:15:c6:a9:9a:2a:51:2f:9c:45:89:f6:cd:ca:
d9:15:98:ca:2d:6e:98:88:66:4c:29:33:69:4e:51:
f4:32:c1:7f:7e:f3:f1:ba:97:35:3c:86:9f:1f:0c:
ad:61:6d:80:20:fa:e0:6d:04:51:83:62:a0:89:79:
03:6a:e8:57:a6:4c:6e:f0:86:04:5b:f5:e6:60:63:
ad:b6:80:f2:6c:f3:ab:c3:f2:f6:bb:bb:ed:bd:60:
55:c5:af:30:f0:1d:9c:cc:85:57:ad:a8:15:a9:54:
82:41:96:f2:5c:13:58:e1:ae:ac:7e:f2:68:80:1d:
47:46:7c:b4:fa:05:73:b8:15:77:d0:b8:a9:3e:81:
26:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:0B:65:68:06:C8:28:F0:C3:95:8C:6E:59:1D:B9:13:4D:01:CA:F2
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/mQtlaAbIKPDDlYxuWR25E00ByvI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.106.95.0/24
Signature Algorithm: sha256WithRSAEncryption
16:a3:2a:67:5e:4f:b2:f4:1b:3d:03:49:60:9b:a5:4c:ea:66:
72:94:38:09:ba:72:a8:f5:be:38:86:e6:27:e0:ea:8c:0c:30:
22:dc:6f:ee:82:cf:2d:e1:5f:8d:eb:07:74:c4:0a:fd:85:9b:
79:d2:b6:3a:d6:6d:9c:ae:a4:a1:2c:37:1b:00:0b:d1:ef:ae:
07:3c:f6:09:00:85:c0:4b:6a:3e:9e:b9:f2:a5:81:cf:50:d4:
3b:4b:1b:72:cd:62:e3:b4:68:6e:a1:44:35:cb:62:f2:92:c4:
a6:b3:3d:00:b9:53:8a:ba:51:b1:c9:c9:ad:df:54:56:6d:87:
2d:dd:39:92:ba:17:4c:50:c7:b5:71:8f:ed:ed:29:a0:2d:f8:
61:07:9e:04:fd:ca:60:7a:41:df:07:ce:d4:47:73:a9:48:fa:
65:9e:0d:33:38:e8:84:d8:8e:d7:70:26:86:84:f4:02:93:03:
8c:cd:74:fd:eb:f1:ec:cc:e7:d2:e8:74:e8:53:9f:60:bd:24:
76:7e:02:4d:c5:2e:ab:1f:52:86:e2:69:d8:14:af:63:e2:0b:
14:12:bd:b0:8c:dc:7f:f1:be:ad:30:5c:3a:ea:d8:ae:97:f4:
a5:de:17:1c:f1:4d:2b:3d:da:dd:de:97:15:b9:79:6d:f8:40:
66:41:84:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org