Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/a3df81-2096-493d-b106-46d6cea20342/1/3QVHw8SjRgV0yd_nBHXobKA7Lew.roa
File: 3QVHw8SjRgV0yd_nBHXobKA7Lew.roa (raw, json)
Hash identifier: b9vCjbwHAaoVepFD8rqgagguTAQpY15+fKsqZ12ydXU=
Subject key identifier: DD:05:47:C3:C4:A3:46:05:74:C9:DF:E7:04:75:E8:6C:A0:3B:2D:EC
Certificate issuer: /CN=191ee3af820563494647551a5206ef0c45cf95c9
Certificate serial: 018602F2BE2C9D7838A863FE0411F8C21614
Authority key identifier: 19:1E:E3:AF:82:05:63:49:46:47:55:1A:52:06:EF:0C:45:CF:95:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GR7jr4IFY0lGR1UaUgbvDEXPlck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/a3df81-2096-493d-b106-46d6cea20342/1/3QVHw8SjRgV0yd_nBHXobKA7Lew.roa
Signing time: Mon 30 Jan 2023 13:51:48 +0000
ROA not before: Mon 30 Jan 2023 13:51:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12727
IP address blocks: 95.131.18.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:02:f2:be:2c:9d:78:38:a8:63:fe:04:11:f8:c2:16:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=191ee3af820563494647551a5206ef0c45cf95c9
Validity
Not Before: Jan 30 13:51:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dd0547c3c4a3460574c9dfe70475e86ca03b2dec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:10:ab:01:f9:a9:97:0b:b5:11:56:1f:3b:4b:
93:35:72:08:25:ae:c1:f9:2e:81:6c:c3:83:bc:96:
b0:ef:38:f3:fa:6e:98:05:6d:52:b9:a2:df:b5:be:
87:84:3c:6e:17:be:de:72:e2:95:b0:64:2d:94:13:
6b:53:9b:0d:73:e8:ae:8a:1a:4b:4b:89:3e:44:0d:
21:85:3b:6b:b1:ea:fe:51:34:ac:4c:e0:a2:0e:fe:
1a:9d:4f:77:75:82:6f:80:9c:4d:ac:a2:c0:56:c4:
42:80:ce:95:11:97:ac:6d:13:b8:6f:7f:81:6b:a4:
47:af:a3:c6:fc:20:5d:32:56:60:5f:70:ae:b2:d5:
3f:30:54:d5:17:27:29:68:bc:aa:b1:2c:8c:ba:1b:
13:1b:5e:38:83:4b:b5:12:b4:93:4b:46:84:40:d7:
df:05:70:6b:b3:f0:97:4b:22:d0:c2:b0:28:c9:e7:
22:00:2e:58:2d:72:e4:f0:40:b3:51:59:df:c1:24:
d5:98:5e:ea:cf:c4:ae:e8:61:4f:78:1e:5c:b1:6a:
01:4f:2a:96:8e:68:6d:17:40:3e:db:93:b0:f3:8c:
49:cf:af:4c:ff:8d:82:0b:e3:e6:71:f1:3e:e8:d1:
3f:ae:10:16:20:dd:5f:7f:50:4e:60:53:9b:7b:fb:
44:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:05:47:C3:C4:A3:46:05:74:C9:DF:E7:04:75:E8:6C:A0:3B:2D:EC
X509v3 Authority Key Identifier:
keyid:19:1E:E3:AF:82:05:63:49:46:47:55:1A:52:06:EF:0C:45:CF:95:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GR7jr4IFY0lGR1UaUgbvDEXPlck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/a3df81-2096-493d-b106-46d6cea20342/1/3QVHw8SjRgV0yd_nBHXobKA7Lew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/a3df81-2096-493d-b106-46d6cea20342/1/GR7jr4IFY0lGR1UaUgbvDEXPlck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.131.18.0/23
Signature Algorithm: sha256WithRSAEncryption
48:5b:c7:11:76:e9:e7:2d:77:df:e6:57:8b:54:f9:f9:47:c4:
7f:9e:48:21:ae:59:5e:68:eb:41:4c:30:da:48:07:67:c4:9c:
a1:41:45:52:6d:45:89:0b:1e:4f:69:f8:1e:80:99:89:5c:90:
71:98:85:cf:be:af:73:50:a7:3b:84:e5:47:ed:9e:f6:12:a0:
17:05:42:e7:43:2c:ab:ea:cd:54:b5:dc:68:75:77:9c:11:fa:
e3:dc:c3:bd:29:e0:01:1e:40:b9:8c:a9:1e:a1:eb:32:c6:c7:
7c:54:7d:5c:ce:6a:5b:33:b8:89:a9:ea:41:9d:1c:7f:57:70:
34:94:bb:e4:e7:1c:14:54:e1:e4:0c:44:e4:18:a9:3a:72:45:
8c:8f:a4:7f:d4:97:6e:5f:f6:cf:e6:35:57:44:cf:26:74:05:
a3:8d:61:ba:ff:51:17:e5:3b:22:9a:15:11:7a:3d:2c:06:cc:
bc:5e:9a:5d:75:12:41:24:8e:d3:31:2f:2b:ea:67:66:c6:c0:
1d:e8:b9:f7:cc:cd:4a:94:61:10:db:83:ce:ad:c3:32:7c:ca:
ee:42:ba:e9:07:69:0f:1b:26:4a:5f:9b:46:2b:df:65:b6:1e:
a8:b9:3b:24:90:8b:34:70:4b:f5:30:f1:89:f0:77:ba:2c:05:
fc:1b:99:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:19 2024 by rpki-client on console-fra.rpki-client.org