Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/kojFlQn6lbf3JcIGEwhWeavzk0w.roa
File: kojFlQn6lbf3JcIGEwhWeavzk0w.roa (raw, json)
Hash identifier: dQaVm24LwQRZAD2JHRwtj8tRXcijcmFi6o+gzIlTYRU=
Subject key identifier: 92:88:C5:95:09:FA:95:B7:F7:25:C2:06:13:08:56:79:AB:F3:93:4C
Certificate issuer: /CN=f0c104041691dc384f3b1a8cdf95c96628ea6daf
Certificate serial: 018C059E7B534D73965999EAD17FBB92C863
Authority key identifier: F0:C1:04:04:16:91:DC:38:4F:3B:1A:8C:DF:95:C9:66:28:EA:6D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8MEEBBaR3DhPOxqM35XJZijqba8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/kojFlQn6lbf3JcIGEwhWeavzk0w.roa
Signing time: Sat 25 Nov 2023 08:35:21 +0000
ROA not before: Sat 25 Nov 2023 08:35:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42337
IP address blocks: 95.38.136.0/22 maxlen: 22
95.38.140.0/22 maxlen: 22
95.38.152.0/24 maxlen: 24
95.38.152.0/21 maxlen: 21
95.38.153.0/24 maxlen: 24
95.38.168.0/22 maxlen: 22
95.38.174.0/24 maxlen: 24
95.38.96.0/21 maxlen: 21
95.38.97.0/24 maxlen: 24
95.38.98.0/24 maxlen: 24
95.38.96.0/24 maxlen: 24
95.38.104.0/22 maxlen: 22
95.38.99.0/24 maxlen: 24
95.38.130.0/23 maxlen: 23
95.38.132.0/22 maxlen: 22
95.38.240.0/21 maxlen: 21
95.38.243.0/24 maxlen: 24
95.38.244.0/24 maxlen: 24
95.38.245.0/24 maxlen: 24
95.38.241.0/24 maxlen: 24
95.38.242.0/24 maxlen: 24
95.38.246.0/24 maxlen: 24
95.38.248.0/22 maxlen: 22
95.38.247.0/24 maxlen: 24
95.38.200.0/22 maxlen: 22
95.38.208.0/22 maxlen: 22
95.38.240.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 27 Nov 2023 10:20:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:05:9e:7b:53:4d:73:96:59:99:ea:d1:7f:bb:92:c8:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0c104041691dc384f3b1a8cdf95c96628ea6daf
Validity
Not Before: Nov 25 08:35:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9288c59509fa95b7f725c20613085679abf3934c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:02:8d:d1:02:1f:7c:9d:ff:5b:12:ae:7a:6f:
cf:7d:03:ba:23:95:7f:15:bb:93:67:86:8c:6b:e5:
5e:77:45:4a:fd:0b:da:3a:e8:7b:08:07:61:d1:0d:
c7:b2:e1:1b:18:db:a1:c2:a8:a9:aa:38:08:96:66:
34:33:2a:d4:75:0b:4e:55:de:02:5d:44:a6:ef:79:
69:dd:9b:45:23:71:26:06:37:dd:41:8b:50:fb:ca:
b2:fa:82:8c:8c:d2:2a:f3:74:f4:fb:fa:f5:59:61:
46:44:3c:91:55:a9:3b:c6:86:5a:c9:1b:59:10:58:
ee:3f:d2:01:2f:cf:2f:e6:c3:8e:f5:7e:e0:57:12:
b5:b8:06:06:97:65:cb:d5:b3:44:dc:52:25:16:2d:
fe:43:53:24:a1:fb:87:27:c8:ab:de:14:4c:44:ab:
8e:7b:7c:cf:46:12:8e:f5:2f:32:a9:ed:ed:52:e2:
ce:f1:eb:eb:3e:20:56:81:b8:c0:bb:b2:74:f0:12:
8f:b6:b5:de:5f:85:9d:86:a4:0e:45:8d:0e:4c:59:
e3:b7:1e:92:ad:4a:8b:0c:e7:96:f2:2c:f7:f7:2b:
58:c2:0c:3f:7e:37:06:89:d2:96:f3:08:a5:28:fe:
d4:90:60:67:75:20:6d:96:d2:3d:ec:c1:9a:26:6d:
7d:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:88:C5:95:09:FA:95:B7:F7:25:C2:06:13:08:56:79:AB:F3:93:4C
X509v3 Authority Key Identifier:
keyid:F0:C1:04:04:16:91:DC:38:4F:3B:1A:8C:DF:95:C9:66:28:EA:6D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8MEEBBaR3DhPOxqM35XJZijqba8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/kojFlQn6lbf3JcIGEwhWeavzk0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/8MEEBBaR3DhPOxqM35XJZijqba8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.38.96.0-95.38.107.255
95.38.130.0-95.38.143.255
95.38.152.0/21
95.38.168.0/22
95.38.174.0/24
95.38.200.0/22
95.38.208.0/22
95.38.240.0-95.38.251.255
Signature Algorithm: sha256WithRSAEncryption
60:6c:20:c1:4f:a4:0f:c2:27:b5:c0:31:ea:1f:e3:6b:6e:0c:
bf:ff:84:64:5b:c7:bb:fa:07:18:44:c5:77:cc:23:a2:3c:9a:
cf:8e:f3:33:ce:4c:56:8b:be:57:d1:f4:95:92:62:22:ce:4b:
89:36:15:ac:ae:e6:50:78:bc:2d:73:c5:c8:31:0e:88:83:bc:
66:51:7b:f3:fb:30:34:82:56:cf:89:86:33:d6:a1:71:e9:63:
9e:95:a3:c1:80:82:09:07:61:91:85:89:cc:f6:3d:6c:e5:7c:
91:10:ed:ab:5b:89:eb:cc:d5:37:80:e5:03:06:c5:a3:04:aa:
10:e3:3e:3c:82:65:5c:de:3e:eb:61:a2:98:59:b8:6b:4d:bb:
bd:ab:ed:ff:81:c0:09:ae:29:54:02:25:02:9e:e6:db:c0:93:
d0:71:04:4d:0c:bb:e8:0a:f4:63:c4:f5:ee:2b:51:78:b7:53:
0f:0b:fc:9a:1b:ff:e9:0a:a0:53:29:38:92:d9:20:66:02:74:
cf:67:9c:cd:79:64:db:ca:bf:ff:9b:6f:35:b3:f4:1e:a5:99:
c5:a5:cf:bc:a3:03:71:0e:50:b0:a2:df:92:3d:57:5e:bc:78:
1d:27:59:ef:c7:dd:3a:bc:66:09:d5:63:06:4f:93:ae:a6:c3:
17:61:79:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:45 2024 by rpki-client on console-ams.rpki-client.org