Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/qlsm6XORh6EXcPAcSQFISgUCdp8.roa
File: qlsm6XORh6EXcPAcSQFISgUCdp8.roa (raw, json)
Hash identifier: Pry02rRa1VqkPksh+5ffBpW38SCMOKRfvj40Bh2ciyk=
Subject key identifier: AA:5B:26:E9:73:91:87:A1:17:70:F0:1C:49:01:48:4A:05:02:76:9F
Certificate issuer: /CN=290bcc50a9a33ba5651efd1afe40b6fdb02556f0
Certificate serial: 0185704BEC68576DFAE3A55DA22030F2E154
Authority key identifier: 29:0B:CC:50:A9:A3:3B:A5:65:1E:FD:1A:FE:40:B6:FD:B0:25:56:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/qlsm6XORh6EXcPAcSQFISgUCdp8.roa
Signing time: Mon 02 Jan 2023 02:25:01 +0000
ROA not before: Mon 02 Jan 2023 02:25:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49066
IP address blocks: 95.215.136.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:4b:ec:68:57:6d:fa:e3:a5:5d:a2:20:30:f2:e1:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=290bcc50a9a33ba5651efd1afe40b6fdb02556f0
Validity
Not Before: Jan 2 02:25:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aa5b26e9739187a11770f01c4901484a0502769f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9c:35:92:4d:2e:45:46:da:1a:83:c9:26:cb:
b9:8b:d8:e2:f0:5e:62:75:e9:55:69:da:4f:c0:48:
63:1c:e3:e2:b0:0c:b7:16:f3:49:02:48:eb:85:f1:
9b:21:d1:14:71:b2:c6:3e:9d:47:f7:1b:3e:4c:82:
0e:ed:66:dd:6c:eb:00:ee:5a:e2:0d:39:c7:f8:04:
7c:b5:51:76:11:85:cb:20:fd:5d:f0:7f:d2:73:c1:
00:c6:70:15:94:6d:12:67:a8:c7:0c:e0:7a:30:7e:
97:2e:c0:9f:7d:91:20:74:e7:6d:0e:5b:30:c3:36:
f4:3c:f3:2b:07:43:c9:ac:5c:09:f5:1f:3d:6c:68:
ea:d5:39:90:9a:18:94:93:fc:89:b0:b8:4b:60:99:
79:23:76:cf:47:65:18:b2:fd:67:31:64:ed:3e:bc:
78:7c:35:76:7c:d8:6b:4e:6b:a2:18:cf:7f:63:38:
39:7e:e5:ab:6b:a0:77:e2:64:8b:33:72:77:e1:e2:
28:c5:7d:90:3f:66:4d:00:6b:a7:a0:d6:ac:59:27:
e7:2c:19:69:f6:b9:94:bd:e9:d8:7c:dd:8a:13:e7:
33:4e:82:d8:02:7a:92:93:80:4d:ae:7b:d0:5f:51:
25:04:3e:f2:75:a7:93:9f:87:9a:06:ba:66:72:91:
b5:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:5B:26:E9:73:91:87:A1:17:70:F0:1C:49:01:48:4A:05:02:76:9F
X509v3 Authority Key Identifier:
keyid:29:0B:CC:50:A9:A3:3B:A5:65:1E:FD:1A:FE:40:B6:FD:B0:25:56:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/qlsm6XORh6EXcPAcSQFISgUCdp8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.215.136.0/22
Signature Algorithm: sha256WithRSAEncryption
91:48:5f:e8:eb:e5:97:78:32:c6:55:38:e8:5f:c0:2a:9c:63:
fc:fc:21:85:13:16:9a:1a:86:dc:f5:9f:45:c4:ad:58:92:45:
91:13:79:a7:b4:1b:fe:8f:3a:39:9a:af:f0:a9:64:32:79:f6:
6d:6f:04:fb:0c:a6:52:e5:5d:fe:e2:eb:40:9b:69:ff:55:48:
1c:27:3a:d6:f5:9c:f8:c2:b3:9d:10:ab:29:a0:63:20:5e:87:
1f:bf:c2:5e:fa:c5:78:9e:79:ac:49:8b:a2:a2:16:9e:c3:5b:
ff:a1:e4:d7:d7:e8:2c:ca:fd:c0:4f:c2:1f:7e:f1:0b:04:ce:
9b:99:a9:45:81:81:4e:e1:89:fa:92:f0:bd:15:97:9f:74:29:
e4:80:21:99:0f:72:3b:6d:37:a2:ff:97:05:26:89:6e:6a:de:
2c:c1:a3:94:19:6d:2e:ef:75:6f:7e:06:15:2f:a3:3b:4f:53:
32:5b:ba:18:c8:a4:8f:bc:c6:f6:4b:66:5e:61:36:54:34:b7:
7f:a7:63:c0:19:be:e0:1c:a8:e8:d4:3d:b8:cc:34:d6:4d:e6:
bd:e6:5b:e1:b5:dd:6d:1e:f1:bc:88:b2:57:a2:00:50:f6:fa:
5b:d9:15:3f:21:68:40:46:16:c8:3a:fd:fa:07:bd:a3:eb:d6:
8c:a8:b9:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:09 2024 by rpki-client on console-fra.rpki-client.org