Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/f35432-cf99-4f19-a76e-07b7fef0858f/1/IgaWkVFqvVhxoocqcnUjbxPgz9g.roa
File: IgaWkVFqvVhxoocqcnUjbxPgz9g.roa (raw, json)
Hash identifier: QjVtyCN+EoJ91ju299+4IgFU6K4Cz4VPUMTtqYUIl9o=
Subject key identifier: 22:06:96:91:51:6A:BD:58:71:A2:87:2A:72:75:23:6F:13:E0:CF:D8
Certificate issuer: /CN=c9b232958097b5863eafd047bb315171eaa01fb7
Certificate serial: 01856FC27A75C24187DAE85F009C3C90B42B
Authority key identifier: C9:B2:32:95:80:97:B5:86:3E:AF:D0:47:BB:31:51:71:EA:A0:1F:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ybIylYCXtYY-r9BHuzFRceqgH7c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/f35432-cf99-4f19-a76e-07b7fef0858f/1/IgaWkVFqvVhxoocqcnUjbxPgz9g.roa
Signing time: Sun 01 Jan 2023 23:54:54 +0000
ROA not before: Sun 01 Jan 2023 23:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57326
IP address blocks: 95.128.172.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:c2:7a:75:c2:41:87:da:e8:5f:00:9c:3c:90:b4:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9b232958097b5863eafd047bb315171eaa01fb7
Validity
Not Before: Jan 1 23:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=22069691516abd5871a2872a7275236f13e0cfd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:3f:7d:d4:98:87:72:0c:7f:c6:17:9a:47:23:
ce:1c:9d:6e:9d:4f:64:82:28:b6:bf:13:6a:9a:73:
3d:55:c5:eb:a1:a6:0f:8a:bb:b1:f2:d8:d4:d3:7d:
a3:d5:03:60:5f:00:d8:d8:c7:87:2f:58:2e:1e:a6:
b1:86:c9:2a:23:e5:a0:ed:18:c6:50:1c:1b:98:25:
ac:7a:53:1e:41:78:51:74:e1:b0:9f:4e:b9:6e:84:
38:d5:1d:17:4d:e4:13:b9:8f:10:f2:4a:a3:88:6a:
63:c5:91:8a:02:4d:48:b1:96:75:48:74:30:52:01:
79:c1:4b:3c:9b:0d:1b:42:b9:46:bb:89:c3:ca:cd:
90:aa:d2:f7:43:4a:c0:1d:5b:37:22:d1:70:ed:78:
f6:d4:b8:aa:54:5b:e6:42:78:fd:06:c4:4d:31:a2:
a1:6a:48:d8:39:32:b9:4f:7e:a7:11:9c:b4:da:59:
55:40:5a:45:ec:7c:db:49:3c:ac:2a:f3:01:a7:8c:
e2:32:e8:e6:e5:34:2d:81:ab:42:26:ed:a2:75:e7:
5e:cd:6c:61:17:c3:f7:f1:a6:dd:e0:84:fd:39:81:
9a:be:69:3f:2f:87:00:16:1a:64:67:d7:66:0f:ad:
bd:11:d7:4b:4b:27:84:cf:a3:14:72:cb:e2:1e:20:
f1:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:06:96:91:51:6A:BD:58:71:A2:87:2A:72:75:23:6F:13:E0:CF:D8
X509v3 Authority Key Identifier:
keyid:C9:B2:32:95:80:97:B5:86:3E:AF:D0:47:BB:31:51:71:EA:A0:1F:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ybIylYCXtYY-r9BHuzFRceqgH7c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f35432-cf99-4f19-a76e-07b7fef0858f/1/IgaWkVFqvVhxoocqcnUjbxPgz9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f35432-cf99-4f19-a76e-07b7fef0858f/1/ybIylYCXtYY-r9BHuzFRceqgH7c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.128.172.0/24
Signature Algorithm: sha256WithRSAEncryption
73:f9:31:cc:55:a5:2e:96:74:21:1d:25:c7:0c:64:71:c5:0b:
25:eb:36:e7:f7:51:f2:4b:ef:87:9f:6f:51:83:36:41:18:f8:
db:c1:b1:77:09:22:46:2b:c8:e3:9e:78:07:6a:ea:c3:5a:61:
b6:bf:f6:f2:d5:27:2d:d6:6d:9a:1c:74:63:79:27:4b:a3:f2:
0a:af:e2:24:d6:cb:52:06:a4:99:64:66:25:74:93:6f:48:65:
c9:0d:2c:68:22:f9:a6:5b:54:b9:b5:07:cd:d2:e6:14:fd:97:
61:ed:96:bc:06:d5:f9:f5:92:53:64:b2:25:44:99:c8:77:24:
0c:04:56:cf:3b:db:d4:30:52:62:09:fb:29:4e:1c:05:f2:f5:
dd:90:a2:d7:7e:4c:aa:be:53:70:62:fd:d5:46:58:46:f8:9c:
89:92:87:27:90:37:c4:63:18:3f:f5:28:0a:34:08:f5:10:36:
80:c0:b5:16:fd:4b:74:97:dc:c7:f2:d2:73:86:a1:1b:fe:15:
23:72:85:fa:c5:c6:75:99:33:32:f2:75:8d:2a:27:6c:8f:35:
3d:9f:3c:e1:1e:aa:ed:8f:d8:3f:d2:d4:55:92:99:fa:2d:91:
64:31:58:de:d9:da:75:af:a2:e7:f8:bb:ca:88:a7:ee:84:39:
7a:06:8a:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:14:54 2024 by rpki-client on console-ams.rpki-client.org