Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/2t_UZHeJIdbi-vTkNdIhfCRiM7Q.roa
File: 2t_UZHeJIdbi-vTkNdIhfCRiM7Q.roa (raw, json)
Hash identifier: +ISD+wwyGgK9x4ZnFo2HPjFWuu7jsSY8pQl3XBuRgU0=
Subject key identifier: DA:DF:D4:64:77:89:21:D6:E2:FA:F4:E4:35:D2:21:7C:24:62:33:B4
Certificate issuer: /CN=d434f1686102876c6216bcea28a5e502ec0d7b6b
Certificate serial: 018691EA46152772BB0FBEA51A772BBD7C6A
Authority key identifier: D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/2t_UZHeJIdbi-vTkNdIhfCRiM7Q.roa
Signing time: Mon 27 Feb 2023 08:08:14 +0000
ROA not before: Mon 27 Feb 2023 08:08:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201748
IP address blocks: 95.39.17.0/24 maxlen: 24
5.40.158.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:91:ea:46:15:27:72:bb:0f:be:a5:1a:77:2b:bd:7c:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d434f1686102876c6216bcea28a5e502ec0d7b6b
Validity
Not Before: Feb 27 08:08:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dadfd464778921d6e2faf4e435d2217c246233b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:16:a8:d6:64:e3:9d:c9:cc:6e:82:42:ed:8a:
8d:9f:30:e4:67:55:db:fa:11:d2:32:1a:02:2f:e9:
84:49:dc:05:30:4e:7d:50:f4:cb:0d:5d:78:1c:b3:
46:89:15:16:98:1e:51:d7:c6:58:6e:4b:40:af:21:
d2:64:ec:b2:2d:36:3b:8e:b2:2f:a1:2d:8d:24:37:
56:60:42:2c:4e:49:ce:f7:29:08:24:74:ac:05:eb:
20:fd:fb:ab:23:46:ef:0a:49:fb:51:18:eb:c1:d0:
e1:a4:3e:88:03:c8:df:0a:05:b3:67:37:a6:a9:7d:
03:e6:1d:5a:8d:f4:ef:14:6d:cf:79:14:0e:6c:06:
77:d3:93:a8:1c:65:65:1f:ad:86:b7:c4:4b:dd:d9:
87:c8:eb:b1:36:c7:1d:a6:83:9c:73:1f:c7:03:46:
5d:83:e3:34:2d:df:50:ad:dc:84:b4:12:c2:77:88:
06:55:b8:ac:75:00:90:aa:9d:35:65:76:be:25:74:
cb:e8:20:c2:22:c7:7b:6f:de:d1:1c:76:24:81:25:
d1:2e:2c:a6:11:71:f0:a9:3d:92:4e:56:84:50:bf:
b0:e5:f6:77:64:ab:cd:ba:98:05:8a:66:03:2b:8c:
33:0f:e7:08:57:11:a7:24:0c:b7:21:d0:b7:48:ce:
92:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:DF:D4:64:77:89:21:D6:E2:FA:F4:E4:35:D2:21:7C:24:62:33:B4
X509v3 Authority Key Identifier:
keyid:D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/2t_UZHeJIdbi-vTkNdIhfCRiM7Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.40.158.0/24
95.39.17.0/24
Signature Algorithm: sha256WithRSAEncryption
70:c9:b5:90:d3:ea:6d:9a:c4:33:fa:86:13:b5:80:1b:b6:3c:
02:0a:33:a6:24:5f:eb:f5:85:e2:3b:7a:72:ed:f8:1a:40:0b:
1e:5f:c4:54:0c:10:c6:46:84:aa:a4:04:59:6f:36:fb:eb:08:
87:ea:69:13:f5:35:ae:bd:f3:84:aa:68:55:f4:22:7a:4e:34:
3e:70:30:de:7e:38:91:cf:65:87:ea:aa:59:3f:42:ff:8e:a5:
d0:1c:39:0e:8e:cd:cd:78:ed:b9:5a:a5:02:f1:09:4f:53:ff:
90:87:e8:10:e0:13:3f:f0:4c:00:90:ac:14:0e:f5:d2:99:d5:
d3:1f:ae:98:93:06:a6:a2:73:ce:dc:5b:6a:20:70:0b:5b:ef:
48:ce:25:8c:91:9c:23:fa:84:7d:f0:fe:e9:0a:3c:74:d3:13:
64:33:dd:eb:cf:cd:95:23:5a:d5:76:81:3c:43:cc:a1:09:e3:
83:71:e1:f8:21:8f:92:da:81:02:a5:7f:ec:9a:19:a3:66:bf:
2c:be:80:78:11:66:43:94:f5:fc:8b:09:e5:e0:3d:a7:de:18:
49:c5:6b:e8:6c:1b:31:88:73:40:3b:a5:82:1c:32:06:06:40:
74:ca:70:84:47:5d:11:a7:b9:12:87:f0:ce:83:4e:44:f1:b0:
77:a1:9d:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:17:15 2024 by rpki-client on console-ams.rpki-client.org