Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/a4aS6UtX3p94zx9E84vOOcuep6Q.roa
File: a4aS6UtX3p94zx9E84vOOcuep6Q.roa (raw, json)
Hash identifier: IfI4gZJQOPiOmUx8Nm8ao4WBhvbgr59qhhFAqUXRTXQ=
Subject key identifier: 6B:86:92:E9:4B:57:DE:9F:78:CF:1F:44:F3:8B:CE:39:CB:9E:A7:A4
Certificate issuer: /CN=864abd435f899d570a8e5fb83bdad1153455dee0
Certificate serial: 01856FC25B601B6F250F739FE03310ACFF13
Authority key identifier: 86:4A:BD:43:5F:89:9D:57:0A:8E:5F:B8:3B:DA:D1:15:34:55:DE:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/a4aS6UtX3p94zx9E84vOOcuep6Q.roa
Signing time: Sun 01 Jan 2023 23:54:46 +0000
ROA not before: Sun 01 Jan 2023 23:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62372
IP address blocks: 95.87.1.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:c2:5b:60:1b:6f:25:0f:73:9f:e0:33:10:ac:ff:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=864abd435f899d570a8e5fb83bdad1153455dee0
Validity
Not Before: Jan 1 23:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6b8692e94b57de9f78cf1f44f38bce39cb9ea7a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:64:48:e7:b2:df:8e:40:e7:a7:98:ca:c3:c0:
03:31:e4:70:ee:05:ba:48:13:bc:f7:86:fc:05:ea:
50:bd:20:91:40:45:69:05:d5:96:89:f1:3d:c5:26:
03:7a:45:64:e3:4a:49:e6:c6:9c:09:ee:c2:d5:24:
72:83:7a:b3:84:ff:bc:d4:b7:d1:c8:4d:97:92:85:
16:69:eb:d0:f3:9f:77:ea:06:a8:11:1f:82:12:8e:
2f:e2:5f:96:92:63:d8:8e:32:42:37:04:6e:44:05:
ad:27:32:af:42:50:f1:b1:eb:47:58:ab:87:51:cc:
cf:54:53:ea:4c:cf:52:bc:15:0f:0a:d0:3e:91:ae:
77:5d:b3:b9:23:06:5f:07:bc:81:44:1a:5b:cd:b7:
0d:cc:b4:67:f8:29:c4:9c:d8:18:ce:36:cc:8e:be:
18:db:f8:02:10:87:8a:46:1e:92:41:4c:6a:33:17:
47:1c:37:cc:32:b4:c2:19:cf:90:cd:d4:c6:63:80:
a4:14:a1:b7:7b:23:9a:3b:57:7e:3d:cf:e3:27:50:
9a:7b:96:77:b1:70:b6:44:fc:4c:8f:86:53:83:a0:
c9:b6:a5:a9:97:a0:fb:65:a3:04:da:04:d1:d9:da:
d8:b9:94:dd:50:4f:08:99:54:f9:a7:96:21:72:09:
d8:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:86:92:E9:4B:57:DE:9F:78:CF:1F:44:F3:8B:CE:39:CB:9E:A7:A4
X509v3 Authority Key Identifier:
keyid:86:4A:BD:43:5F:89:9D:57:0A:8E:5F:B8:3B:DA:D1:15:34:55:DE:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/a4aS6UtX3p94zx9E84vOOcuep6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.87.1.0/24
Signature Algorithm: sha256WithRSAEncryption
15:54:46:70:64:1e:1b:a2:77:d6:dc:56:7e:72:57:26:63:8a:
82:8c:fb:84:99:ed:29:f5:c5:08:42:10:90:50:34:16:b4:c3:
7b:b7:8e:f9:a0:50:bb:ad:13:ea:a7:96:8b:e9:f4:12:f5:e0:
ce:17:df:bf:2c:f1:65:2d:e3:46:ce:cf:73:f4:e5:c1:7f:38:
7e:84:5f:b2:a9:95:9f:ea:9a:32:b5:38:8d:74:2f:22:0e:ae:
87:e0:e1:ea:89:7d:1a:f5:66:54:28:13:1d:f8:65:9a:e7:fe:
37:89:89:05:05:17:49:ae:be:de:84:d7:29:b9:7a:a5:f2:d4:
7d:cb:44:04:89:e4:6a:41:55:34:0a:fa:7e:99:b2:4d:72:70:
08:1b:4e:d9:36:b8:1c:50:15:1d:75:d9:94:41:1e:a4:af:ad:
ca:7e:53:1b:25:4e:59:ca:f8:b8:f6:57:7b:d3:96:df:c0:e2:
31:0a:72:df:47:f1:f5:a7:b8:1b:e2:da:4a:fe:93:01:95:97:
a2:74:19:84:a8:ed:4a:46:3f:e8:02:94:7f:2a:ca:e1:8a:79:
ee:b5:ee:de:11:b6:5c:22:81:59:93:fe:b6:61:e3:d5:cd:91:
1c:47:34:8a:17:0b:f7:97:9d:4d:0b:c4:48:56:f1:34:ae:6d:
16:6b:e9:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 02:56:38 2024 by rpki-client on console.sobornost.net