Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/scxsMV3ZRP7gJKUMTgZDkU6Ie2s.roa
File: scxsMV3ZRP7gJKUMTgZDkU6Ie2s.roa (raw, json)
Hash identifier: ylYjDN4p1EQbF8MPmuWgv+GWY2pBzOfbgpsNg9XAJtI=
Subject key identifier: B1:CC:6C:31:5D:D9:44:FE:E0:24:A5:0C:4E:06:43:91:4E:88:7B:6B
Certificate issuer: /CN=864abd435f899d570a8e5fb83bdad1153455dee0
Certificate serial: 01856FC25C735232CFDA1E6F42B895910CA0
Authority key identifier: 86:4A:BD:43:5F:89:9D:57:0A:8E:5F:B8:3B:DA:D1:15:34:55:DE:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/scxsMV3ZRP7gJKUMTgZDkU6Ie2s.roa
Signing time: Sun 01 Jan 2023 23:54:46 +0000
ROA not before: Sun 01 Jan 2023 23:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211265
IP address blocks: 95.87.58.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:c2:5c:73:52:32:cf:da:1e:6f:42:b8:95:91:0c:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=864abd435f899d570a8e5fb83bdad1153455dee0
Validity
Not Before: Jan 1 23:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1cc6c315dd944fee024a50c4e0643914e887b6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:5d:83:e1:e2:1b:a5:1c:28:4f:07:fc:d7:cc:
0a:c0:6e:c8:20:1b:2f:ec:7b:0e:fc:3a:c7:bb:64:
5a:3e:9a:46:1a:38:f0:c5:a7:e8:81:f2:c4:c9:b3:
59:11:ae:de:fe:fb:00:62:9a:ac:2b:91:f0:38:af:
ae:84:1c:c2:ac:43:09:c3:86:63:39:31:52:c2:c8:
bd:77:33:6b:2c:e8:bf:66:f1:aa:f2:11:29:90:f5:
c2:2a:3e:85:33:70:28:32:7f:9c:e8:f9:4a:47:37:
14:4d:c9:b1:57:42:9a:6a:b9:2c:4a:72:75:b5:f7:
a6:e4:a1:81:22:71:dd:e9:ba:7f:be:2b:ba:0f:85:
0f:eb:30:c2:23:89:30:f1:dc:a1:76:9d:8a:fa:13:
f2:d0:13:48:c3:f0:19:c2:49:fb:88:db:b1:a7:ae:
0f:26:76:ba:6f:ff:d1:3c:7c:19:37:75:d6:f5:7c:
16:06:f1:b8:98:3c:41:e4:5a:76:bd:a1:09:25:bb:
3a:90:fe:0f:e4:d4:b1:89:8d:c0:d0:93:3d:94:78:
f1:f3:90:77:a5:1e:3f:2c:2f:ba:dd:7e:20:d4:8e:
ab:7c:51:6c:07:3c:af:82:35:54:02:8b:8b:54:e5:
cb:f7:c4:08:7a:26:72:e3:98:80:fc:ed:48:42:20:
d3:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:CC:6C:31:5D:D9:44:FE:E0:24:A5:0C:4E:06:43:91:4E:88:7B:6B
X509v3 Authority Key Identifier:
keyid:86:4A:BD:43:5F:89:9D:57:0A:8E:5F:B8:3B:DA:D1:15:34:55:DE:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/scxsMV3ZRP7gJKUMTgZDkU6Ie2s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.87.58.0/23
Signature Algorithm: sha256WithRSAEncryption
47:b4:23:20:0e:16:2d:b5:0b:7e:8e:06:c2:97:0b:4f:f6:58:
c0:16:aa:9c:4f:0d:cd:78:95:7b:ec:9c:b7:ff:21:95:dd:cb:
7d:22:de:b5:35:20:38:9d:0d:39:ea:cb:02:eb:27:77:c5:50:
e4:14:f9:e2:5a:c0:de:02:c9:2d:b2:8d:9a:e2:67:dc:32:ab:
b3:8c:bd:44:7e:7c:bb:81:36:53:50:64:bd:ed:5c:c5:0f:55:
b6:ed:3c:76:a1:4b:c6:b9:04:b2:f1:47:56:69:dd:d1:92:6d:
bc:e5:32:db:27:0e:12:a5:c4:92:24:fb:5f:5e:f1:8a:6d:6a:
d5:60:df:1b:4b:f6:1d:3d:9f:e2:7a:85:f8:0a:28:f6:37:81:
c2:cb:e0:07:42:b8:96:1f:e7:6d:55:d6:ee:19:c4:6b:4c:db:
1b:71:c0:47:fb:e9:df:40:c1:d4:94:70:ae:88:58:c0:33:4c:
63:57:08:92:a5:d6:92:80:bf:d1:ad:ac:cc:27:ea:2c:eb:ab:
bc:c8:8b:01:61:82:1f:a4:3a:34:35:66:fe:01:eb:cc:de:19:
96:9b:6e:05:6a:2c:f8:23:6d:64:61:2b:b5:ba:59:2e:53:50:
c0:f9:e7:13:75:87:78:6f:e0:dd:cf:b8:de:ba:be:6f:8f:3c:
bf:b1:78:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 02:56:38 2024 by rpki-client on console.sobornost.net