Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/47yLnY5oPkFfQ2DL4ihVE1Wc1nc.roa
File: 47yLnY5oPkFfQ2DL4ihVE1Wc1nc.roa (raw, json)
Hash identifier: u3/fvlP9TP2VdGFd14C5NYYM0EJzWWRV/JicUaXOLus=
Subject key identifier: E3:BC:8B:9D:8E:68:3E:41:5F:43:60:CB:E2:28:55:13:55:9C:D6:77
Certificate issuer: /CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Certificate serial: 018BB8E6377C86120B7C5EC3C24BB8221DED
Authority key identifier: DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/47yLnY5oPkFfQ2DL4ihVE1Wc1nc.roa
Signing time: Fri 10 Nov 2023 11:02:57 +0000
ROA not before: Fri 10 Nov 2023 11:02:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 94.154.44.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sun 24 Dec 2023 22:44:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b8:e6:37:7c:86:12:0b:7c:5e:c3:c2:4b:b8:22:1d:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Validity
Not Before: Nov 10 11:02:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3bc8b9d8e683e415f4360cbe2285513559cd677
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:06:a6:14:19:ae:56:af:f1:f8:4f:c3:42:2f:
7b:68:3b:09:05:18:45:54:50:d0:96:1d:a3:f7:99:
91:78:87:d4:0c:e7:60:08:fb:d4:6a:cc:bb:6c:1c:
d3:84:3d:25:64:21:c9:aa:93:a0:91:be:d9:e3:7a:
d2:d1:2b:c6:ae:16:60:d8:2c:5c:8a:e3:a8:02:91:
e2:2d:90:96:ea:87:69:db:91:ca:8f:14:b3:d3:ed:
a1:5d:72:44:80:99:d6:52:e9:4c:53:1d:3c:99:71:
41:bb:33:ad:61:11:79:e4:53:94:c3:c7:0a:2c:8a:
c3:36:66:67:0c:0a:d5:ca:52:46:b8:12:e6:cc:90:
88:d8:73:be:be:a8:6e:5b:c4:92:90:20:de:60:51:
1b:0d:87:8a:db:c1:e2:05:a3:19:88:23:50:8e:8b:
ad:2f:a0:cc:7a:af:45:ef:81:15:86:b8:41:3a:03:
35:e6:6c:14:33:3b:52:da:46:06:4b:b5:06:02:1e:
e6:da:a9:77:48:56:a2:2b:78:3d:2d:d0:5c:4e:f8:
19:1b:5f:35:48:33:3a:cc:71:56:53:2c:92:fa:b5:
b5:ed:17:27:53:f9:a5:b7:63:e8:50:33:02:61:88:
13:bc:7b:98:95:c2:67:46:65:e9:fe:e1:21:37:51:
72:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:BC:8B:9D:8E:68:3E:41:5F:43:60:CB:E2:28:55:13:55:9C:D6:77
X509v3 Authority Key Identifier:
keyid:DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/47yLnY5oPkFfQ2DL4ihVE1Wc1nc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/3BHa76_4HH5QEnjYfZvCsgTXEVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.44.0/23
Signature Algorithm: sha256WithRSAEncryption
82:4f:a2:0a:96:21:f3:cb:23:a1:a3:26:4a:94:63:0f:6e:ed:
2a:98:5f:3d:ad:23:a8:3d:11:f0:67:8d:98:66:30:be:8a:20:
6f:4b:12:df:d0:5d:e8:c5:0b:6a:c5:c2:5a:56:7f:f0:6a:cd:
30:83:96:97:a5:f0:e2:ce:15:2e:8e:3c:aa:5a:8e:55:1d:1c:
8c:13:44:45:ca:82:00:86:c6:de:43:c1:d8:a0:a3:d9:0b:7e:
b4:78:43:17:b7:09:79:f9:44:b8:69:b1:3f:2d:f5:7a:d0:83:
37:c4:5d:1c:fa:46:ac:d1:12:c0:26:46:98:60:7e:c6:89:ce:
12:88:f1:66:9c:bf:96:33:ec:2c:91:34:83:29:29:74:56:82:
f5:f9:95:1b:2a:4a:79:10:4b:bd:3e:e2:b4:8a:c3:4c:20:92:
23:ab:10:6b:7c:f0:b3:dd:17:2d:cc:7d:60:44:fa:7b:c1:ac:
7e:9e:ed:85:07:b8:b9:99:db:67:ff:80:45:de:5d:18:7c:04:
16:9d:1e:55:a7:b2:4c:52:a6:6e:b5:d9:1c:55:e4:1b:e7:99:
7d:1b:cc:6d:c6:16:06:ad:42:45:17:70:0a:4b:46:aa:95:81:
1f:11:ca:74:0b:dc:38:fc:78:fa:ab:44:d6:33:fa:42:75:b9:
b9:9c:e3:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:31 2024 by rpki-client on console-fra.rpki-client.org