Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/zFkqLD1g84W7lFsMaxujAje1kh4.roa
File: zFkqLD1g84W7lFsMaxujAje1kh4.roa (raw, json)
Hash identifier: rzX6wxp7a4hjv166LQuIcfSA6ic0XffAD1zt/r72f/Y=
Subject key identifier: CC:59:2A:2C:3D:60:F3:85:BB:94:5B:0C:6B:1B:A3:02:37:B5:92:1E
Certificate issuer: /CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Certificate serial: 018C02E96E4968F79E6BFF2052D70B2C352E
Authority key identifier: DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/zFkqLD1g84W7lFsMaxujAje1kh4.roa
Signing time: Fri 24 Nov 2023 19:58:21 +0000
ROA not before: Fri 24 Nov 2023 19:58:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16589
IP address blocks: 94.154.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 28 Nov 2023 09:43:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:02:e9:6e:49:68:f7:9e:6b:ff:20:52:d7:0b:2c:35:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Validity
Not Before: Nov 24 19:58:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cc592a2c3d60f385bb945b0c6b1ba30237b5921e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b3:03:91:7b:6e:9a:16:f9:3d:0c:21:fd:af:
90:db:86:b9:1b:bc:b7:3d:29:f6:ff:bd:50:04:ae:
0d:d4:5e:02:01:f9:52:0f:bf:9a:8e:31:95:21:e6:
2e:d2:52:17:ef:53:fa:de:d7:93:f4:b5:ba:67:74:
76:42:51:73:1c:37:b7:08:9b:f6:94:09:ee:2d:25:
51:81:03:64:26:4c:a5:5d:f1:12:7e:c2:7e:c5:5d:
cd:9c:48:78:79:55:9d:c2:14:88:27:aa:f7:20:83:
8f:fe:f7:da:b0:b7:7c:7d:be:2a:c1:8a:9a:a4:c0:
86:b3:b4:40:17:54:50:68:a7:b5:33:3d:82:ba:56:
cd:e6:12:08:5a:64:a8:b4:e2:5c:84:3e:f2:99:fa:
06:09:4c:f1:57:38:5c:53:97:6f:97:23:fc:76:8f:
b8:47:25:e3:9f:39:21:07:82:58:82:78:6a:2a:f0:
e4:1b:3b:2e:e0:57:5c:f2:bf:ee:90:3c:05:fa:80:
3f:c2:ea:37:16:46:6f:0a:3c:50:71:f5:fd:e4:5f:
34:4c:c9:19:a7:64:c0:59:f2:aa:a9:8b:de:fb:c0:
d5:8c:61:d3:bc:38:1b:c4:c9:f7:4a:c2:37:02:bb:
34:10:73:ca:0a:f2:2d:12:86:d0:23:b1:6d:08:78:
8d:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:59:2A:2C:3D:60:F3:85:BB:94:5B:0C:6B:1B:A3:02:37:B5:92:1E
X509v3 Authority Key Identifier:
keyid:DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/zFkqLD1g84W7lFsMaxujAje1kh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/3BHa76_4HH5QEnjYfZvCsgTXEVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.41.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:7e:b8:3e:de:35:6d:aa:3e:3d:3e:21:ff:76:4b:87:fd:90:
e8:08:2c:c1:48:88:fa:d2:45:55:8c:ec:5d:a0:48:62:74:81:
95:9c:4b:9a:e2:b0:6c:68:6e:08:ed:68:b1:75:a7:11:4a:18:
bc:81:97:c0:b8:bd:a8:06:a2:52:cc:2b:91:98:e3:ef:21:de:
dc:5e:a0:29:5c:ef:a4:e4:bc:86:ea:e5:b8:9d:db:b5:e1:25:
29:dd:e2:b0:74:93:09:a3:7c:23:b0:ee:96:12:47:b3:b0:70:
66:7f:97:c7:58:77:df:35:56:75:bf:b0:8d:c2:d3:5d:c4:6f:
30:a3:07:8e:30:c5:b5:82:09:da:04:88:38:d8:59:ae:fc:76:
74:cf:3e:e8:e4:69:21:80:90:5c:3c:e1:fd:49:a8:76:aa:c1:
4a:ca:f9:11:bb:3f:b0:bd:67:79:d4:5b:42:e1:88:85:68:39:
36:c4:1f:86:b0:a8:14:6f:0b:c3:8d:f8:e6:e3:35:2a:11:08:
01:2d:b4:f6:11:d9:08:af:e3:ef:2e:69:e7:4d:0b:35:fb:de:
82:95:71:49:b2:97:c0:e9:b5:41:28:5c:04:9b:40:ce:62:f5:
f2:5b:d9:eb:76:99:41:42:98:5f:6f:e0:3f:c8:ed:87:cb:49:
62:fa:26:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:31 2024 by rpki-client on console-fra.rpki-client.org