Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/esBdtSgPQQFcqypNoUJ-ctx4Pik.roa
File: esBdtSgPQQFcqypNoUJ-ctx4Pik.roa (raw, json)
Hash identifier: EQ30IX12FKVMorTtbOvmiIM0CWthGRTZnfaDBNQcw6I=
Subject key identifier: 7A:C0:5D:B5:28:0F:41:01:5C:AB:2A:4D:A1:42:7E:72:DC:78:3E:29
Certificate issuer: /CN=c42708df93954aac601aef1835bd5d69245fb02f
Certificate serial: 01857142DCD4379444EF3468B01E5D707804
Authority key identifier: C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/esBdtSgPQQFcqypNoUJ-ctx4Pik.roa
Signing time: Mon 02 Jan 2023 06:54:45 +0000
ROA not before: Mon 02 Jan 2023 06:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197540
IP address blocks: 94.154.148.0/22 maxlen: 22
185.158.212.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:42:dc:d4:37:94:44:ef:34:68:b0:1e:5d:70:78:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c42708df93954aac601aef1835bd5d69245fb02f
Validity
Not Before: Jan 2 06:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7ac05db5280f41015cab2a4da1427e72dc783e29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:69:00:cc:07:56:43:fb:b8:f6:df:69:d1:b7:
e1:a2:0b:6c:c8:1e:02:b0:d1:f1:bc:83:d5:a8:df:
29:3d:bd:94:f7:dd:e9:21:9b:4e:7e:f7:48:16:d1:
4a:97:9c:0d:0a:9c:b6:50:d2:57:56:e6:54:cd:be:
49:57:7d:de:d0:c5:be:99:58:30:b2:7e:1d:e8:78:
dd:8f:5e:4e:a3:b8:4d:27:63:57:8f:51:7c:7b:71:
d7:83:3c:aa:eb:b6:3f:ac:48:cb:cc:29:3c:88:24:
80:88:b1:58:94:b9:ae:f6:3f:3b:60:c2:a8:f0:de:
a1:9a:60:fc:e2:ed:25:b8:c2:b6:d5:3d:76:cc:48:
e6:02:0d:53:94:39:0f:43:d3:ed:91:83:04:4f:3c:
70:18:6e:91:55:30:d3:f2:52:ee:d7:eb:82:e0:bb:
de:29:5c:b5:a6:48:01:5a:59:6f:86:04:ea:72:92:
35:2d:5b:17:e1:d4:da:62:77:ee:6e:a4:59:22:79:
bf:ab:ff:9f:a2:f6:fa:99:04:33:49:3c:d3:2b:1c:
f7:f9:95:0b:37:37:97:29:60:24:ca:41:10:d9:55:
61:d2:93:c5:f5:19:80:2f:f2:f0:49:95:2b:75:c6:
70:f9:c7:21:dc:c0:91:87:8c:ca:72:22:6f:ce:1c:
d2:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:C0:5D:B5:28:0F:41:01:5C:AB:2A:4D:A1:42:7E:72:DC:78:3E:29
X509v3 Authority Key Identifier:
keyid:C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/esBdtSgPQQFcqypNoUJ-ctx4Pik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/xCcI35OVSqxgGu8YNb1daSRfsC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.148.0/22
185.158.212.0/22
Signature Algorithm: sha256WithRSAEncryption
22:5f:94:43:e6:d4:fa:d3:66:48:74:2a:7a:f7:73:a8:7d:c9:
b3:1d:64:55:b5:bd:7d:a1:f6:fc:1a:09:b3:04:2e:fd:f0:6f:
05:f2:96:6e:f5:54:dd:a3:5c:36:0c:99:53:84:db:36:e2:ae:
06:cd:7f:f2:94:4a:95:ee:d5:7d:e0:5f:4d:a5:93:c9:5b:eb:
79:ec:d3:8c:08:1d:44:8d:77:ad:22:39:91:24:45:ea:ce:13:
11:6f:95:a0:eb:b3:61:a0:e6:4a:6c:bf:58:b7:19:fa:1a:c3:
f9:7d:14:a2:6a:5b:25:ef:4e:f8:67:21:fe:df:d4:32:ad:b5:
fc:f6:ef:43:73:e1:b9:de:91:d1:3c:68:c2:8e:b7:5f:1d:13:
0f:8d:28:90:2a:70:71:0d:a5:f5:a7:ba:05:f8:4d:e7:e5:2a:
81:d2:99:c5:89:73:f1:15:83:52:23:61:df:ff:18:95:b1:73:
3a:75:df:61:15:c4:f7:da:af:61:12:43:1b:eb:2f:b2:91:62:
55:00:d1:a8:56:6c:18:d7:d8:1a:66:b2:62:15:b3:0b:6f:9f:
32:2e:70:0e:04:8d:aa:6d:b5:a4:76:77:9c:34:92:be:b8:e5:
a8:89:ab:dc:bc:62:d6:a4:20:11:f4:04:2d:12:12:e8:00:58:
75:80:54:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:44 2024 by rpki-client on console-ams.rpki-client.org