Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/P8KfBrstdJZBkJZAlqAqr1T7JXM.roa
File: P8KfBrstdJZBkJZAlqAqr1T7JXM.roa (raw, json)
Hash identifier: 1/p8WhTZalOnPQfXz5AnwkEZCtk6Zg4Jwog3IbqDJVg=
Subject key identifier: 3F:C2:9F:06:BB:2D:74:96:41:90:96:40:96:A0:2A:AF:54:FB:25:73
Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Certificate serial: 018A98290D6B008168997CBD80398DB0DF55
Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/P8KfBrstdJZBkJZAlqAqr1T7JXM.roa
Signing time: Fri 15 Sep 2023 09:25:41 +0000
ROA not before: Fri 15 Sep 2023 09:25:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212197
IP address blocks: 94.100.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:98:29:0d:6b:00:81:68:99:7c:bd:80:39:8d:b0:df:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Validity
Not Before: Sep 15 09:25:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3fc29f06bb2d74964190964096a02aaf54fb2573
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:07:5a:8b:80:df:4d:b3:3e:d2:87:e7:7b:42:
6b:3a:df:a7:ed:e1:b3:75:72:5d:29:ac:f4:4b:79:
ac:79:5c:3d:e9:90:c7:3e:17:73:25:92:23:ec:4e:
a3:7f:2b:60:6b:fc:6b:9e:4c:34:d3:3c:73:e5:29:
7b:3f:d1:7c:2f:25:66:c9:ec:61:db:80:29:07:43:
ae:85:9e:46:d7:0d:89:a1:30:70:4c:2e:8d:29:a6:
94:3c:00:69:a2:9b:50:90:aa:15:62:ef:17:27:80:
21:a2:1f:e0:16:41:93:0a:7c:38:82:2d:95:40:66:
0e:c5:c8:53:f8:4e:9a:f3:25:2d:28:49:22:9f:18:
c5:4b:12:43:92:ab:dd:96:7f:1d:db:4d:24:a9:66:
59:6a:2d:14:76:bb:96:56:48:90:e7:48:dc:fa:e9:
cd:de:d4:0b:a5:83:73:b2:cc:f6:8d:78:b4:6d:fb:
2c:bd:48:d7:a3:9b:91:fd:30:2f:9e:a0:4f:bf:8f:
ec:f1:72:3a:0b:4c:47:34:bd:9c:0d:d5:c9:01:91:
95:40:a5:0a:92:c7:fd:9b:65:53:5c:cc:85:af:d3:
23:9a:a8:3a:41:d4:1f:22:8c:63:c9:ff:32:79:16:
9c:9b:69:dc:66:e0:4d:56:cd:96:39:f1:90:d0:95:
c6:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:C2:9F:06:BB:2D:74:96:41:90:96:40:96:A0:2A:AF:54:FB:25:73
X509v3 Authority Key Identifier:
keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/P8KfBrstdJZBkJZAlqAqr1T7JXM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.100.5.0/24
Signature Algorithm: sha256WithRSAEncryption
71:5d:c9:59:3b:b0:58:7f:e7:d2:c2:e6:98:da:27:7c:6d:23:
a4:24:b5:6b:4a:1b:f8:43:90:f3:7b:99:29:c4:b6:dd:3d:ee:
b3:3c:a4:ed:9b:3a:9a:b4:da:b4:ab:09:a2:ae:0a:57:26:2d:
1f:bf:42:70:06:64:97:e1:21:19:6a:8a:a2:1a:f3:5a:ac:94:
82:5f:6b:37:ab:b4:f5:11:44:a6:80:fe:e7:13:1e:93:60:93:
c1:f1:50:53:ab:50:a7:ce:b7:f3:b1:65:d2:ed:b3:56:f0:20:
52:79:a2:8b:aa:4d:89:a9:07:99:10:8f:7b:f0:8c:d5:8d:29:
11:c1:c7:cd:60:0b:96:32:59:e8:f2:e2:55:59:7a:e9:86:f7:
fa:d9:02:e7:16:56:6c:ef:ee:5d:49:02:04:53:f8:c8:3d:18:
65:58:8c:85:8e:cb:e2:12:c7:9f:1b:a2:ab:b7:f8:f0:4d:e1:
d7:dc:7d:7c:b4:f5:77:4a:ce:d8:2b:4c:71:8d:ea:fe:6a:80:
e2:3c:20:62:20:b6:44:b9:00:50:23:0b:95:69:12:02:1e:06:
ae:05:22:8e:ba:07:1e:87:6a:71:f0:7f:ae:54:e6:60:49:5d:
6a:7f:62:2c:86:5b:3b:9d:dc:f6:72:e4:a1:35:ad:1b:0a:3b:
16:47:98:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:47 2024 by rpki-client on console-ams.rpki-client.org