Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/52IeTObGe3eJ__nngoF152oz6MY.roa
File: 52IeTObGe3eJ__nngoF152oz6MY.roa (raw, json)
Hash identifier: qYNPOcT+nhuf9hhuUk4cOo0g4EBC2ggBfJFpLBb8C5g=
Subject key identifier: E7:62:1E:4C:E6:C6:7B:77:89:FF:F9:E7:82:81:75:E7:6A:33:E8:C6
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018BCEF188FDA0A5E93A49B52C648853A91E
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/52IeTObGe3eJ__nngoF152oz6MY.roa
Signing time: Tue 14 Nov 2023 17:46:57 +0000
ROA not before: Tue 14 Nov 2023 17:46:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216014
IP address blocks: 94.154.163.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ce:f1:88:fd:a0:a5:e9:3a:49:b5:2c:64:88:53:a9:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Nov 14 17:46:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7621e4ce6c67b7789fff9e7828175e76a33e8c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:bd:af:fe:b1:9c:43:06:b8:44:93:d0:14:51:
34:30:96:a4:61:ca:66:e4:e9:0d:dd:04:c1:52:06:
d2:2b:80:87:d6:40:84:a2:97:e1:b7:b4:d6:d4:c1:
d5:e3:da:ba:e9:7f:90:74:97:b4:cb:aa:bf:45:2e:
02:9b:45:92:72:cb:58:5c:9b:2e:00:f2:96:9b:9c:
d6:fd:06:87:fc:8a:5d:9e:5f:93:32:30:cb:b3:81:
38:d8:35:3f:f9:fc:7e:44:d8:3a:04:05:8a:01:6a:
f6:c4:78:b6:63:69:7a:cb:77:24:13:d1:4f:d9:fa:
b2:0e:f2:62:c6:3e:be:48:7a:9d:9b:f4:8e:56:1d:
10:53:0d:04:d9:4d:e1:30:33:02:88:ba:6c:0c:19:
46:3d:f4:75:2e:65:05:7a:69:58:91:ac:c2:07:b4:
77:31:0c:07:f4:c2:56:6a:6b:11:8c:f4:6c:61:60:
fc:02:41:29:af:6f:d1:9f:8f:f0:fb:5f:b1:f5:bc:
bf:e8:54:87:4d:a6:7d:24:29:77:8e:2b:53:d6:9a:
25:0a:f9:c8:93:8c:9e:eb:c7:99:83:50:8c:1b:33:
b2:d7:69:18:43:56:0c:34:1e:68:f5:ff:cd:6d:d7:
83:f9:90:d8:6b:35:a1:af:d6:5e:30:40:22:6a:36:
d9:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:62:1E:4C:E6:C6:7B:77:89:FF:F9:E7:82:81:75:E7:6A:33:E8:C6
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/52IeTObGe3eJ__nngoF152oz6MY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.163.0/24
Signature Algorithm: sha256WithRSAEncryption
22:d0:55:ed:73:65:31:b4:50:e6:39:b6:67:c9:06:c5:86:c3:
e9:e1:1d:bd:90:ce:e3:f3:57:fd:61:16:d6:0e:c8:a8:af:b9:
92:f3:43:75:02:0f:cc:54:c2:c6:f6:8e:4b:0b:4a:34:91:89:
bf:5e:3d:e7:5a:6e:32:46:17:71:92:9c:1d:0b:7c:90:82:2e:
9c:90:f0:92:cb:3b:ff:5e:98:f4:43:87:68:18:2b:9f:dd:d2:
2d:f7:11:78:1b:80:f4:75:23:0f:c1:d5:5c:62:1c:32:a0:fe:
73:e3:ab:f5:0e:94:a9:7f:44:19:89:71:51:1e:57:89:ab:8e:
81:53:6c:be:c5:a5:8c:3d:79:18:7e:51:c7:7b:b7:84:3a:97:
99:69:57:75:f4:66:38:7d:a8:79:cf:58:f2:49:a8:c0:f4:35:
08:ae:3b:9a:36:4e:40:ef:7e:28:a6:6d:14:33:fa:b9:b0:3b:
fa:e5:c9:42:da:23:9b:d8:19:f6:77:7b:28:ce:0e:92:f6:8b:
e1:5d:45:4f:37:96:e5:b1:55:0f:0c:77:1d:ab:e1:d4:b8:58:
04:4f:cd:70:4c:67:c3:61:2d:31:1e:27:bb:d0:f2:1e:8e:b2:
fc:6c:e8:6e:5d:ab:37:40:25:6c:2d:db:5c:b1:e6:ed:4f:c2:
92:14:cc:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 08:59:09 2024 by rpki-client on console-ams.rpki-client.org