Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/EMpskFLK3RMgEfBkCzj56VpwEXg.roa
File: EMpskFLK3RMgEfBkCzj56VpwEXg.roa (raw, json)
Hash identifier: lNtIhUHdN5KqOmEkwB1SMvtJd+EpFNu01DUP3W5YXDQ=
Subject key identifier: 10:CA:6C:90:52:CA:DD:13:20:11:F0:64:0B:38:F9:E9:5A:70:11:78
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018D17DB2521F89C53A60BF00915C09C6F16
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/EMpskFLK3RMgEfBkCzj56VpwEXg.roa
Signing time: Wed 17 Jan 2024 14:37:34 +0000
ROA not before: Wed 17 Jan 2024 14:37:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216014
IP address blocks: 94.154.163.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Apr 2024 05:27:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:17:db:25:21:f8:9c:53:a6:0b:f0:09:15:c0:9c:6f:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 17 14:37:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=10ca6c9052cadd132011f0640b38f9e95a701178
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:64:18:e3:e5:a7:9a:35:30:65:8f:0f:75:ce:
09:f3:ca:48:d3:a1:e1:88:d9:9a:c4:15:ae:67:ca:
6a:ff:9d:41:2d:b8:86:0e:c2:52:0d:3d:c8:f1:b1:
30:04:b8:1c:e8:b9:7a:28:36:b2:db:aa:16:ee:0b:
c4:0b:7a:5b:87:0f:30:23:61:f1:ff:0a:96:73:ff:
6f:70:3f:e5:19:9e:f7:df:52:7c:f9:3d:c5:28:41:
9a:3c:9b:a5:34:55:cf:ae:f4:b6:6c:32:0f:5a:5d:
92:ee:13:b5:0d:9f:2b:72:c1:6d:5e:c4:d6:64:ac:
64:fd:98:11:30:09:f9:6d:4a:0f:2c:44:80:83:a4:
ad:0a:ed:89:f2:45:4e:e6:31:35:25:e7:ae:91:42:
af:f3:68:3b:85:f6:9a:e2:d4:27:e8:9a:be:ea:6a:
22:a0:23:43:13:d9:01:74:29:78:de:22:c0:f9:70:
73:a7:3c:b7:ae:27:43:b0:4d:9b:68:5c:dd:be:ec:
78:e6:09:09:ac:b4:29:4c:55:be:69:4a:c2:1f:ac:
be:d1:7c:1c:f8:70:1c:75:7e:75:47:9d:ee:ef:01:
9f:ef:13:00:bb:a0:68:da:b0:31:2f:4e:c9:d4:be:
50:2d:d9:14:66:96:51:a6:5a:e0:e4:6b:bd:5d:f0:
93:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:CA:6C:90:52:CA:DD:13:20:11:F0:64:0B:38:F9:E9:5A:70:11:78
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/EMpskFLK3RMgEfBkCzj56VpwEXg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.163.0/24
Signature Algorithm: sha256WithRSAEncryption
96:5b:c8:8c:ac:7f:65:56:dc:e5:9c:17:2c:1d:29:f0:d3:b4:
7d:db:5e:39:5c:38:b7:f8:5e:f1:64:2d:ae:e3:c4:b2:48:03:
5d:0d:05:96:a5:9e:ac:3d:e2:42:7c:23:b7:7f:ff:75:39:2a:
06:2b:fe:50:79:c7:93:7e:ba:4d:ab:bb:d9:d6:f3:d2:c0:8e:
c9:a9:03:b0:74:8d:0a:1c:c2:ae:25:a8:39:e1:e7:ad:41:92:
44:7e:22:3c:b1:55:52:00:50:33:b3:2d:2c:ed:f4:a9:e6:7a:
70:43:c1:fd:0a:5b:9e:3a:73:72:73:88:84:45:ee:93:13:b3:
7d:7b:dc:20:38:b4:57:5d:02:9a:a7:9a:9b:c0:0a:34:d0:1d:
1a:41:3a:d5:9c:1a:5b:73:02:27:f7:f6:18:34:43:69:e4:5f:
cc:ff:4a:09:38:7c:45:8a:b5:aa:50:36:4b:c0:e2:d6:ba:e8:
fb:ca:23:63:ea:d9:ad:f9:1e:a2:67:78:d7:ca:2b:40:9e:31:
28:d2:39:af:95:0a:f7:10:63:0d:ed:b2:ab:fb:c2:a2:5c:8a:
6e:27:71:a1:6f:09:50:da:9d:5e:fb:80:53:b2:c5:7a:f1:19:
53:73:9b:4d:04:4c:b2:f9:26:bc:73:b7:b5:b9:a6:96:23:ef:
6f:b3:c2:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 18 06:42:59 2024 by rpki-client on console-ams.rpki-client.org