Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/MECxnNG6vYUT9eZOP8yeE9XDBLE.roa
File: MECxnNG6vYUT9eZOP8yeE9XDBLE.roa (raw, json)
Hash identifier: cRgcsaSmDNidm3hAmCSRe3HQw+yNVUlrTt79nyz6SwE=
Subject key identifier: 30:40:B1:9C:D1:BA:BD:85:13:F5:E6:4E:3F:CC:9E:13:D5:C3:04:B1
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018CC8DD1126D7227944970F5B01D08D5B75
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/MECxnNG6vYUT9eZOP8yeE9XDBLE.roa
Signing time: Tue 02 Jan 2024 06:29:40 +0000
ROA not before: Tue 02 Jan 2024 06:29:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216014
IP address blocks: 94.154.163.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Jan 2024 14:06:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:dd:11:26:d7:22:79:44:97:0f:5b:01:d0:8d:5b:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 2 06:29:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3040b19cd1babd8513f5e64e3fcc9e13d5c304b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:aa:91:98:50:44:59:3e:ff:84:36:09:33:a6:
36:08:a9:4d:46:64:2f:4a:9d:14:aa:84:b5:f1:d2:
14:c7:bc:7b:59:d3:90:50:b0:6d:57:32:09:1c:df:
1b:63:1f:87:e1:40:5d:bc:85:a5:38:a3:f2:65:b3:
2d:ae:e1:d2:1f:16:72:80:d1:04:3b:7f:31:ff:9d:
8d:c9:5f:ae:f3:45:9b:35:e7:f4:c4:2c:80:57:31:
80:e4:20:21:34:1f:71:08:ea:50:90:a1:a6:58:76:
72:44:74:d3:88:35:0c:97:58:59:6d:ce:e2:ae:af:
ce:20:09:be:7d:2c:b9:4c:c8:31:f2:68:f3:bd:e1:
30:65:b5:9b:79:ce:f7:14:3f:85:1b:32:6b:27:7c:
d2:de:32:8d:01:cd:b6:78:96:56:67:1d:c8:c6:5b:
ae:07:ba:ac:6f:34:2d:04:1b:5c:f0:92:92:26:bd:
22:20:71:fa:78:72:d9:3d:33:c8:4d:ad:2d:ea:52:
08:c9:b7:82:59:d0:f7:cf:27:d8:c7:1f:24:7f:29:
44:8a:fc:cd:24:d0:d2:69:68:72:e3:f9:34:2e:37:
90:e8:6b:b3:6d:b7:19:52:bb:1f:81:95:c5:1f:77:
5d:a6:61:6a:e5:90:99:a5:c6:40:9e:e5:a2:01:c0:
47:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:40:B1:9C:D1:BA:BD:85:13:F5:E6:4E:3F:CC:9E:13:D5:C3:04:B1
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/MECxnNG6vYUT9eZOP8yeE9XDBLE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.163.0/24
Signature Algorithm: sha256WithRSAEncryption
74:7d:7f:61:cb:5e:91:15:65:79:8d:5c:c4:ad:5f:01:87:12:
a1:bf:ee:de:33:19:6e:25:97:ea:5c:2d:f3:c8:2d:65:65:c5:
47:94:00:c0:bb:1c:d2:71:90:e4:3f:c2:e6:d2:c6:d3:05:93:
4e:49:59:90:45:d8:6b:f0:e8:f9:5a:b8:9e:2d:1f:b6:14:83:
a7:89:51:52:d7:19:99:ea:08:77:13:bb:50:6d:dd:4a:58:2b:
fe:c0:26:96:ef:f8:f5:13:74:ae:5f:35:e5:75:7a:ca:ef:5d:
3c:91:08:d0:f5:34:ad:ad:5d:cb:4a:6c:3e:ea:8a:18:79:c1:
f4:2f:a9:46:29:8c:af:6f:60:eb:b2:b3:2b:21:9d:fb:11:25:
c0:53:1c:7b:7d:91:44:99:bf:de:e6:4f:fe:7b:95:21:b2:5f:
44:f9:86:f1:74:91:d5:cf:09:c5:c0:d9:02:8b:4e:ce:cf:32:
f5:e5:a1:a4:8e:3e:e8:ce:7d:bf:17:a8:b3:fa:4d:f0:2b:12:
a2:f8:f3:e0:c3:b2:e5:0b:df:12:22:1a:d9:fc:b0:1f:49:a5:
3e:bd:01:28:c1:8f:a8:00:db:33:02:0a:0d:8e:20:8b:51:41:
aa:67:8c:a8:42:41:4a:7c:b9:3e:7a:35:64:38:11:a3:33:2b:
75:77:99:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 17 18:46:45 2024 by rpki-client on console-ams.rpki-client.org