Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/bXz04H7n0OxlwklhuPI1sRdc4gw.roa
File: bXz04H7n0OxlwklhuPI1sRdc4gw.roa (raw, json)
Hash identifier: wQRSL479ymZw08CJo3z4LOHGdHM31WJ/APh26AKx5rA=
Subject key identifier: 6D:7C:F4:E0:7E:E7:D0:EC:65:C2:49:61:B8:F2:35:B1:17:5C:E2:0C
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0188344EE2571A7072BD7AA288A4F1ACE229
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/bXz04H7n0OxlwklhuPI1sRdc4gw.roa
Signing time: Fri 19 May 2023 13:59:24 +0000
ROA not before: Fri 19 May 2023 13:59:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200385
IP address blocks: 94.156.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 May 2023 07:40:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:34:4e:e2:57:1a:70:72:bd:7a:a2:88:a4:f1:ac:e2:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: May 19 13:59:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6d7cf4e07ee7d0ec65c24961b8f235b1175ce20c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:79:80:34:f3:2d:02:05:23:50:70:7f:6a:0e:
37:ea:5d:c2:1e:15:00:cd:88:b7:af:d4:54:05:fb:
a5:f8:b0:ac:d8:6c:a0:a7:67:c8:bb:48:fe:bd:df:
3e:fc:b8:f2:ce:32:e4:9b:56:85:a1:cd:4e:c7:c8:
77:78:fa:ff:62:20:1f:00:d1:9f:2f:32:fd:05:2c:
6b:5a:55:95:0b:51:5b:89:75:35:2e:81:b9:cd:a6:
47:79:ec:54:16:c6:77:f0:08:a7:f6:32:75:0d:94:
f4:33:2d:eb:24:5e:74:28:8e:c6:c6:bf:af:e4:80:
c6:66:3b:ea:f8:fd:a8:73:c1:ae:3e:57:b4:ef:99:
8a:ad:90:12:bf:ca:52:8a:02:44:da:72:2d:3b:75:
8b:4e:70:86:15:31:60:a3:af:0b:79:eb:34:99:41:
65:6d:42:26:d6:55:ff:95:58:85:76:85:ea:f9:df:
f2:23:91:e5:5f:14:bf:35:de:ce:7b:17:9f:0b:37:
a6:08:1f:dc:37:ef:ba:5b:06:06:1b:c5:70:42:cd:
a8:ee:c5:70:b9:61:c8:43:e6:e0:75:8a:7d:1b:83:
41:e2:7d:7a:13:b5:a6:e1:a3:12:46:ff:81:27:80:
66:c3:36:80:63:57:f9:be:19:0e:30:a8:12:9f:cd:
c1:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:7C:F4:E0:7E:E7:D0:EC:65:C2:49:61:B8:F2:35:B1:17:5C:E2:0C
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/bXz04H7n0OxlwklhuPI1sRdc4gw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.156.239.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:8c:47:a2:22:76:92:15:01:d5:55:61:fd:58:d0:40:85:dc:
9c:ca:4e:44:6d:bb:82:67:1c:fd:e5:df:9f:43:ee:5e:43:4b:
81:0c:59:f8:6e:92:34:f1:3a:c4:2c:2b:4f:c6:2a:8b:05:58:
be:2e:f4:00:c0:aa:72:5e:2a:02:77:65:78:f2:07:c1:f1:02:
19:18:cc:d8:37:80:b7:34:e3:b1:bb:5d:1b:e2:e1:a8:25:c9:
39:57:b1:97:e0:1e:1d:e3:79:8b:9b:52:72:dd:68:cc:ad:4a:
84:aa:bb:6a:40:9f:b4:2f:03:4f:c7:95:b9:28:ed:6c:21:97:
40:d8:85:f7:d4:44:a1:ed:5f:a3:95:67:2c:fd:ff:1a:22:ce:
17:7b:30:fe:fe:30:b3:01:f7:e4:8e:21:78:84:6f:13:5b:57:
ff:78:55:86:04:16:6d:a9:13:1d:73:eb:bd:43:b2:8d:b7:c5:
35:99:a5:d8:8f:6a:15:ab:f0:a1:8c:af:a3:66:8d:84:e6:24:
9c:72:96:1c:ad:b2:ff:eb:63:5b:7d:f6:f7:ae:2b:89:9c:ee:
ed:60:aa:ab:f6:bd:a5:c1:33:fa:13:d8:a5:a4:bd:5a:9a:6e:
71:8c:30:e7:93:09:a0:1a:d7:2d:9d:9b:74:42:8d:e0:86:73:
9b:d0:f7:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:37 2024 by rpki-client on console-ams.rpki-client.org