Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/g--vWPiaHODjgy50qvzJcb0VYu4.roa
File: g--vWPiaHODjgy50qvzJcb0VYu4.roa (raw, json)
Hash identifier: tGAQXMz1ARQCbMyf/nOvZLSMcwzHrr0Pm28qWF/uPMw=
Subject key identifier: 83:EF:AF:58:F8:9A:1C:E0:E3:83:2E:74:AA:FC:C9:71:BD:15:62:EE
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018D36865DE999B1A65B4736554698B374FB
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/g--vWPiaHODjgy50qvzJcb0VYu4.roa
Signing time: Tue 23 Jan 2024 13:33:11 +0000
ROA not before: Tue 23 Jan 2024 13:33:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216078
IP address blocks: 94.156.248.0/24 maxlen: 24
194.48.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 Feb 2024 12:16:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:36:86:5d:e9:99:b1:a6:5b:47:36:55:46:98:b3:74:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 23 13:33:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=83efaf58f89a1ce0e3832e74aafcc971bd1562ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:77:b0:6b:58:5f:88:8e:93:11:57:67:da:fd:
1f:ba:54:9a:b7:22:d0:15:da:1d:7e:2a:4e:d0:26:
a6:f0:fb:0e:9c:a9:82:6a:35:f4:ab:0f:13:59:0f:
5d:2f:9b:16:e5:11:fd:d5:03:5d:0c:45:89:ba:f0:
06:c1:bf:e6:2f:81:83:f3:da:0d:55:40:40:1c:9a:
a5:13:e4:27:8c:d8:3e:e0:c1:7d:32:9a:5a:3c:7e:
13:f2:52:b2:88:51:46:f5:52:90:59:c9:de:47:25:
0d:5e:fa:a0:fa:cb:39:1f:2b:b1:b3:72:c9:8b:33:
2c:36:10:0c:89:18:cd:42:91:f5:db:fa:29:d8:ec:
ae:77:97:2d:b8:75:2f:c4:f8:88:c5:a7:35:cc:a2:
93:9c:76:f0:71:92:2e:54:f6:a2:96:bc:af:b0:18:
af:98:74:94:77:7e:68:ec:d4:ed:64:75:55:62:82:
2f:97:69:9e:eb:b4:ca:d1:00:50:bb:80:5e:9f:f6:
2a:08:a8:92:16:1d:ec:be:5d:ed:6b:56:fb:3a:e7:
7f:da:7e:df:08:a6:4f:1a:60:7c:87:14:d2:20:71:
94:0b:57:86:42:28:7c:08:3f:d1:f5:86:a0:0d:22:
27:2e:ab:65:29:78:83:bd:50:cc:ff:f2:ec:20:ec:
69:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:EF:AF:58:F8:9A:1C:E0:E3:83:2E:74:AA:FC:C9:71:BD:15:62:EE
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/g--vWPiaHODjgy50qvzJcb0VYu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.156.248.0/24
194.48.250.0/24
Signature Algorithm: sha256WithRSAEncryption
59:1f:ed:75:42:e5:2d:5c:d8:0b:e5:99:ec:51:9f:d5:c7:aa:
fc:f9:6c:70:09:ec:a7:3d:05:99:82:57:27:61:4e:6a:ad:65:
a0:97:c9:1e:b4:3e:aa:48:b0:d4:b5:4b:db:4c:8c:e7:aa:32:
e6:42:ea:b6:d6:a0:64:f7:59:0e:e5:03:04:d6:77:b7:7a:d9:
b3:f1:aa:52:3a:63:93:be:a7:f1:ae:b5:b9:d3:dd:19:a1:5a:
76:87:db:c4:1d:62:ec:67:3b:34:e4:c6:32:b9:4c:61:79:71:
9f:cd:5a:55:33:2e:dc:db:23:78:3e:f0:ff:f9:26:4c:ae:ea:
db:20:08:6c:0a:aa:74:cc:90:f6:93:c1:f1:fb:3f:ac:06:2d:
d7:9d:07:6d:69:57:b1:0d:89:80:cb:0c:6e:d7:2e:06:a3:aa:
06:55:f0:ac:82:df:61:a1:82:f6:5d:e8:99:cc:1e:66:55:22:
5f:fd:41:b7:22:a9:3d:37:70:f0:57:e7:e3:21:e1:6d:01:3e:
51:e9:12:b5:71:af:cf:c7:52:be:32:c6:7b:a8:fd:30:61:9e:
c8:91:51:5a:bd:51:a7:9c:59:09:dc:97:d5:bb:df:e8:b3:cf:
da:b6:a0:a2:11:cf:db:63:fb:25:1b:eb:8e:88:06:9f:f6:80:
fb:52:dd:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 21 16:10:52 2024 by rpki-client on console-ams.rpki-client.org