Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/8b4147-e6e0-4d80-a93f-ef63b816dd35/1/avhXYgqyNCEgYL8eIsagFBrmUOU.roa
File: avhXYgqyNCEgYL8eIsagFBrmUOU.roa (raw, json)
Hash identifier: MKa2un//2IFgErwsiiv2wc5L6VPc6G5jlAwgFqyKnCQ=
Subject key identifier: 6A:F8:57:62:0A:B2:34:21:20:60:BF:1E:22:C6:A0:14:1A:E6:50:E5
Certificate issuer: /CN=e4d7aaa3d25c2f9ebbec74c830cc0cde9318c8f8
Certificate serial: 01912E9863ED0F278CBA76A2BEC8D0E0B3E4
Authority key identifier: E4:D7:AA:A3:D2:5C:2F:9E:BB:EC:74:C8:30:CC:0C:DE:93:18:C8:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Neqo9JcL5677HTIMMwM3pMYyPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/8b4147-e6e0-4d80-a93f-ef63b816dd35/1/avhXYgqyNCEgYL8eIsagFBrmUOU.roa
Signing time: Wed 07 Aug 2024 20:47:04 +0000
ROA not before: Wed 07 Aug 2024 20:47:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215479
IP address blocks: 94.231.215.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 07 Aug 2024 20:52:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:2e:98:63:ed:0f:27:8c:ba:76:a2:be:c8:d0:e0:b3:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4d7aaa3d25c2f9ebbec74c830cc0cde9318c8f8
Validity
Not Before: Aug 7 20:47:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6af857620ab234212060bf1e22c6a0141ae650e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c1:cf:6a:29:54:3c:7c:6f:15:c9:b7:94:d9:
32:20:b5:b1:ff:8d:7c:bf:17:61:6f:e0:c7:bf:61:
7f:e8:5a:c6:b5:47:66:d0:52:37:bd:bd:e8:6a:85:
01:7e:ec:ac:1d:8a:e6:48:39:9d:bb:ce:ad:20:d0:
5c:a0:5a:ac:69:87:13:fa:d3:f5:a0:6a:9b:d9:82:
92:a3:df:0d:b8:3f:7f:9a:d4:fe:97:b9:b0:f2:c5:
ff:7e:18:08:1f:46:3c:55:c9:9a:47:fe:98:01:c7:
28:3b:f1:41:c8:4b:48:90:6b:08:28:84:f2:69:45:
91:de:1b:d2:a8:39:e8:e9:44:a5:22:32:4d:75:ae:
06:7e:e8:38:0c:86:c7:a5:1b:69:7e:71:58:7e:d4:
d9:ca:9f:03:f5:57:fc:e1:a5:57:d9:bf:8e:0b:5b:
c7:9b:9b:84:24:39:84:a3:a7:3b:83:fa:20:29:a6:
3a:43:1f:32:4d:54:b2:c6:27:16:29:ae:72:8d:93:
82:31:48:17:77:c6:59:32:91:78:9d:8d:b5:5d:c6:
91:7c:a4:df:62:7b:1b:50:c9:54:26:b2:9b:b5:f7:
89:13:5c:cd:4f:21:97:85:b2:36:7e:79:a8:cd:29:
2e:b4:58:0c:62:59:d1:65:e8:64:c0:92:47:f5:71:
75:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:F8:57:62:0A:B2:34:21:20:60:BF:1E:22:C6:A0:14:1A:E6:50:E5
X509v3 Authority Key Identifier:
keyid:E4:D7:AA:A3:D2:5C:2F:9E:BB:EC:74:C8:30:CC:0C:DE:93:18:C8:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Neqo9JcL5677HTIMMwM3pMYyPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/8b4147-e6e0-4d80-a93f-ef63b816dd35/1/avhXYgqyNCEgYL8eIsagFBrmUOU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/8b4147-e6e0-4d80-a93f-ef63b816dd35/1/5Neqo9JcL5677HTIMMwM3pMYyPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.231.215.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:3b:98:20:74:47:a5:43:9a:ba:a4:8f:fe:60:0e:42:cd:01:
eb:f0:13:fc:8e:b8:69:15:7e:e8:e3:6b:ce:f9:77:d6:9c:6f:
93:ef:74:59:58:df:e7:7c:7f:2d:6e:81:c6:4e:df:58:40:b8:
0d:88:52:40:ec:66:a1:af:11:a6:41:2b:62:65:3f:c7:60:9e:
9c:9a:5d:55:4f:f1:c4:89:60:d8:8a:7c:78:bb:4b:9d:2c:88:
8d:ec:16:1e:e1:4a:e5:40:6f:24:bd:9f:00:ee:22:1c:26:88:
e8:2d:22:16:24:19:e4:89:af:08:e6:d2:e7:92:35:18:b4:54:
5c:e6:26:81:82:1b:c4:5b:89:cc:24:d1:0a:38:d1:fa:8b:70:
90:0a:b7:a8:03:6f:79:36:31:ab:71:78:0b:6e:c4:73:a8:e8:
5a:30:36:d0:4a:25:36:06:e1:be:5d:60:49:2c:81:4a:0b:e5:
b9:01:95:42:6b:03:e5:b3:e6:e1:e8:c0:1d:47:56:d7:35:2d:
df:b9:60:e9:b1:67:78:47:19:6a:8b:a7:2b:8a:e1:c2:e1:6b:
72:c9:02:d6:7f:e0:4c:bc:a8:8a:98:d8:50:5f:5a:08:1a:ca:
cb:d5:0d:f6:c9:41:62:21:f7:5c:6e:a7:d3:40:37:7b:7e:74:
eb:4e:ef:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:38:19 2025 by rpki-client