Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/BfyrdycrP1VmeYIjBY81TrJoAEs.roa
File: BfyrdycrP1VmeYIjBY81TrJoAEs.roa (raw, json)
Hash identifier: jTrn4RV4wOnx4Pc0OCmZGsUIv+TeIFXPcfUrnbcLy74=
Subject key identifier: 05:FC:AB:77:27:2B:3F:55:66:79:82:23:05:8F:35:4E:B2:68:00:4B
Certificate issuer: /CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Certificate serial: 018D12099791F4BA6B9E5B3A37C5EA7CC1A6
Authority key identifier: DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/BfyrdycrP1VmeYIjBY81TrJoAEs.roa
Signing time: Tue 16 Jan 2024 11:30:34 +0000
ROA not before: Tue 16 Jan 2024 11:30:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203511
IP address blocks: 94.154.40.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 16 Mar 2024 20:34:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:12:09:97:91:f4:ba:6b:9e:5b:3a:37:c5:ea:7c:c1:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Validity
Not Before: Jan 16 11:30:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=05fcab77272b3f5566798223058f354eb268004b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b4:94:f3:a8:48:a4:05:b9:fd:94:ef:b3:e2:
35:60:c1:7b:3f:7e:da:ca:bd:9a:a6:d1:00:c7:e3:
d2:fd:03:45:a8:62:f2:8e:07:85:9d:fa:3f:77:0f:
ac:57:30:69:17:bc:a9:93:11:10:3a:3a:5f:b1:32:
29:92:30:62:07:a5:b9:63:9e:af:e7:ff:fd:1d:78:
28:7d:81:b4:b7:8c:54:00:8e:ff:e8:81:c8:13:58:
af:85:e5:1e:1d:16:3a:1f:d5:68:a1:ae:8b:51:c7:
31:7f:54:bb:f5:08:54:d4:c6:d0:22:67:61:43:83:
48:9c:94:68:f1:84:8b:08:d1:50:3c:7b:25:b9:49:
37:19:8a:50:af:2d:69:08:75:33:77:e5:7c:c6:4c:
1d:91:95:60:6f:71:36:53:b3:84:d7:6c:2b:26:d5:
15:42:6c:cb:19:83:18:24:5f:e2:b1:01:28:15:fd:
f7:1d:12:ec:a1:86:66:3e:c4:3f:67:1c:bc:37:4c:
53:7c:26:e7:58:cd:d1:63:77:a6:e5:6e:9b:c5:c0:
3c:63:20:d8:f4:bc:07:0c:b2:bd:d5:45:af:36:05:
f6:f6:ae:cb:f2:db:a9:b1:64:49:09:9b:ad:8f:d2:
94:c8:77:17:d8:81:b7:68:a5:34:2d:ac:c8:bc:9b:
b6:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:FC:AB:77:27:2B:3F:55:66:79:82:23:05:8F:35:4E:B2:68:00:4B
X509v3 Authority Key Identifier:
keyid:DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/BfyrdycrP1VmeYIjBY81TrJoAEs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/3BHa76_4HH5QEnjYfZvCsgTXEVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.40.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:15:f3:5a:80:61:bf:d6:15:4b:0e:86:a0:a3:61:a5:04:e0:
09:fb:b2:c7:99:90:fd:e1:eb:ff:cd:9a:41:5b:33:e9:8d:57:
c2:6b:b1:7f:33:21:0a:08:08:9b:28:1f:dc:69:59:cf:a4:a0:
ce:fd:1b:cd:1c:27:af:0a:d2:44:eb:2e:fa:56:33:31:ee:3a:
02:b1:54:4c:b0:6f:fd:ee:f2:af:eb:f0:9d:e1:f4:61:b0:db:
37:e4:0f:24:76:c9:83:2e:81:4d:d1:2d:74:5a:6c:6c:06:19:
ab:22:10:03:c8:57:6d:8f:32:ba:60:52:09:cb:bf:f9:08:0c:
53:da:89:ac:60:c2:73:90:98:0f:aa:a2:c1:df:66:db:97:ea:
c2:8b:3a:88:38:64:26:59:03:9f:ee:a4:cd:03:b0:7a:66:98:
7b:b6:ea:ed:62:7e:49:69:db:c7:97:f9:39:96:15:7c:e0:0a:
6f:bb:6d:3b:c3:16:48:6a:52:3e:50:39:07:4d:f5:6c:6a:a1:
26:fc:16:71:4e:23:e0:c3:97:10:5f:12:d8:d0:63:0b:28:3d:
d4:4f:69:5f:e5:2e:ff:fd:0e:3c:4a:d8:13:ea:dd:f1:84:0c:
2b:14:ef:72:5b:dc:c4:b0:15:ae:35:09:da:2a:4c:bc:75:d6:
e1:02:62:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 16 21:25:33 2024 by rpki-client on console-ams.rpki-client.org