Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/H4_dcC67NOpwCvijGK-AtFpvDV8.roa
File: H4_dcC67NOpwCvijGK-AtFpvDV8.roa (raw, json)
Hash identifier: C8SiXMVPzTCIYcEj8zQgbOu+hFWJ6FMry64LeRb0b3U=
Subject key identifier: 1F:8F:DD:70:2E:BB:34:EA:70:0A:F8:A3:18:AF:80:B4:5A:6F:0D:5F
Certificate issuer: /CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Certificate serial: 01906F41BAD63B477787B651AC8870BDB37E
Authority key identifier: DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/H4_dcC67NOpwCvijGK-AtFpvDV8.roa
Signing time: Mon 01 Jul 2024 17:04:56 +0000
ROA not before: Mon 01 Jul 2024 17:04:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 94.154.40.0/24 maxlen: 24
94.154.41.0/24 maxlen: 24
94.154.44.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Jul 2024 20:24:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:6f:41:ba:d6:3b:47:77:87:b6:51:ac:88:70:bd:b3:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Validity
Not Before: Jul 1 17:04:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1f8fdd702ebb34ea700af8a318af80b45a6f0d5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:08:3f:ab:c1:74:8f:1f:f0:79:b6:40:c5:c9:
51:97:07:a5:dc:3d:67:d7:0e:99:29:79:af:da:86:
99:25:55:e6:e9:c4:f7:79:9a:26:0a:ba:cf:c0:04:
b1:9f:34:50:e1:15:3b:af:1b:0f:92:e3:6f:8c:b0:
14:8e:fa:c2:be:04:97:07:c7:52:e8:4a:94:5f:00:
0f:5a:ae:24:67:5d:cb:f1:9d:a5:ab:b0:2a:e0:e0:
e1:22:33:2c:23:90:f5:b3:44:cc:cf:0c:2a:d6:98:
1b:06:4d:47:bc:67:99:a9:d1:34:a9:fd:83:fa:c3:
4c:54:71:52:55:e8:b7:9e:fa:21:94:bc:f3:d6:0c:
4c:4d:99:00:e0:2b:9b:4b:01:4f:3f:38:60:92:df:
ec:60:be:29:2f:7c:61:5d:01:ba:82:39:25:19:cb:
23:8d:ea:d8:d5:dc:87:7c:76:7f:ed:fb:e4:b0:df:
8b:25:5c:da:fd:4e:b7:ac:9b:fa:6d:7d:0f:40:a5:
68:fb:cf:fc:f6:48:d0:75:3f:20:c7:65:ab:3c:dc:
62:85:6d:02:99:d2:4f:25:ab:c6:6b:23:13:d8:1d:
b5:85:d6:95:8d:3c:1c:78:17:4f:ad:d9:a9:49:05:
76:78:e6:d4:3d:68:27:92:7c:56:07:05:b4:88:ab:
10:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:8F:DD:70:2E:BB:34:EA:70:0A:F8:A3:18:AF:80:B4:5A:6F:0D:5F
X509v3 Authority Key Identifier:
keyid:DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/H4_dcC67NOpwCvijGK-AtFpvDV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/3BHa76_4HH5QEnjYfZvCsgTXEVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.40.0/23
94.154.44.0/23
Signature Algorithm: sha256WithRSAEncryption
a8:9b:ba:24:e7:01:38:82:61:83:e5:0b:c9:88:e0:80:2a:94:
1d:38:76:55:02:01:7e:8c:68:9f:f9:0e:67:78:28:ff:3d:3d:
99:5a:96:fd:ce:2a:8a:c9:41:cc:14:c8:13:6f:b9:3c:10:13:
0a:3a:8f:b1:50:34:4d:1f:5d:e8:45:d5:a0:91:2c:83:2b:c1:
65:ce:0d:5c:22:97:1c:df:c8:70:1b:09:7c:39:66:27:0a:4c:
59:be:97:9a:d1:38:d0:4d:6e:2d:23:9e:6c:b2:cd:ab:b0:db:
ef:3d:09:f9:e2:b4:b1:03:5f:b4:1e:1d:a1:d3:3b:79:a5:c4:
d1:dd:83:85:46:d5:f5:25:a7:5c:89:5c:c2:8a:ff:d9:dd:b6:
b2:1c:89:b7:3b:ad:4d:2c:3f:2f:5d:e9:c5:3f:04:2d:bb:94:
8a:48:a5:3f:41:0f:7a:51:d2:04:df:db:52:cc:e5:f7:06:70:
c7:17:b8:b2:bc:c7:c3:5d:17:90:4a:59:e8:90:fe:4e:be:83:
68:c9:04:f7:33:63:42:d3:6e:3a:8d:52:7c:47:8d:9d:d4:5c:
ef:61:1d:03:83:20:60:5d:4c:c7:87:85:27:3e:f5:13:39:2f:
e4:03:a9:08:c7:14:0b:8b:8b:98:ae:55:94:37:66:d7:51:c3:
42:22:46:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 3 21:09:18 2024 by rpki-client on console-fra.rpki-client.org