Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/T_sd3kH80v-qG0YTE5PB8aBocg0.roa
File: T_sd3kH80v-qG0YTE5PB8aBocg0.roa (raw, json)
Hash identifier: pKVsj/0xJxVbL7QHeYKdxicLhnYmHwtRw+vMKJzbvcg=
Subject key identifier: 4F:FB:1D:DE:41:FC:D2:FF:AA:1B:46:13:13:93:C1:F1:A0:68:72:0D
Certificate issuer: /CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Certificate serial: 0190697D4FD918FDDF8A6457A7505059CF4D
Authority key identifier: DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/T_sd3kH80v-qG0YTE5PB8aBocg0.roa
Signing time: Sun 30 Jun 2024 14:12:18 +0000
ROA not before: Sun 30 Jun 2024 14:12:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49217
IP address blocks: 94.154.42.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Sep 2024 07:33:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:69:7d:4f:d9:18:fd:df:8a:64:57:a7:50:50:59:cf:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Validity
Not Before: Jun 30 14:12:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4ffb1dde41fcd2ffaa1b46131393c1f1a068720d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:c1:92:81:77:3f:6c:36:12:0c:58:8e:25:36:
75:04:d7:3e:e0:6d:cc:c2:a5:e3:56:12:74:60:97:
e7:e1:5a:e0:2e:d8:52:57:79:9b:ec:a4:3e:0c:a1:
ee:7c:08:25:0c:2d:dc:b6:de:97:16:9d:02:6b:de:
c2:21:32:e4:cd:10:7b:ec:2f:5a:e9:05:46:0d:07:
89:ca:d0:b4:cd:f3:8e:c8:62:c4:da:0c:c1:7c:30:
f5:5f:15:e2:a2:2f:25:5e:63:15:9f:99:23:6f:a2:
dc:ed:28:2c:1e:2e:5f:fd:a6:60:3a:6d:da:e3:ea:
a3:ed:00:f6:49:71:87:33:37:a2:bd:97:14:2b:ab:
b5:89:8f:ae:fa:c5:97:fd:ee:1b:07:33:47:7e:ba:
a0:c9:7c:c3:e9:b5:2a:1a:6d:66:f4:9a:44:91:bf:
85:39:4a:22:25:3c:5a:4b:0e:d5:a4:ae:1a:7b:b2:
de:6d:96:7d:84:ca:1c:4b:9d:38:3e:c5:55:6d:35:
54:c4:27:e0:82:20:83:34:73:48:69:00:45:06:3b:
12:05:ab:09:5d:bc:a7:60:4e:da:17:bb:99:f7:73:
48:cf:22:68:f5:56:0f:67:2b:05:bf:61:3f:52:3e:
44:a1:e7:6d:bf:5f:d4:63:3e:ce:89:4f:84:f4:18:
15:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:FB:1D:DE:41:FC:D2:FF:AA:1B:46:13:13:93:C1:F1:A0:68:72:0D
X509v3 Authority Key Identifier:
keyid:DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/T_sd3kH80v-qG0YTE5PB8aBocg0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/3BHa76_4HH5QEnjYfZvCsgTXEVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.42.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:9d:c9:8f:70:6c:09:8f:a5:44:95:95:8f:1f:63:ce:5d:8e:
09:be:aa:03:bc:ca:e3:9c:d2:f4:92:bf:65:30:5a:bb:99:1e:
82:00:00:3a:5f:05:2b:39:66:04:b4:6e:79:e1:86:e4:a0:c0:
0f:06:f9:6f:fd:ac:ae:41:e6:a8:1f:52:de:7f:3a:b2:25:f4:
40:63:af:7c:32:97:bf:e3:cc:6b:d8:17:fe:86:62:59:d4:5a:
11:74:fe:2c:55:f0:ce:8c:9c:b1:ed:42:5c:4c:85:13:4c:48:
57:4a:4f:64:41:a4:2f:59:1e:72:23:4a:43:80:f9:14:b9:71:
0d:81:38:07:11:ff:af:7d:c4:75:36:a6:b8:7b:e7:fe:28:26:
51:eb:df:fe:4a:66:00:82:b3:e9:5f:82:47:e6:5d:03:82:a5:
60:4f:22:3e:57:5f:b0:d5:ab:29:bf:0f:31:bd:2f:ae:85:7d:
76:45:98:7e:0f:d9:3d:d9:67:29:0a:29:ec:7f:08:2d:eb:da:
9f:db:ac:e1:e7:09:dc:19:ea:ee:22:b5:3b:80:f2:0d:4e:65:
f9:9b:bc:16:5c:5c:fc:60:13:7d:07:66:4d:48:22:e5:cb:ea:
7c:27:4b:7a:23:72:98:26:db:db:34:e0:73:29:02:39:58:37:
47:9b:ee:04
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZBpfU/ZGP3fimRXp1BQWc9NMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjMTFkYWVmYWZmODFjN2U1MDEyNzhkODdkOWJjMmIyMDRk
NzExNTUwHhcNMjQwNjMwMTQxMjE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZmZiMWRkZTQxZmNkMmZmYWExYjQ2MTMxMzkzYzFmMWEwNjg3MjBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjcGSgXc/bDYSDFiOJTZ1BNc+4G3M
wqXjVhJ0YJfn4VrgLthSV3mb7KQ+DKHufAglDC3ctt6XFp0Ca97CITLkzRB77C9a
6QVGDQeJytC0zfOOyGLE2gzBfDD1XxXioi8lXmMVn5kjb6Lc7SgsHi5f/aZgOm3a
4+qj7QD2SXGHMzeivZcUK6u1iY+u+sWX/e4bBzNHfrqgyXzD6bUqGm1m9JpEkb+F
OUoiJTxaSw7VpK4ae7LebZZ9hMocS504PsVVbTVUxCfggiCDNHNIaQBFBjsSBasJ
XbynYE7aF7uZ93NIzyJo9VYPZysFv2E/Uj5Eoedtv1/UYz7OiU+E9BgVKQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE/7Hd5B/NL/qhtGExOTwfGgaHINMB8GA1UdIwQY
MBaAFNwR2u+v+Bx+UBJ42H2bwrIE1xFVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0JIYTc2XzRISDVRRW5qWWZadkNzZ1RYRVZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC9iMjI2MDMtOTBhYi00M2FkLWFiMTYt
NjUyNDljYmM1NzNjLzEvVF9zZDNrSDgwdi1xRzBZVEU1UEI4YUJvY2cwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC9iMjI2MDMtOTBhYi00M2FkLWFiMTYtNjUyNDljYmM1NzNj
LzEvM0JIYTc2XzRISDVRRW5qWWZadkNzZ1RYRVZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXpoqMA0G
CSqGSIb3DQEBCwUAA4IBAQBvncmPcGwJj6VElZWPH2POXY4JvqoDvMrjnNL0kr9l
MFq7mR6CAAA6XwUrOWYEtG554YbkoMAPBvlv/ayuQeaoH1LefzqyJfRAY698Mpe/
48xr2Bf+hmJZ1FoRdP4sVfDOjJyx7UJcTIUTTEhXSk9kQaQvWR5yI0pDgPkUuXEN
gTgHEf+vfcR1Nqa4e+f+KCZR69/+SmYAgrPpX4JH5l0DgqVgTyI+V1+w1aspvw8x
vS+uhX12RZh+D9k92WcpCinsfwgt69qf26zh5wncGeruIrU7gPINTmX5m7wWXFz8
YBN9B2ZNSCLly+p8J0t6I3KYJtvbNOBzKQI5WDdHm+4E
-----END CERTIFICATE-----
Generated at Wed Sep 11 10:41:58 2024 by rpki-client on console-ams.rpki-client.org