Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/cGm5jFxYsVv1JXL5R-Slv-rxIVY.roa
File: cGm5jFxYsVv1JXL5R-Slv-rxIVY.roa (raw, json)
Hash identifier: 9tM0peZsY7mGc1t8jmSqkbm4CSY2zKmQ6xwZv1A7EDk=
Subject key identifier: 70:69:B9:8C:5C:58:B1:5B:F5:25:72:F9:47:E4:A5:BF:EA:F1:21:56
Certificate issuer: /CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Certificate serial: 019059EB1CEAE43FD42763F72CAA109084FE
Authority key identifier: DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/cGm5jFxYsVv1JXL5R-Slv-rxIVY.roa
Signing time: Thu 27 Jun 2024 13:38:18 +0000
ROA not before: Thu 27 Jun 2024 13:38:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205733
IP address blocks: 94.154.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Jul 2024 18:56:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:59:eb:1c:ea:e4:3f:d4:27:63:f7:2c:aa:10:90:84:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Validity
Not Before: Jun 27 13:38:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7069b98c5c58b15bf52572f947e4a5bfeaf12156
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:02:0a:2a:c5:d8:70:d2:b2:1c:5a:5b:ea:aa:
0a:a4:3d:a8:61:a6:b7:0a:f7:27:a3:95:ef:a9:0b:
45:5d:c5:02:4d:07:55:96:7c:8c:3e:a2:3c:d0:9c:
40:f5:86:2b:1f:3c:c1:ae:c5:c9:9e:0b:df:a8:86:
5a:ec:2b:c0:b0:74:1c:77:c7:74:bd:b7:5c:c3:6d:
97:85:35:ee:08:1e:7f:8b:52:e8:03:ad:da:64:2f:
06:1d:13:3e:9a:5e:8d:1d:5e:ab:89:bc:b2:9e:9c:
6d:5b:aa:c2:53:8e:6f:d4:8c:88:5a:d9:f0:d7:e9:
d6:51:3f:56:7a:0b:fb:6b:1c:86:5f:53:34:e7:05:
7b:21:a8:05:52:80:5d:27:64:82:28:5e:46:4a:e3:
b3:c6:38:bd:4b:27:69:6a:ba:74:0f:ec:53:15:73:
8c:77:90:f1:3e:b1:ce:d4:d0:e6:b2:02:d4:40:e5:
ce:e8:0c:2d:eb:20:c2:0a:16:64:0e:c6:1e:38:e1:
76:f2:48:7b:c0:88:e7:1a:5c:d8:c4:a6:3c:eb:53:
28:ca:93:7f:f7:4a:43:d3:8e:f3:77:f3:a7:58:ba:
ba:bd:f3:18:08:e9:36:ad:16:21:d0:4b:7a:bc:80:
0d:05:b1:33:b9:de:c6:4c:3f:91:73:ff:aa:71:5b:
c6:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:69:B9:8C:5C:58:B1:5B:F5:25:72:F9:47:E4:A5:BF:EA:F1:21:56
X509v3 Authority Key Identifier:
keyid:DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/cGm5jFxYsVv1JXL5R-Slv-rxIVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/3BHa76_4HH5QEnjYfZvCsgTXEVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.46.0/24
Signature Algorithm: sha256WithRSAEncryption
67:19:6c:c2:bf:28:62:0e:1b:1e:ac:ec:78:3b:82:bd:18:9e:
28:82:22:da:97:f4:d6:77:45:dc:e3:00:7e:0b:3d:5c:49:5e:
51:b9:4d:95:7b:80:b3:ed:4d:fe:8b:f2:00:8a:53:e4:0a:dc:
24:0e:d4:aa:34:75:c8:62:53:fd:32:74:5e:73:06:c7:b1:b1:
41:bf:21:2e:bc:08:03:2c:c8:c1:17:19:b3:6c:c9:61:df:29:
ca:ab:69:93:b4:7b:ff:65:5c:f1:85:ff:5b:bd:71:36:bd:0d:
d2:81:fe:8a:2a:49:84:5f:43:a2:f0:76:84:cb:00:14:d4:14:
c7:91:70:57:0c:98:64:c0:2f:65:05:b9:e4:b9:2f:78:de:de:
53:53:55:c5:14:ce:9e:cd:d1:3d:7a:2d:79:f7:f2:22:0f:0b:
b6:83:cc:75:31:75:82:ab:7b:2d:ec:99:cb:b0:b8:ff:c0:ab:
72:2f:70:46:15:b4:88:80:26:18:ba:16:e0:82:2f:e1:f5:d4:
c1:ab:ab:f9:33:14:d1:8a:1f:b6:74:68:dc:14:0f:68:2b:4c:
ba:23:9a:4a:06:d7:ba:60:44:10:11:9d:bd:f0:a1:18:bd:34:
6b:f6:4d:f1:1d:74:c2:54:c6:08:87:39:73:4d:b9:cc:b4:1b:
6b:d1:4e:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 12 21:39:45 2024 by rpki-client on console-ams.rpki-client.org