Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/da7pPumPnL6CHjqehUk8l0-TLyY.roa
File: da7pPumPnL6CHjqehUk8l0-TLyY.roa (raw, json)
Hash identifier: ffsafUsvMh3NFcexPV4TwVarHKqvOXZ9L/SEZSC2/dY=
Subject key identifier: 75:AE:E9:3E:E9:8F:9C:BE:82:1E:3A:9E:85:49:3C:97:4F:93:2F:26
Certificate issuer: /CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Certificate serial: 018CC5DC5CE62AAB9796CF21D069F1EFD433
Authority key identifier: DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/da7pPumPnL6CHjqehUk8l0-TLyY.roa
Signing time: Mon 01 Jan 2024 16:30:02 +0000
ROA not before: Mon 01 Jan 2024 16:30:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48678
IP address blocks: 94.154.40.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Jan 2024 08:23:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:5c:e6:2a:ab:97:96:cf:21:d0:69:f1:ef:d4:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Validity
Not Before: Jan 1 16:30:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=75aee93ee98f9cbe821e3a9e85493c974f932f26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5c:15:12:93:dd:c4:21:17:8f:61:1d:4a:79:
99:a5:91:0f:fe:c7:d0:b3:18:50:2c:0e:61:66:60:
90:a2:5c:62:13:96:0b:85:3d:86:f4:16:81:e7:47:
ea:a5:af:67:29:5f:0b:42:c3:38:f6:fc:d0:4e:5a:
79:45:ac:cd:54:88:e9:d1:d0:75:09:d4:86:48:35:
94:87:8f:8b:44:69:95:61:b1:c7:52:d1:ec:1e:e1:
2a:7e:b2:1c:d0:85:fd:da:22:99:03:a8:41:6e:6a:
89:d8:58:97:f8:e6:22:45:75:9b:e7:e8:fc:85:07:
55:36:45:a4:58:c7:fb:5b:7e:9c:67:ff:12:1f:e4:
dc:9a:f6:59:59:5f:2e:01:32:1f:bc:c2:f5:3e:23:
07:51:fc:ba:32:5d:d5:9c:5c:fe:71:1b:2b:ac:07:
77:7d:71:60:38:48:60:70:99:c5:11:ed:15:6f:c3:
ba:91:be:69:29:ea:84:83:45:d7:f2:17:89:e1:c4:
66:55:d3:40:81:dd:96:0a:61:06:e5:b3:a3:c6:fe:
76:36:e6:1e:1f:b6:70:c9:e7:ef:67:b5:02:59:fc:
bb:4c:7e:d6:00:2a:39:6a:01:2b:a1:e2:49:27:c3:
ec:39:bb:cc:98:89:dd:12:2c:ff:a3:cb:0a:e2:85:
e4:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:AE:E9:3E:E9:8F:9C:BE:82:1E:3A:9E:85:49:3C:97:4F:93:2F:26
X509v3 Authority Key Identifier:
keyid:DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/da7pPumPnL6CHjqehUk8l0-TLyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/3BHa76_4HH5QEnjYfZvCsgTXEVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.40.0/24
Signature Algorithm: sha256WithRSAEncryption
91:63:56:0e:ca:f7:55:75:86:01:e1:5c:5b:a9:00:2a:08:10:
f4:72:dd:53:2a:96:4e:5c:05:88:10:2f:ed:be:ff:e1:d7:c2:
7e:db:72:4b:ed:22:37:81:d6:34:3d:77:ee:a7:71:97:8a:bb:
4c:15:ee:a2:42:f7:5f:86:c0:37:ed:eb:78:02:2a:60:14:06:
82:08:bd:a3:20:59:33:4d:7a:5d:73:73:37:26:a3:bf:34:13:
97:ca:95:00:07:aa:8c:d9:32:cc:b4:58:72:14:1f:5d:80:9a:
94:3b:cb:30:9c:0c:4a:38:8c:b7:c5:a0:fc:03:a6:de:ae:7b:
89:5f:cf:25:19:b3:2a:a8:01:76:c4:37:2a:15:b9:ed:30:76:
b2:cf:a3:ea:ca:4d:43:2e:bb:9e:e2:8d:f9:cd:9b:a7:2b:db:
8c:49:eb:af:e3:2c:ee:9b:e7:5d:7a:fe:71:2b:70:c1:d8:b4:
2d:d3:ce:34:c6:35:38:3e:2e:8b:a6:c9:4d:5b:e5:50:0e:6f:
d9:ea:c6:61:26:32:46:08:8b:77:32:62:68:07:8b:12:9e:23:
37:33:ff:da:b2:44:50:36:d1:0f:84:84:51:ef:63:25:30:ce:
83:3c:aa:9e:03:79:e1:d2:b4:fa:76:f9:8e:4e:ff:aa:e2:09:
9f:69:8a:7f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzF3FzmKquXls8h0Gnx79QzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjMTFkYWVmYWZmODFjN2U1MDEyNzhkODdkOWJjMmIyMDRk
NzExNTUwHhcNMjQwMTAxMTYzMDAyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NWFlZTkzZWU5OGY5Y2JlODIxZTNhOWU4NTQ5M2M5NzRmOTMyZjI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAolwVEpPdxCEXj2EdSnmZpZEP/sfQ
sxhQLA5hZmCQolxiE5YLhT2G9BaB50fqpa9nKV8LQsM49vzQTlp5RazNVIjp0dB1
CdSGSDWUh4+LRGmVYbHHUtHsHuEqfrIc0IX92iKZA6hBbmqJ2FiX+OYiRXWb5+j8
hQdVNkWkWMf7W36cZ/8SH+TcmvZZWV8uATIfvML1PiMHUfy6Ml3VnFz+cRsrrAd3
fXFgOEhgcJnFEe0Vb8O6kb5pKeqEg0XX8heJ4cRmVdNAgd2WCmEG5bOjxv52NuYe
H7ZwyefvZ7UCWfy7TH7WACo5agEroeJJJ8PsObvMmIndEiz/o8sK4oXkxQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHWu6T7pj5y+gh46noVJPJdPky8mMB8GA1UdIwQY
MBaAFNwR2u+v+Bx+UBJ42H2bwrIE1xFVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0JIYTc2XzRISDVRRW5qWWZadkNzZ1RYRVZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC9iMjI2MDMtOTBhYi00M2FkLWFiMTYt
NjUyNDljYmM1NzNjLzEvZGE3cFB1bVBuTDZDSGpxZWhVazhsMC1UTHlZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC9iMjI2MDMtOTBhYi00M2FkLWFiMTYtNjUyNDljYmM1NzNj
LzEvM0JIYTc2XzRISDVRRW5qWWZadkNzZ1RYRVZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXpooMA0G
CSqGSIb3DQEBCwUAA4IBAQCRY1YOyvdVdYYB4VxbqQAqCBD0ct1TKpZOXAWIEC/t
vv/h18J+23JL7SI3gdY0PXfup3GXirtMFe6iQvdfhsA37et4AipgFAaCCL2jIFkz
TXpdc3M3JqO/NBOXypUAB6qM2TLMtFhyFB9dgJqUO8swnAxKOIy3xaD8A6bernuJ
X88lGbMqqAF2xDcqFbntMHayz6Pqyk1DLrue4o35zZunK9uMSeuv4yzum+ddev5x
K3DB2LQt0840xjU4Pi6LpslNW+VQDm/Z6sZhJjJGCIt3MmJoB4sSniM3M//askRQ
NtEPhIRR72MlMM6DPKqeA3nh0rT6dvmOTv+q4gmfaYp/
-----END CERTIFICATE-----
Generated at Tue Jan 16 12:45:15 2024 by rpki-client on console-ams.rpki-client.org