Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/fSd0-kjrZAgLdPuoBdsag5Kyxqk.roa
File: fSd0-kjrZAgLdPuoBdsag5Kyxqk.roa (raw, json)
Hash identifier: j6M/ME3Ln09Bd6wfigMqIHU6cmMOV9vlxDttN5z2Lqc=
Subject key identifier: 7D:27:74:FA:48:EB:64:08:0B:74:FB:A8:05:DB:1A:83:92:B2:C6:A9
Certificate issuer: /CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Certificate serial: 018E8BC76834C7BE2BCC3E1F3393DB6798C4
Authority key identifier: DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/fSd0-kjrZAgLdPuoBdsag5Kyxqk.roa
Signing time: Fri 29 Mar 2024 19:54:45 +0000
ROA not before: Fri 29 Mar 2024 19:54:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 94.154.44.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Apr 2024 09:32:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:8b:c7:68:34:c7:be:2b:cc:3e:1f:33:93:db:67:98:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Validity
Not Before: Mar 29 19:54:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7d2774fa48eb64080b74fba805db1a8392b2c6a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:84:b5:58:dc:5a:a4:33:8a:52:1b:6e:ff:d8:
ab:34:70:ce:6f:e2:11:a6:f3:16:61:c7:a5:6a:97:
c8:4e:02:47:49:e7:5e:7a:df:2a:4b:07:12:a8:e8:
fa:d7:35:41:bd:2d:0f:36:6b:58:50:51:01:0b:d4:
7b:80:e4:85:54:83:23:7e:43:a4:1e:86:12:48:07:
e4:3e:3e:b9:5e:2d:f0:ec:72:d4:3f:f0:f3:30:35:
84:52:58:14:40:b9:c4:04:e1:95:07:b7:68:c6:80:
4d:01:a1:f8:83:81:ac:6a:41:84:04:96:60:f4:e9:
c2:fc:8a:38:34:2f:59:a6:1f:23:af:bf:ea:94:e0:
bd:7e:ee:82:a5:ad:8e:13:ae:c9:72:b9:f4:34:1e:
1d:56:b8:64:88:d0:5b:d7:b9:f2:5d:1e:46:11:8d:
0a:67:f5:05:a3:6b:3b:29:68:0d:86:f2:30:73:5e:
c3:0e:08:ae:d8:32:b9:31:50:b9:4b:54:69:48:53:
2c:c7:2b:5f:8b:49:99:27:90:48:1f:dc:18:df:a2:
18:6f:96:c8:1f:0e:41:01:0a:d4:64:c1:cc:1f:c6:
11:32:0e:bf:ee:50:d3:72:2c:5d:58:a7:a9:f6:84:
e5:f7:52:0d:8d:5a:3e:18:c6:7a:f9:43:e0:96:ed:
6c:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:27:74:FA:48:EB:64:08:0B:74:FB:A8:05:DB:1A:83:92:B2:C6:A9
X509v3 Authority Key Identifier:
keyid:DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/fSd0-kjrZAgLdPuoBdsag5Kyxqk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/3BHa76_4HH5QEnjYfZvCsgTXEVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.44.0/23
Signature Algorithm: sha256WithRSAEncryption
00:0d:91:7b:d3:7c:df:3a:81:c8:76:4f:ec:3e:1c:4d:95:53:
67:c3:c3:a7:c7:cd:ee:9b:db:84:33:85:79:50:48:8f:83:c6:
0a:ec:e9:61:9d:76:02:b6:ad:de:94:b0:94:2a:6a:f6:d7:37:
2f:86:1d:e6:6c:cb:74:6b:3e:10:0b:d7:fd:4d:86:6b:a6:4d:
b9:8e:1a:44:85:5e:db:36:aa:40:0a:03:4e:7c:f7:12:42:2f:
7a:99:74:50:4f:c9:2a:5c:98:0e:01:ef:c4:64:d3:28:cd:77:
96:c2:36:36:9a:11:ee:b3:67:e1:0f:05:30:ae:22:90:45:e8:
dd:15:60:20:83:de:75:e7:c1:74:b8:eb:39:f5:be:90:8d:91:
6e:b1:7f:d0:08:46:31:2e:90:f7:2d:18:29:27:da:b6:ba:52:
ec:20:c9:ae:a4:c8:11:19:71:7f:69:eb:9c:90:64:d2:13:8c:
85:4a:b9:c9:22:58:6f:6b:2b:1b:33:5a:cc:2c:d9:61:90:bd:
af:31:d9:75:0d:ae:18:5f:38:d6:c5:be:fb:2e:6e:d1:8d:9f:
5b:18:6b:4f:ee:a5:8a:00:6b:90:34:5b:b2:d7:5f:40:cc:ee:
1d:8a:31:d7:5e:d0:4f:a1:d8:08:bc:5c:ec:a0:ba:01:ca:e8:
18:5a:9f:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 3 13:57:58 2024 by rpki-client on console-ams.rpki-client.org