Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/i02eFMga6e31LSww6cjZp1yqlGA.roa
File: i02eFMga6e31LSww6cjZp1yqlGA.roa (raw, json)
Hash identifier: 3EnZERAfTNA3bTciAfF+UdmykJSMec6dQRMbqr3moCI=
Subject key identifier: 8B:4D:9E:14:C8:1A:E9:ED:F5:2D:2C:30:E9:C8:D9:A7:5C:AA:94:60
Certificate issuer: /CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Certificate serial: 018B96F7110AA786D1F9A8EB91D758C40934
Authority key identifier: DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/i02eFMga6e31LSww6cjZp1yqlGA.roa
Signing time: Fri 03 Nov 2023 20:54:16 +0000
ROA not before: Fri 03 Nov 2023 20:54:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205733
IP address blocks: 94.154.40.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 04 Nov 2023 15:29:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:96:f7:11:0a:a7:86:d1:f9:a8:eb:91:d7:58:c4:09:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Validity
Not Before: Nov 3 20:54:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b4d9e14c81ae9edf52d2c30e9c8d9a75caa9460
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ce:66:52:31:b7:cc:c0:52:7d:f1:11:82:d7:
09:82:69:28:20:80:42:de:82:0e:cb:5e:fe:aa:de:
b0:68:b2:cb:d5:43:78:fe:0c:93:f1:6a:0b:a8:ee:
b7:9b:bd:3f:6f:ee:1f:7d:79:88:40:18:e9:ce:4f:
38:09:62:06:e6:52:ae:28:fb:7b:af:04:78:2d:52:
54:52:10:af:32:da:b6:09:29:70:da:45:79:cc:d9:
54:e3:47:f6:67:57:5a:17:00:0d:d0:6e:44:a2:57:
31:0a:23:fd:80:ad:4e:c8:b8:11:6f:89:f2:ea:f3:
58:6b:35:21:a8:4c:60:61:81:d7:45:17:ba:07:72:
86:97:de:e7:da:5e:75:8b:70:55:b3:06:e6:5c:bf:
58:fa:74:53:e6:bc:1f:99:db:df:d1:e2:16:7a:db:
e9:e2:c0:b4:81:57:07:83:7d:87:4f:55:df:48:09:
9b:c3:20:ec:d6:39:2f:dc:52:84:cf:d4:72:e1:fa:
d2:df:0b:08:4c:6e:9a:02:58:05:e9:b1:42:5a:0b:
9d:a4:c6:48:56:7d:c2:5e:70:37:58:12:eb:98:b3:
39:7d:a1:eb:9b:3f:b8:cc:d8:49:a4:b4:7d:22:51:
30:a4:aa:00:60:f5:db:37:c9:77:79:42:93:00:79:
08:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:4D:9E:14:C8:1A:E9:ED:F5:2D:2C:30:E9:C8:D9:A7:5C:AA:94:60
X509v3 Authority Key Identifier:
keyid:DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/i02eFMga6e31LSww6cjZp1yqlGA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/3BHa76_4HH5QEnjYfZvCsgTXEVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.40.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:8f:c3:bd:52:e6:53:04:66:3d:e6:9c:6c:85:66:8c:b6:5d:
2c:39:b7:c0:3b:8d:0d:1a:ad:a0:78:8f:f0:6b:b1:2c:cd:33:
0d:e5:dc:68:94:17:04:49:d5:6b:06:ed:73:c9:84:b2:65:c1:
d6:d2:20:a1:6f:61:3f:46:3e:f5:17:38:97:22:70:bd:12:43:
c1:21:33:d0:14:36:6b:df:fe:52:fd:44:b1:4d:8b:70:b5:eb:
8c:52:35:87:5b:79:79:69:2d:33:bc:ea:14:89:9c:0a:4a:e9:
11:97:2a:d4:e4:46:80:74:ef:61:2c:fd:fa:fe:12:aa:0d:c4:
b2:ee:d2:5e:ca:a8:8c:3f:2c:3e:c9:a7:ef:ec:b5:74:0b:0c:
10:c8:68:e5:fa:fb:8b:2e:c2:0b:a2:cc:cb:4e:3b:76:2c:c1:
24:b1:2a:f0:e8:65:5b:91:08:55:5c:2c:60:59:27:60:5d:0a:
f9:e1:5f:d8:bc:6d:2c:92:6c:f3:ad:d7:f1:c6:0d:12:48:96:
55:52:29:f9:16:c5:6e:fc:cf:ed:b1:12:2c:d7:25:cd:6c:bb:
3b:26:1a:58:46:a6:10:ab:90:a8:1d:c9:ae:94:c0:f7:bc:c5:
99:72:e3:ca:59:e1:ec:2a:b5:d2:91:44:91:ad:56:05:05:3b:
44:85:ed:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:55 2024 by rpki-client on console-ams.rpki-client.org