Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/mFxbVs0V3qzH7xloDhmAIHgwyuc.roa
File: mFxbVs0V3qzH7xloDhmAIHgwyuc.roa (raw, json)
Hash identifier: CH1X1s+iZ5oBkT8TybnHa7E3UR3Ye9UJasBLiaQkWe8=
Subject key identifier: 98:5C:5B:56:CD:15:DE:AC:C7:EF:19:68:0E:19:80:20:78:30:CA:E7
Certificate issuer: /CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Certificate serial: 018D120996CA9F025E0316ED37E62E90F41A
Authority key identifier: DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/mFxbVs0V3qzH7xloDhmAIHgwyuc.roa
Signing time: Tue 16 Jan 2024 11:30:34 +0000
ROA not before: Tue 16 Jan 2024 11:30:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48678
IP address blocks: 94.154.40.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Mar 2024 09:22:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:12:09:96:ca:9f:02:5e:03:16:ed:37:e6:2e:90:f4:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Validity
Not Before: Jan 16 11:30:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=985c5b56cd15deacc7ef19680e1980207830cae7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:df:35:b5:ae:7d:33:39:a6:1d:e7:fc:d9:76:
ba:f2:ba:cb:64:2d:50:9f:4e:a5:85:62:6c:d7:05:
a9:01:96:30:ff:7d:cf:a2:84:f8:29:83:41:96:54:
9f:2e:ce:d0:0c:fe:e6:8c:ed:54:02:da:a4:3b:f8:
8d:e5:bc:3b:bb:32:ac:1d:0e:b3:6f:19:5d:a2:83:
f2:d5:d6:07:cb:35:ad:b7:83:96:7c:6b:ee:1a:b6:
f7:2a:2a:4b:76:48:4f:cc:1c:85:69:27:55:36:9c:
6b:76:a7:bc:57:3f:66:25:90:c0:5f:1f:6c:75:89:
fc:4d:4d:28:32:71:13:f6:d3:ca:d9:ad:ae:87:6f:
53:00:98:ea:9e:26:ed:ac:a7:8d:69:fc:7a:d7:60:
3a:fd:3d:7b:3d:b6:2e:76:b9:a5:2a:7f:22:59:ad:
79:58:31:69:ec:13:ee:65:97:81:74:ba:8d:28:ca:
25:be:03:ab:19:bb:e2:e0:64:e5:7d:dd:f7:f4:94:
c1:3a:ae:f9:2b:d6:60:b0:41:b7:c5:20:9a:62:51:
09:fe:cc:64:04:96:b1:b7:06:c0:4f:62:3b:ea:3b:
c7:75:4d:24:97:0f:7f:57:d3:c9:07:23:ec:cd:7a:
ed:c1:a7:78:ed:fa:af:72:0f:d6:64:32:4c:27:77:
3b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:5C:5B:56:CD:15:DE:AC:C7:EF:19:68:0E:19:80:20:78:30:CA:E7
X509v3 Authority Key Identifier:
keyid:DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/mFxbVs0V3qzH7xloDhmAIHgwyuc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/3BHa76_4HH5QEnjYfZvCsgTXEVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.40.0/24
Signature Algorithm: sha256WithRSAEncryption
25:1f:99:dc:66:58:5c:1b:d3:05:17:c7:c2:52:dd:47:f7:25:
66:7b:53:08:61:87:d2:f6:e8:e6:8c:80:22:d4:1c:b5:01:b7:
00:d1:17:7b:7b:51:39:7c:2b:f8:86:01:a0:40:c3:62:7e:33:
9f:6f:a4:b6:10:d8:42:d9:b9:b6:41:cd:cd:fc:a6:ce:8c:ee:
16:e3:84:21:1c:5d:fa:f3:b4:f1:0b:6f:9f:71:ff:8b:6e:24:
82:c7:52:4f:eb:96:66:c2:cc:eb:f3:fb:b0:7f:3c:52:8c:36:
c7:fd:a6:c7:d5:a6:9b:a1:12:ad:ea:97:64:95:ba:9e:bc:01:
51:f5:0c:97:8e:d4:af:2a:75:da:95:f2:de:06:f7:48:fa:40:
1a:0e:05:f4:82:73:63:90:18:25:54:29:36:a0:6b:25:1d:73:
99:c1:91:86:10:b5:74:4b:74:89:1a:42:ce:0f:5c:02:bf:99:
b8:e8:1b:37:d4:de:2f:98:7e:9e:3e:5a:4b:48:a5:90:c4:d4:
fe:a6:dd:35:3b:ce:06:14:20:03:94:40:e3:51:79:d1:1d:0c:
1a:94:27:99:3e:68:34:50:69:2c:bb:50:62:d0:f6:24:86:1d:
81:9a:5d:f9:7d:55:70:5f:4f:d6:bc:1f:71:f9:a3:8b:53:27:
63:4c:d8:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 7 13:55:42 2024 by rpki-client on console-fra.rpki-client.org