Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/5d0278-216e-4712-9487-19b3d1544c39/1/LW4ghb06EeE0dTgPeNPxufnN7hQ.roa
File: LW4ghb06EeE0dTgPeNPxufnN7hQ.roa (raw, json)
Hash identifier: R5em6+fWF0ISVUpdQ7u/hxpg8V6nwk80mojeDsF3/Sc=
Subject key identifier: 2D:6E:20:85:BD:3A:11:E1:34:75:38:0F:78:D3:F1:B9:F9:CD:EE:14
Certificate issuer: /CN=095dff1f6bd8813de5ff9af167247f78b88439bd
Certificate serial: 0185708CDC6DFFC05E056FFC5B1438460803
Authority key identifier: 09:5D:FF:1F:6B:D8:81:3D:E5:FF:9A:F1:67:24:7F:78:B8:84:39:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CV3_H2vYgT3l_5rxZyR_eLiEOb0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/5d0278-216e-4712-9487-19b3d1544c39/1/LW4ghb06EeE0dTgPeNPxufnN7hQ.roa
Signing time: Mon 02 Jan 2023 03:35:57 +0000
ROA not before: Mon 02 Jan 2023 03:35:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1257
IP address blocks: 94.126.224.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:dc:6d:ff:c0:5e:05:6f:fc:5b:14:38:46:08:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=095dff1f6bd8813de5ff9af167247f78b88439bd
Validity
Not Before: Jan 2 03:35:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2d6e2085bd3a11e13475380f78d3f1b9f9cdee14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:20:36:2f:18:7b:dc:b2:8f:f9:a3:b6:70:32:
27:2c:54:d8:29:2b:f4:89:8a:a2:8a:94:34:9f:cf:
90:34:f0:34:13:4f:b0:19:00:04:75:bb:be:43:6f:
df:07:8e:f7:52:65:a3:1d:07:b9:61:43:1b:e0:b4:
ac:4b:18:51:2b:86:8c:f2:85:1f:b9:7e:5b:a7:01:
3b:1a:18:e4:52:98:f2:39:bf:cf:99:ef:70:11:e5:
99:66:bb:3b:f2:74:f2:68:ce:76:0a:13:1a:cc:7e:
9b:6a:ef:a0:98:3b:bc:20:31:4e:7b:46:9d:c3:93:
68:5d:c8:7c:cb:b8:0b:0d:4a:ea:52:f7:51:a4:3f:
4a:fb:44:22:35:78:96:c3:72:5e:5a:3d:29:79:14:
a6:9d:df:97:fa:ab:41:c2:a3:d4:6b:86:cf:cc:68:
a6:30:a3:75:36:0e:ae:3a:a8:f3:95:54:cd:5a:9b:
c0:ed:94:40:0e:cc:c8:c5:d7:4d:61:0f:d9:4b:84:
c3:63:a3:0e:85:e9:30:73:da:99:9f:98:56:28:0d:
43:7c:72:89:02:7e:91:9c:8f:4e:e5:59:e5:ba:51:
22:57:7e:03:8f:0d:86:2e:12:06:9e:7b:96:27:cc:
b9:1d:7b:f4:3c:63:3a:4a:bc:94:5c:76:f9:5c:ac:
5e:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:6E:20:85:BD:3A:11:E1:34:75:38:0F:78:D3:F1:B9:F9:CD:EE:14
X509v3 Authority Key Identifier:
keyid:09:5D:FF:1F:6B:D8:81:3D:E5:FF:9A:F1:67:24:7F:78:B8:84:39:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CV3_H2vYgT3l_5rxZyR_eLiEOb0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5d0278-216e-4712-9487-19b3d1544c39/1/LW4ghb06EeE0dTgPeNPxufnN7hQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5d0278-216e-4712-9487-19b3d1544c39/1/CV3_H2vYgT3l_5rxZyR_eLiEOb0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.126.224.0/21
Signature Algorithm: sha256WithRSAEncryption
3d:67:cd:5c:60:83:c5:1a:f8:90:1b:21:e6:d3:8d:49:5e:38:
da:9e:81:a7:a0:31:e3:cf:d3:44:5e:fc:f5:ab:68:06:88:1c:
26:28:e7:9d:f7:db:92:20:c2:cd:85:49:f5:b8:d7:49:0d:94:
86:39:15:86:31:6a:81:cb:30:4c:cc:33:42:e8:ed:15:a4:5d:
6b:c0:73:cc:e4:fa:91:88:d2:bf:a8:8e:00:5c:cb:52:77:63:
71:50:29:1c:72:50:5f:96:40:48:b2:aa:a1:e1:89:68:a2:a7:
29:ab:1b:bf:c3:39:2a:41:fb:48:e6:9c:aa:d7:eb:9e:b6:0a:
9c:09:90:c7:be:1e:0d:27:ec:f6:71:d6:11:a2:c3:16:82:a1:
42:39:f2:d5:6c:5f:10:f1:a2:12:31:31:0a:f3:82:87:4c:4a:
2c:31:9c:45:23:84:a4:5a:08:da:ba:67:2d:38:1e:66:48:d6:
c2:85:be:05:fa:f5:a3:a1:09:8b:23:fa:bc:bd:0f:d8:88:30:
81:b0:28:96:f0:ff:19:2d:6e:91:a9:24:87:7e:9a:e6:29:95:
e8:72:cd:24:e3:1e:cd:5c:ff:38:56:c4:bc:e0:e7:8c:8e:f5:
98:a7:2c:e9:02:dc:5a:c3:f8:a5:f2:b7:31:94:ff:56:12:85:
44:a3:ee:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:59 2024 by rpki-client on console-ams.rpki-client.org