Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/aL_ovxsZtVxfPC_ri1je3lDLvOE.roa
File: aL_ovxsZtVxfPC_ri1je3lDLvOE.roa (raw, json)
Hash identifier: veTbaLoxZ7LcNQlBNHDI8CcJFU4OnYrmYgA1j3D07w8=
Subject key identifier: 68:BF:E8:BF:1B:19:B5:5C:5F:3C:2F:EB:8B:58:DE:DE:50:CB:BC:E1
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 018EF5D51498CA9B43544AF388C756AA9419
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/aL_ovxsZtVxfPC_ri1je3lDLvOE.roa
Signing time: Fri 19 Apr 2024 10:09:25 +0000
ROA not before: Fri 19 Apr 2024 10:09:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 94.103.187.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Apr 2024 14:48:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:f5:d5:14:98:ca:9b:43:54:4a:f3:88:c7:56:aa:94:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Apr 19 10:09:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=68bfe8bf1b19b55c5f3c2feb8b58dede50cbbce1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:26:82:10:c2:df:fb:a9:a5:82:94:e1:ba:90:
ea:34:ad:ce:69:be:d0:8d:dd:9b:95:6e:13:e4:29:
be:2b:d1:df:0e:3d:01:56:3d:e4:88:4d:91:73:90:
c2:67:2a:e5:ba:9e:b5:a6:d5:d3:15:57:57:2a:1a:
6a:ed:01:2f:d7:1e:7a:5b:cf:4e:66:fb:45:dc:7c:
8a:8a:03:eb:50:81:3d:b4:42:51:f7:53:26:ae:58:
8a:18:00:e1:dd:16:2b:21:d6:20:a3:40:8f:cd:bc:
84:02:eb:eb:cd:8a:82:83:72:da:d5:73:1a:dc:07:
e7:42:a9:8b:94:64:21:ce:cc:de:15:16:46:ea:d2:
a9:e7:03:67:9d:85:db:be:5b:e4:b8:a8:a3:8a:08:
95:7a:d9:4c:51:32:4f:08:a8:5c:0f:91:16:ca:e2:
dd:e8:00:34:a2:50:2f:34:4f:9b:48:2f:71:c3:fe:
3c:f0:36:3a:a4:22:b9:9a:96:7a:7e:91:da:c9:be:
09:71:ee:a3:99:a1:29:da:77:d2:d6:15:5a:af:0d:
26:a6:35:a1:fe:98:0b:65:14:b5:23:fb:da:ea:0f:
40:88:c6:55:63:c9:24:b1:aa:ca:c3:69:91:82:20:
29:f7:1a:c2:6f:44:ea:fa:2d:cb:76:e0:ca:69:78:
98:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:BF:E8:BF:1B:19:B5:5C:5F:3C:2F:EB:8B:58:DE:DE:50:CB:BC:E1
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/aL_ovxsZtVxfPC_ri1je3lDLvOE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.103.187.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:d2:dd:82:e3:d1:be:55:79:af:d5:6b:38:42:81:62:ed:33:
c5:bd:c4:c2:d5:c4:a8:10:f2:28:64:18:8c:63:93:46:ca:1f:
e2:56:04:21:c6:6e:a9:40:a5:94:a1:9e:ef:f8:54:f0:99:02:
74:83:66:d5:07:94:3a:46:7b:77:51:9f:ad:66:6d:bb:02:45:
25:b1:49:2d:f6:c6:62:d8:34:9f:f7:41:9d:b5:85:65:e4:6c:
d1:85:42:53:67:5a:bc:5a:7c:73:2a:60:57:f3:2b:0c:ce:b1:
4e:ba:9d:d7:29:ea:f9:1b:46:a5:10:77:d8:fd:d5:9b:72:c3:
cc:69:39:21:f9:bb:43:eb:3c:f4:64:45:bb:cb:b8:85:dd:0c:
8c:8c:30:db:68:6c:75:45:12:7d:0e:82:72:21:fa:0b:c0:d1:
41:00:aa:96:29:97:b6:2f:29:0b:08:0d:16:5d:dc:47:ff:a8:
bb:b1:85:c7:44:73:e8:7a:a2:a4:7a:c2:28:03:e6:95:f4:80:
e5:dc:95:b2:04:29:d7:e2:98:cb:e3:5c:5e:ee:d0:25:1a:d7:
e2:b3:b1:98:7c:aa:64:5f:4c:3c:7e:76:31:24:2f:7b:59:d3:
7a:34:f6:58:7c:3a:32:5c:73:10:01:87:db:25:9b:7b:e6:09:
7c:23:4b:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:45 2024 by rpki-client on console-fra.rpki-client.org