Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/1-z381MngTNnlyx0LlXut2ExXdFg.roa
File: 1-z381MngTNnlyx0LlXut2ExXdFg.roa (raw, json)
Hash identifier: G/v6f2YnkGyyQdVJ84iniOF0/sX7zrVi0uXdMa/oBl4=
Subject key identifier: FB:3D:FC:D4:C9:E0:4C:D9:E5:CB:1D:0B:95:7B:AD:D8:4C:57:74:58
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 018B9589C6D1C480C0183D4E3BF757C17B7A
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/1-z381MngTNnlyx0LlXut2ExXdFg.roa
Signing time: Fri 03 Nov 2023 14:15:16 +0000
ROA not before: Fri 03 Nov 2023 14:15:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205733
IP address blocks: 94.154.35.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:95:89:c6:d1:c4:80:c0:18:3d:4e:3b:f7:57:c1:7b:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Nov 3 14:15:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fb3dfcd4c9e04cd9e5cb1d0b957badd84c577458
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:79:1b:9c:60:a8:e0:2c:84:c7:83:80:7c:bf:
f0:28:ba:db:90:4e:d3:c2:45:a0:3b:95:d7:21:fc:
74:f8:40:8e:16:65:53:f7:76:6a:41:0a:ba:9e:c7:
0c:3e:b9:3b:dc:22:0f:40:ce:a3:2f:62:f3:f5:87:
eb:51:c6:3e:83:8b:6b:f2:97:cc:70:48:fe:3c:65:
3d:53:d4:f3:c1:3c:8e:f4:2e:8c:8f:c7:96:d7:c9:
90:45:71:89:55:d2:45:ed:99:85:45:1f:d3:6d:4f:
04:d3:39:d4:41:d4:a5:35:bb:fd:22:2f:fa:30:50:
2f:96:3d:1f:78:84:ee:71:84:20:6b:d4:77:a4:fe:
86:3a:c9:5f:c3:fe:97:60:83:25:37:9e:6f:7a:23:
af:c4:ee:0b:d4:11:78:80:04:b3:51:a1:1b:2c:be:
3f:7b:1b:a6:2f:22:47:86:17:81:f0:15:b5:2d:38:
8c:c4:83:ab:aa:7c:04:c2:a5:cc:42:39:88:82:2c:
80:c3:14:6d:ee:dd:88:d8:97:fe:45:6a:8c:c4:51:
c4:2f:7a:10:02:f5:6a:b6:1d:bc:dd:b5:4b:c0:2b:
5b:bb:84:cf:6d:27:8b:6c:43:56:c0:8b:93:09:1c:
90:21:ba:e4:a7:70:68:c7:21:6b:d4:1a:e6:6e:80:
ff:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:3D:FC:D4:C9:E0:4C:D9:E5:CB:1D:0B:95:7B:AD:D8:4C:57:74:58
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/1-z381MngTNnlyx0LlXut2ExXdFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.35.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:2b:4d:4b:84:3e:99:95:01:05:f3:53:4e:ed:9b:1e:28:b4:
52:47:c1:48:cc:44:31:73:75:1d:08:1c:c0:c5:7f:e2:56:1e:
39:b3:10:17:d5:54:e5:ef:28:4f:3b:10:0b:86:6f:08:5e:09:
91:ac:42:a7:5b:08:97:0d:6a:27:71:e1:e9:4d:33:10:61:d8:
ba:58:86:00:2f:57:a1:5d:55:bd:c8:58:85:aa:00:9f:bf:35:
ba:ea:e3:ad:08:87:17:f5:85:25:7c:19:85:3f:59:4b:30:52:
ab:cc:e0:68:ed:4c:ef:9c:57:42:f2:3f:94:1f:61:9d:db:b3:
80:c5:16:fe:c0:06:ad:ec:de:2b:b5:c3:cd:14:18:c0:cd:62:
b2:72:33:8c:dc:af:48:e4:2c:4d:33:fb:52:39:f7:f7:0d:79:
c3:5b:24:89:a9:4b:94:70:b6:e4:89:26:eb:da:91:ce:8c:dd:
ec:09:52:fb:78:84:57:64:3e:8c:c0:75:11:d3:d5:13:d0:7f:
8d:d0:f0:c9:f0:2a:7d:ae:ee:a4:a5:b6:de:a2:9d:0c:60:80:
a1:5c:e0:23:c1:64:2f:72:ab:48:21:39:6b:c8:2e:a5:0f:ca:
27:7a:4e:f7:d5:68:ed:67:4f:2b:c0:de:76:3d:7a:0c:4d:5a:
f4:fe:d1:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 11 12:16:16 2023 by rpki-client on console-fra.rpki-client.org