Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/8-pMJoGnM-iXAeaMy3UmCBaFUuQ.roa
File: 8-pMJoGnM-iXAeaMy3UmCBaFUuQ.roa (raw, json)
Hash identifier: 0l73Xftn5GCQFpvRioKcB8VsZqE9d1nYvsU9V0SHt84=
Subject key identifier: F3:EA:4C:26:81:A7:33:E8:97:01:E6:8C:CB:75:26:08:16:85:52:E4
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 018A6FB40F8AEA75CDC54B09AC84AA1263B3
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/8-pMJoGnM-iXAeaMy3UmCBaFUuQ.roa
Signing time: Thu 07 Sep 2023 12:53:05 +0000
ROA not before: Thu 07 Sep 2023 12:53:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47757
IP address blocks: 94.154.35.0/24 maxlen: 24
94.154.34.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6f:b4:0f:8a:ea:75:cd:c5:4b:09:ac:84:aa:12:63:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Sep 7 12:53:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f3ea4c2681a733e89701e68ccb752608168552e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:9a:e7:02:de:ff:7c:8e:4f:7f:34:c4:67:a9:
27:5b:62:cd:8a:3f:90:48:b5:f6:8a:76:b1:54:7f:
03:9a:50:a7:d0:8d:ab:0c:4b:8a:c2:4d:94:39:31:
5e:06:0a:42:fb:cd:82:cb:43:5e:31:25:61:de:3c:
df:46:8d:8e:db:14:79:da:66:80:23:fd:4b:8b:e9:
8e:a8:d7:73:c8:9a:ab:41:0b:f0:39:7d:aa:d4:52:
32:76:7a:d1:97:3b:dd:65:ed:fe:6c:1b:e6:50:c4:
f9:c4:98:ef:a9:cb:b0:8e:15:0f:84:6e:f3:a0:9f:
0a:c6:97:0b:fd:25:8d:62:88:9f:ee:e0:c8:e4:1a:
c6:74:4f:08:9b:ea:3c:5f:75:e1:2b:b2:69:7f:52:
93:76:90:32:db:c6:3c:c5:2e:ba:f1:c9:f2:51:41:
cc:ca:cb:33:d9:f5:57:56:f5:84:80:a6:69:09:a1:
58:cd:0f:6e:96:2a:c3:dd:0f:a9:41:83:99:99:b6:
d8:4a:ff:9c:ed:14:8c:ea:8c:8b:94:70:3d:c3:ff:
81:1a:4c:5a:3d:5b:14:2e:62:a5:b4:13:b3:97:62:
7e:a9:fc:13:37:d9:50:3a:cd:46:bf:b0:43:e6:e3:
1b:e0:61:ff:41:72:63:f8:f7:67:a5:ca:99:e4:4b:
75:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:EA:4C:26:81:A7:33:E8:97:01:E6:8C:CB:75:26:08:16:85:52:E4
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/8-pMJoGnM-iXAeaMy3UmCBaFUuQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.34.0/23
Signature Algorithm: sha256WithRSAEncryption
a7:02:00:87:23:98:51:4a:51:86:ae:dc:30:81:40:53:08:52:
4c:9f:80:8f:44:11:64:14:cb:71:e8:48:b0:06:8c:2e:d5:19:
f3:63:86:66:4c:94:d0:5c:27:79:1e:b1:2f:7b:d9:3e:37:a8:
d9:1a:46:af:47:62:72:49:14:cf:df:e3:aa:95:1c:e0:fb:bf:
1e:23:9a:4e:f2:db:83:f5:61:06:fc:ce:ad:e7:16:bb:3d:d5:
90:f8:b5:3d:a2:7e:20:39:fa:7b:2c:1c:52:e8:36:67:fe:ae:
c9:ef:29:25:31:b2:39:ff:ce:d4:04:63:1b:39:c5:9f:1c:d9:
c0:db:b0:58:f0:9b:47:8d:fa:a5:ce:80:19:5e:86:8d:4c:86:
05:10:a8:9a:bc:65:26:35:62:dc:fc:f8:de:d8:c9:13:95:27:
02:1c:39:24:e7:f7:b7:a5:49:0e:c3:d2:a1:68:5b:24:4c:e5:
d6:aa:e4:e6:54:31:60:16:50:04:64:1c:62:44:e1:f5:32:11:
e5:53:09:0e:e1:f6:3e:df:16:1c:96:35:a0:5c:78:4a:4d:7e:
36:c4:04:08:5a:8d:33:a7:ce:56:ae:a3:12:f0:bc:4c:fe:43:
90:d8:cd:04:89:0d:d3:7a:ef:7a:20:fd:e1:2e:7a:0f:cd:50:
09:e3:52:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 12 18:34:53 2023 by rpki-client on console-fra.rpki-client.org