Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/Z8p5eiikk_02E-WmgPQh-IPIwho.roa
File: Z8p5eiikk_02E-WmgPQh-IPIwho.roa (raw, json)
Hash identifier: aO4tAfM9WFv3u0ilVUjN1rR2qqgqnG5PrpIk9CFeDQM=
Subject key identifier: 67:CA:79:7A:28:A4:93:FD:36:13:E5:A6:80:F4:21:F8:83:C8:C2:1A
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 01856FF021395A227A5771F829839D0C7FF8
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/Z8p5eiikk_02E-WmgPQh-IPIwho.roa
Signing time: Mon 02 Jan 2023 00:44:46 +0000
ROA not before: Mon 02 Jan 2023 00:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35913
IP address blocks: 94.154.32.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Jan 2023 10:23:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f0:21:39:5a:22:7a:57:71:f8:29:83:9d:0c:7f:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Jan 2 00:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=67ca797a28a493fd3613e5a680f421f883c8c21a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:cc:d5:af:d0:de:78:e8:9d:43:fd:fe:6c:85:
1d:ab:b6:bf:af:b3:50:0a:61:4d:c9:43:a5:8e:98:
7b:7e:79:60:35:e5:f0:f1:75:95:7d:c0:39:bb:8a:
49:61:43:67:96:89:d0:11:c7:08:06:71:7a:b4:fc:
40:e7:7b:62:03:0d:73:78:d8:a1:80:49:20:d7:df:
01:b4:5f:c2:18:d6:37:b7:f3:f0:18:ba:a7:19:8a:
87:d4:73:17:73:21:66:3e:40:a3:9e:ee:e9:18:23:
59:53:90:e8:75:c2:b1:77:86:da:51:ea:73:45:11:
2c:24:ae:55:2a:cd:98:55:06:b1:88:f8:3c:42:c0:
57:ee:ff:6c:c6:34:4f:dd:cd:b6:86:66:d3:15:c7:
17:b4:34:c1:63:c0:f8:49:2d:29:25:2c:3f:7e:a6:
f4:92:fa:91:5a:06:28:f2:a8:dc:79:bc:0d:09:ba:
17:6f:fa:45:97:ee:9d:5d:7d:2e:b2:b6:18:89:8d:
a1:db:b1:92:d4:66:24:25:36:30:61:1e:c8:15:2c:
f6:1f:87:0b:b3:df:97:ce:a0:de:a9:53:4d:d0:f6:
8b:d7:09:db:f8:4c:a8:90:f7:b3:13:f0:ce:c1:d0:
1e:60:5f:5f:37:f1:24:b3:7d:f9:a8:38:9c:89:eb:
4a:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:CA:79:7A:28:A4:93:FD:36:13:E5:A6:80:F4:21:F8:83:C8:C2:1A
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/Z8p5eiikk_02E-WmgPQh-IPIwho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.32.0/22
Signature Algorithm: sha256WithRSAEncryption
96:6e:31:2c:5f:15:b1:b6:cf:c8:8b:e5:c1:77:71:08:70:7c:
55:b0:53:79:ca:e3:07:a6:66:c6:7f:82:e1:14:7c:61:c4:f9:
a8:09:7c:e9:dd:d7:72:ea:31:87:1e:eb:35:c2:9c:95:f4:79:
fe:7f:61:10:3e:e3:7d:8d:0d:65:01:59:ee:d2:c0:1b:70:56:
37:bd:14:93:52:30:4c:17:cc:41:db:77:08:0f:37:07:ce:3f:
4c:e3:0e:07:dc:65:93:15:bf:ae:1f:ce:08:8d:e9:12:12:74:
71:7e:55:d9:04:29:ec:0b:b6:c4:b6:03:db:26:a2:15:11:4a:
33:82:2f:98:6c:d3:5d:68:9e:4e:0d:4b:84:24:49:55:6d:3a:
47:77:da:13:bb:e4:e5:c1:62:dc:75:4f:b2:44:12:fa:50:6b:
c8:54:a0:30:6e:46:5c:da:e2:9f:9b:49:a3:f2:da:17:74:38:
4c:99:df:d8:6d:13:c7:e2:6f:27:8b:3d:3c:3f:03:e8:47:1d:
94:61:4d:33:14:37:6e:33:30:58:04:b0:af:1f:3c:c2:c4:9e:
37:b1:10:9a:85:a7:89:bb:6b:d1:a5:f7:ef:75:bc:fa:7f:18:
69:92:5b:74:b8:90:e9:a0:51:6a:4e:ee:df:de:cd:8d:c7:0b:
fe:86:70:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:25 2024 by rpki-client on console-fra.rpki-client.org