Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/ZN6oUpgL8A_-INx5MGsBnv9OP9g.roa
File: ZN6oUpgL8A_-INx5MGsBnv9OP9g.roa (raw, json)
Hash identifier: dIMh9O7FzWH19vbmxG0Ar8AjD8puQZeT34Aelzx/aDA=
Subject key identifier: 64:DE:A8:52:98:0B:F0:0F:FE:20:DC:79:30:6B:01:9E:FF:4E:3F:D8
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 0190B7AA110050D1F8A18D2689451C4B73FC
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/ZN6oUpgL8A_-INx5MGsBnv9OP9g.roa
Signing time: Mon 15 Jul 2024 18:31:34 +0000
ROA not before: Mon 15 Jul 2024 18:31:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49217
IP address blocks: 94.154.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Jul 2024 14:10:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:b7:aa:11:00:50:d1:f8:a1:8d:26:89:45:1c:4b:73:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Jul 15 18:31:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=64dea852980bf00ffe20dc79306b019eff4e3fd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ca:00:98:89:c9:4e:ca:11:75:eb:ce:87:aa:
a4:c2:c8:fa:76:df:07:d7:f8:e0:32:1f:08:0c:07:
28:27:44:bf:74:1e:1d:e9:a9:a6:35:13:c4:ae:be:
24:33:c8:12:1f:f7:90:89:e2:8d:9c:00:3c:4c:1a:
84:b7:81:ab:0d:2f:1c:c8:d1:a4:87:56:48:b7:9f:
46:7e:19:6f:a6:82:8f:44:d2:2c:13:48:19:4b:43:
3e:b3:d8:6f:cd:84:58:a2:08:e9:a6:aa:d9:58:e9:
9c:0e:b5:16:dd:e5:dc:5d:c9:d4:95:3d:f2:0c:8a:
6f:f1:a3:43:07:39:45:d1:8e:c0:ed:99:38:d9:ad:
40:2a:3d:de:36:be:82:db:95:36:09:f6:16:01:18:
92:e1:64:85:9f:45:88:ab:77:5d:c8:e5:b7:11:12:
0c:7d:97:e8:92:6c:fd:a3:69:22:ef:67:25:ea:90:
17:e4:5c:2e:a7:4f:c4:5b:85:aa:f0:9c:19:17:78:
65:cd:bb:e0:83:e8:e8:b5:90:eb:19:fd:21:3c:21:
82:0a:ee:87:93:da:d5:31:54:8e:26:a6:0e:a6:25:
29:d9:e9:34:e7:2e:b4:87:bd:a8:e4:b7:33:95:43:
14:5b:42:2e:c6:da:44:f1:30:f3:55:13:00:7d:d1:
02:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:DE:A8:52:98:0B:F0:0F:FE:20:DC:79:30:6B:01:9E:FF:4E:3F:D8
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/ZN6oUpgL8A_-INx5MGsBnv9OP9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.35.0/24
Signature Algorithm: sha256WithRSAEncryption
10:f7:91:d4:1f:0b:9b:58:37:79:47:d8:44:de:09:5c:af:fb:
29:f9:05:ef:31:3b:5e:73:6f:c4:e4:4a:09:8f:57:c3:90:11:
aa:2a:82:25:ff:be:4b:df:30:fe:24:09:fb:6d:dc:e6:4e:93:
b7:2a:56:fc:e2:67:93:13:42:b4:60:85:ae:e4:5d:92:7e:3c:
df:8f:64:02:dc:8c:01:26:53:5b:ee:89:1c:c8:73:a0:68:3a:
b1:9a:91:53:00:04:3c:20:56:45:42:db:d2:08:fe:f2:a8:f4:
84:b3:7b:00:0f:0a:78:40:30:e5:62:b2:48:94:24:71:9b:0f:
37:3f:f4:da:29:bd:b2:3d:14:09:be:19:6c:7f:7b:7b:d4:c5:
77:ff:7f:45:52:1c:b8:59:2e:87:fd:af:a7:4c:45:77:19:c5:
7b:06:6a:73:6d:ed:a3:23:08:5b:fb:df:00:2e:59:03:c2:ff:
b7:0d:0d:ab:75:54:ab:38:65:e5:62:db:66:1b:f1:6f:a0:3e:
56:bc:29:8e:c3:55:c2:2e:3e:44:8d:d3:c4:1d:8a:2b:0a:b0:
be:46:c8:19:35:eb:95:73:25:b0:9d:10:b5:3f:b8:f6:10:bd:
49:97:5d:d1:42:17:42:76:c1:a4:0f:3b:c3:0c:75:a6:9a:ef:
e9:c4:08:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 17 16:55:34 2024 by rpki-client on console-fra.rpki-client.org