Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/ecWmzUy6fvV52eBqHTH2NjQ56N0.roa
File: ecWmzUy6fvV52eBqHTH2NjQ56N0.roa (raw, json)
Hash identifier: CPEAZOwoGFkxcJ2VXKOCATovyqOb7bjaMBWo7kCuTtM=
Subject key identifier: 79:C5:A6:CD:4C:BA:7E:F5:79:D9:E0:6A:1D:31:F6:36:34:39:E8:DD
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 018C3ED59947E3F9D718CFDB8BC6360905F6
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/ecWmzUy6fvV52eBqHTH2NjQ56N0.roa
Signing time: Wed 06 Dec 2023 11:13:54 +0000
ROA not before: Wed 06 Dec 2023 11:13:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60446
IP address blocks: 94.154.33.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:3e:d5:99:47:e3:f9:d7:18:cf:db:8b:c6:36:09:05:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Dec 6 11:13:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=79c5a6cd4cba7ef579d9e06a1d31f6363439e8dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:22:ad:0e:8c:5d:5f:14:15:99:fd:d0:0f:13:
f6:ad:c5:41:0c:28:c6:d5:09:6e:51:fa:65:23:b3:
0a:87:4e:85:29:b6:b7:f8:48:ef:14:05:bf:c3:d6:
9c:1f:cb:5a:b4:3d:7b:9e:f4:d0:22:b2:b1:4c:ce:
2c:40:03:50:b8:4f:47:f9:b2:b4:87:59:0b:44:e7:
62:70:15:6c:bd:af:b2:15:e2:28:cf:4c:24:5e:bc:
cc:18:ec:93:13:f1:14:76:70:59:ee:c9:43:fd:52:
21:62:b7:8a:8c:a6:8b:ed:47:82:77:9b:48:dd:a7:
e9:ea:16:4a:bb:e8:4f:39:aa:cf:eb:7c:95:e0:6b:
ed:c1:3f:9c:0e:83:24:74:56:54:02:7c:06:35:c7:
a6:19:a2:f8:c2:79:27:17:12:14:70:f2:ed:09:46:
60:ca:ed:ef:fc:2d:ce:81:d9:12:fc:0d:92:70:96:
de:44:46:3f:6f:d2:03:fc:48:d7:97:d3:2c:2a:11:
44:28:cc:2a:47:0a:af:b0:96:0c:fe:16:05:97:3b:
af:c6:40:12:6a:4d:57:01:5c:03:f6:18:1f:9a:19:
1a:11:b8:d9:33:b2:53:72:84:6a:cd:e3:a8:a0:96:
f2:30:0d:eb:29:6d:60:6f:c5:23:4f:89:55:f4:1a:
27:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:C5:A6:CD:4C:BA:7E:F5:79:D9:E0:6A:1D:31:F6:36:34:39:E8:DD
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/ecWmzUy6fvV52eBqHTH2NjQ56N0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.33.0/24
Signature Algorithm: sha256WithRSAEncryption
26:9e:49:b7:94:b7:8a:54:44:54:c6:46:55:2a:8c:34:25:78:
03:a6:51:54:7c:8b:59:74:d4:8c:02:1c:ca:ef:d9:0d:26:49:
bc:f9:25:f5:70:5e:f5:c9:34:b6:8e:6c:bd:1a:14:0a:8d:76:
b1:b7:00:65:71:8a:f5:f6:8e:d8:55:d3:0d:bf:d7:5b:b9:ff:
62:24:63:e8:a1:e9:f7:65:f1:2c:86:69:49:5a:22:11:e3:32:
96:28:27:1e:4d:53:df:f3:c8:dc:4d:bb:fe:ea:a0:d7:96:69:
72:a3:b9:65:64:54:18:01:71:a8:e7:62:8b:2c:62:39:cb:82:
17:42:23:35:8b:c8:62:51:f0:f2:21:ce:6e:86:f3:8e:1a:fd:
bb:2d:69:34:e4:f3:7d:58:08:f9:cb:eb:d1:7a:dc:be:17:5e:
14:a8:e9:0a:7a:f6:ce:cb:95:18:a0:3d:2a:07:3f:84:44:2e:
dd:84:81:af:67:6f:fc:4a:d4:84:b5:c0:33:ab:86:94:6f:0c:
18:d8:5e:a2:4a:94:72:7c:6f:12:1b:e3:04:77:50:51:a5:59:
af:f5:87:4f:b5:78:1c:0e:71:7f:02:42:89:8b:06:a7:b7:a4:
bb:11:78:45:89:26:20:cb:73:1f:47:1b:d0:e4:3d:03:e4:52:
65:fd:f1:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:49:32 2024 by rpki-client on console-fra.rpki-client.org