Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/uNflGxL3lBUQ7Q8YUV9XiSKIONQ.roa
File: uNflGxL3lBUQ7Q8YUV9XiSKIONQ.roa (raw, json)
Hash identifier: OYcDYdtA08ZIRVzUgIBUF5mMpWrCRRI7ee8e1IXdizs=
Subject key identifier: B8:D7:E5:1B:12:F7:94:15:10:ED:0F:18:51:5F:57:89:22:88:38:D4
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 01930CBF437F587A723F18F0465C5ECE1A43
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/uNflGxL3lBUQ7Q8YUV9XiSKIONQ.roa
Signing time: Fri 08 Nov 2024 17:08:01 +0000
ROA not before: Fri 08 Nov 2024 17:08:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215242
IP address blocks: 94.154.36.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Nov 2024 22:24:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:0c:bf:43:7f:58:7a:72:3f:18:f0:46:5c:5e:ce:1a:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Nov 8 17:08:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b8d7e51b12f7941510ed0f18515f5789228838d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:1c:75:5f:98:a8:6d:a7:df:39:9f:c1:89:6a:
56:88:5b:71:47:7b:19:d9:77:d9:62:4f:7d:66:9c:
ef:d3:d5:91:27:a6:5e:35:a9:c6:01:2b:8e:b5:12:
dc:46:ce:18:0c:e9:8e:a7:b5:d8:3b:e9:6e:9e:6d:
ec:1d:a7:34:13:32:dc:0c:8d:b4:95:11:16:55:41:
5b:3b:e7:d3:cc:7a:2e:8b:07:5b:e6:50:26:f6:0d:
4f:80:ef:d6:71:4e:08:8d:9f:91:7e:35:b7:dc:09:
20:96:11:67:06:2a:b2:11:61:fc:bc:b9:e3:d8:06:
6a:0d:9d:ef:03:4b:6b:99:78:87:e6:0b:3e:9d:a5:
25:3a:11:ec:9c:6a:90:0b:1d:93:60:b1:a6:24:0f:
87:70:88:15:41:0a:f3:4a:10:70:21:e0:91:05:21:
f7:35:e9:e3:36:9b:67:00:3a:d0:f8:cd:e2:6d:60:
4d:2c:3d:a8:fd:3f:71:65:c1:9a:7f:a5:fe:f3:b6:
37:75:d4:a0:98:c2:3d:16:cc:c2:1f:2d:80:23:67:
3c:cf:23:c8:71:46:5d:e5:78:5b:8d:99:b3:33:f4:
18:a8:77:e4:4a:5c:1e:10:51:fb:88:0c:46:68:f8:
1d:93:cf:84:88:df:1f:01:84:95:a1:95:2d:98:b1:
2c:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:D7:E5:1B:12:F7:94:15:10:ED:0F:18:51:5F:57:89:22:88:38:D4
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/uNflGxL3lBUQ7Q8YUV9XiSKIONQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.36.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:b7:a4:26:e5:71:0d:84:fd:ca:de:67:06:f5:78:ed:4e:c1:
ff:b4:37:d6:0a:fc:60:fa:13:b5:01:f0:5e:99:cb:ef:e0:ae:
15:cd:9e:3f:f3:7f:20:f8:ea:63:09:8f:75:be:68:e7:f9:95:
d2:05:44:13:4b:d9:1d:c5:97:30:73:b9:b2:2d:63:2c:c2:b9:
e8:88:b3:1e:b5:1a:fb:37:ea:c5:b6:20:93:14:00:6b:5b:f2:
71:04:c3:7b:af:c5:41:12:51:89:36:2a:0a:04:34:d5:c4:b2:
8c:2b:5b:9e:5a:fd:b8:ec:d5:6d:72:49:b8:21:0c:4e:be:5d:
1f:f4:e6:e2:bb:25:24:4f:f2:a0:5b:3a:83:e0:99:bf:08:ae:
9b:f6:dd:c3:81:a1:8b:34:52:22:c2:c2:76:de:5f:a9:9f:ed:
fa:88:b7:8e:fd:4f:21:a3:7d:0b:23:11:4d:b7:59:03:8f:6d:
82:86:69:94:e5:1b:d3:be:53:d8:b9:b8:fb:9f:d2:56:04:dc:
8f:72:38:80:91:ad:f8:04:a8:1a:0f:41:c3:55:38:f3:49:b0:
27:19:e1:d6:be:f2:18:10:59:37:02:77:e4:01:b5:2d:d3:28:
b9:8b:c5:9e:b8:37:6b:95:d0:d3:91:cc:af:a4:cd:65:41:51:
9f:fc:65:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 9 03:07:35 2024 by rpki-client on console-ams.rpki-client.org