Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/Lhr8EGYKZaxDqEof4PFH1RFxDtk.roa
File: Lhr8EGYKZaxDqEof4PFH1RFxDtk.roa (raw, json)
Hash identifier: v5oSw70xRZ+bpgjsNuRD/uSKjfNx8L9pHkzKa3FsIWM=
Subject key identifier: 2E:1A:FC:10:66:0A:65:AC:43:A8:4A:1F:E0:F1:47:D5:11:71:0E:D9
Certificate issuer: /CN=ff44dbaca56dac319401f68a50d917f5424611ad
Certificate serial: 0188A001CB2F30AB91677740463FC4B66787
Authority key identifier: FF:44:DB:AC:A5:6D:AC:31:94:01:F6:8A:50:D9:17:F5:42:46:11:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/Lhr8EGYKZaxDqEof4PFH1RFxDtk.roa
Signing time: Fri 09 Jun 2023 11:54:11 +0000
ROA not before: Fri 09 Jun 2023 11:54:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200435
IP address blocks: 94.143.225.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:a0:01:cb:2f:30:ab:91:67:77:40:46:3f:c4:b6:67:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff44dbaca56dac319401f68a50d917f5424611ad
Validity
Not Before: Jun 9 11:54:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2e1afc10660a65ac43a84a1fe0f147d511710ed9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:7d:22:09:44:a6:69:f5:05:8a:c7:b6:91:f0:
68:9a:df:17:d7:89:93:27:a4:e6:87:08:aa:6c:f4:
4f:d0:d7:a4:af:14:6c:fe:d2:02:11:5c:a1:99:a6:
8f:c5:a1:cc:d5:54:2d:df:fc:c4:0f:c6:e1:21:db:
1d:00:43:79:d0:62:fe:47:97:b0:e0:97:58:ce:a3:
0d:6d:5d:d3:13:04:15:ad:11:8e:8b:7c:ca:2c:af:
6a:70:e1:af:a5:e5:a0:60:f9:28:90:ea:49:1e:41:
1c:fc:f7:d3:98:f9:64:cc:7b:9e:69:31:95:ad:76:
24:81:43:56:f3:3c:fd:df:57:14:06:15:37:5f:f1:
59:c3:7a:7d:1b:97:52:9b:de:e4:b7:9c:81:6f:56:
a9:15:99:8d:f5:b0:2e:aa:4a:7f:74:7d:74:ef:e5:
a9:65:98:27:c1:19:b4:09:46:b5:fc:aa:72:29:ba:
ac:58:89:c6:4f:a1:15:1f:f4:30:75:bb:cf:1c:bd:
e3:6e:d1:41:e8:20:90:18:a2:ea:ad:54:a9:1f:c7:
32:fd:83:c0:46:8b:fd:c1:fa:bb:c3:6d:dd:c6:03:
39:4c:c3:50:5b:8f:e1:e5:a9:16:0d:23:67:df:f3:
f7:ef:11:d2:f1:b8:48:27:9c:58:5e:e5:36:c3:9a:
3d:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:1A:FC:10:66:0A:65:AC:43:A8:4A:1F:E0:F1:47:D5:11:71:0E:D9
X509v3 Authority Key Identifier:
keyid:FF:44:DB:AC:A5:6D:AC:31:94:01:F6:8A:50:D9:17:F5:42:46:11:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/Lhr8EGYKZaxDqEof4PFH1RFxDtk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/_0TbrKVtrDGUAfaKUNkX9UJGEa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.143.225.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:e9:01:1f:5e:02:ab:13:4c:f3:20:3e:1c:e9:04:40:e5:43:
20:96:b8:b6:ee:eb:e4:1d:fc:92:a8:ea:89:75:89:8a:7a:2e:
3f:71:af:5d:29:36:97:c9:75:be:1a:4d:36:bb:c0:b4:26:10:
86:4c:6a:78:6d:e6:2e:68:1f:bc:63:e2:92:31:1d:06:78:8f:
06:9b:84:04:35:60:cc:eb:1e:6f:b7:1b:a2:51:24:48:a9:1d:
3a:65:84:0b:ce:89:9e:64:4a:e1:55:36:17:6c:3e:82:09:d5:
9c:5c:87:0e:56:ae:81:76:22:5e:d6:eb:7d:86:8d:f8:78:e5:
92:6b:ec:03:65:75:8e:e8:02:1b:3c:d3:40:d5:29:54:60:d6:
a6:b7:de:c2:86:8f:f2:fb:9e:bc:bd:6c:7f:cd:2c:dd:81:f9:
f0:d2:3a:e4:a3:89:09:fd:f3:e0:8c:06:54:6b:cf:52:95:6a:
bc:14:b9:6a:fe:2a:e2:97:17:85:b1:08:41:2e:ce:43:70:ec:
62:1e:92:ef:9c:cd:68:d7:0b:58:10:0c:31:d8:9d:aa:52:d1:
33:dc:4f:c2:56:83:1b:8c:ed:aa:b9:f5:55:d2:c2:1d:a6:31:
ae:d6:94:8d:b6:78:95:c5:23:7a:7d:66:20:a7:dd:c4:e5:41:
20:ae:09:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:34 2024 by rpki-client on console-fra.rpki-client.org