Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/AmvcnGbeovdBvep19KqnLC2L7i0.roa
File: AmvcnGbeovdBvep19KqnLC2L7i0.roa (raw, json)
Hash identifier: Aw0sxfCUlP+s+em/urJ0jNlDpo7pZXN+FEWT/zqliP0=
Subject key identifier: 02:6B:DC:9C:66:DE:A2:F7:41:BD:EA:75:F4:AA:A7:2C:2D:8B:EE:2D
Certificate issuer: /CN=d07d7573aacae821c87d6d36431cfe4b2801ab41
Certificate serial: 018CC94DE98679D1A7CB74E8EE97570DC646
Authority key identifier: D0:7D:75:73:AA:CA:E8:21:C8:7D:6D:36:43:1C:FE:4B:28:01:AB:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0H11c6rK6CHIfW02Qxz-SygBq0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/AmvcnGbeovdBvep19KqnLC2L7i0.roa
Signing time: Tue 02 Jan 2024 08:32:55 +0000
ROA not before: Tue 02 Jan 2024 08:32:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48458
IP address blocks: 94.155.11.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Feb 2024 06:09:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4d:e9:86:79:d1:a7:cb:74:e8:ee:97:57:0d:c6:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d07d7573aacae821c87d6d36431cfe4b2801ab41
Validity
Not Before: Jan 2 08:32:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=026bdc9c66dea2f741bdea75f4aaa72c2d8bee2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6d:cb:74:68:ff:ff:34:a2:b2:aa:c9:bc:f4:
62:6c:eb:d9:ab:c6:e1:5e:66:9a:04:c2:74:15:37:
bd:a3:f7:66:28:d3:b1:c6:e4:6b:82:0b:b2:d9:12:
31:75:08:ca:c4:2c:a3:d8:3b:dd:19:94:00:2c:73:
c8:93:ce:93:9c:66:a3:b5:3a:93:df:f1:6d:b2:b7:
a9:74:e1:5e:59:8f:4d:5b:29:d8:0c:cb:21:33:88:
e3:4c:61:ad:f7:aa:72:6c:46:23:59:d9:fb:b0:ea:
40:e0:5a:13:ca:3f:73:b0:5e:5d:7f:38:0e:a2:8f:
33:47:ef:27:a7:7a:e4:62:44:6d:b2:75:53:30:65:
8d:22:f9:76:0b:24:d6:07:9b:cf:0f:f8:c5:89:5f:
3e:79:21:d8:fb:5a:5e:23:a2:b2:41:0b:c8:9a:89:
17:d0:28:b5:4d:d8:e6:e6:7d:a1:7c:e0:b8:7b:ac:
73:04:e8:47:20:a8:e6:a7:38:3d:ed:8d:c0:ef:53:
72:0a:b2:12:5d:db:e1:3c:c9:75:a3:21:ef:72:31:
b9:99:4d:3b:35:27:12:09:2f:91:74:c6:c0:5c:78:
0e:6e:c2:0b:1b:31:d3:cf:8e:27:27:95:5f:2e:45:
43:af:98:46:4f:fa:5f:e7:2e:58:87:6c:c9:dd:22:
de:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:6B:DC:9C:66:DE:A2:F7:41:BD:EA:75:F4:AA:A7:2C:2D:8B:EE:2D
X509v3 Authority Key Identifier:
keyid:D0:7D:75:73:AA:CA:E8:21:C8:7D:6D:36:43:1C:FE:4B:28:01:AB:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0H11c6rK6CHIfW02Qxz-SygBq0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/AmvcnGbeovdBvep19KqnLC2L7i0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/0H11c6rK6CHIfW02Qxz-SygBq0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.155.11.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:8d:aa:34:3d:d8:66:16:f5:ea:3b:c8:39:8a:3c:83:67:e1:
b7:ee:ff:20:5c:b6:5a:01:13:4a:15:91:ca:f2:6d:52:82:9e:
76:1e:81:11:b9:50:50:84:43:e1:2b:64:ce:f3:e2:58:93:ff:
ab:9e:8f:d7:32:da:bd:20:66:0f:77:81:05:fa:b4:e3:06:55:
d7:78:20:10:9b:09:87:eb:ca:48:29:be:2f:3d:c4:ff:0a:4a:
b2:fc:9e:ca:2e:ad:0a:ef:f4:f4:a2:d4:32:35:a3:13:83:f6:
99:8b:4d:30:cf:b5:80:a8:3c:da:8c:d3:e9:35:dd:82:02:93:
48:15:8f:74:cd:24:15:94:a4:8f:85:3f:f9:dd:17:9d:49:74:
fe:31:7a:c8:eb:89:86:10:b9:fc:a3:71:e7:a8:ab:a1:71:2c:
f9:05:c1:88:ff:25:73:a4:58:9c:75:b1:22:1a:c1:5d:88:18:
cf:ce:a3:b6:a9:fd:49:a3:67:50:ad:9c:76:ff:28:d6:db:3e:
75:5c:d4:d3:45:12:9f:1c:d6:1c:c8:40:2a:28:e1:f8:c5:f9:
d1:89:ab:8e:1e:ee:a1:4f:1f:67:4a:f4:1f:66:16:e1:4e:f9:
3a:25:59:02:0a:ee:9f:65:1b:16:25:fe:53:f2:a3:5e:01:83:
00:3e:a2:4d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzJTemGedGny3To7pdXDcZGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwN2Q3NTczYWFjYWU4MjFjODdkNmQzNjQzMWNmZTRiMjgw
MWFiNDEwHhcNMjQwMTAyMDgzMjU1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMjZiZGM5YzY2ZGVhMmY3NDFiZGVhNzVmNGFhYTcyYzJkOGJlZTJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsW3LdGj//zSisqrJvPRibOvZq8bh
XmaaBMJ0FTe9o/dmKNOxxuRrgguy2RIxdQjKxCyj2DvdGZQALHPIk86TnGajtTqT
3/FtsrepdOFeWY9NWynYDMshM4jjTGGt96pybEYjWdn7sOpA4FoTyj9zsF5dfzgO
oo8zR+8np3rkYkRtsnVTMGWNIvl2CyTWB5vPD/jFiV8+eSHY+1peI6KyQQvImokX
0Ci1Tdjm5n2hfOC4e6xzBOhHIKjmpzg97Y3A71NyCrISXdvhPMl1oyHvcjG5mU07
NScSCS+RdMbAXHgObsILGzHTz44nJ5VfLkVDr5hGT/pf5y5Yh2zJ3SLe7QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAJr3Jxm3qL3Qb3qdfSqpywti+4tMB8GA1UdIwQY
MBaAFNB9dXOqyughyH1tNkMc/ksoAatBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMEgxMWM2cks2Q0hJZlcwMlF4ei1TeWdCcTBFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi81NzI1Y2MtYWQ3MC00NmY4LWJiNjIt
Y2Y5ZGM1YmFhYTc5LzEvQW12Y25HYmVvdmRCdmVwMTlLcW5MQzJMN2kwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi81NzI1Y2MtYWQ3MC00NmY4LWJiNjItY2Y5ZGM1YmFhYTc5
LzEvMEgxMWM2cks2Q0hJZlcwMlF4ei1TeWdCcTBFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXpsLMA0G
CSqGSIb3DQEBCwUAA4IBAQAvjao0PdhmFvXqO8g5ijyDZ+G37v8gXLZaARNKFZHK
8m1Sgp52HoERuVBQhEPhK2TO8+JYk/+rno/XMtq9IGYPd4EF+rTjBlXXeCAQmwmH
68pIKb4vPcT/Ckqy/J7KLq0K7/T0otQyNaMTg/aZi00wz7WAqDzajNPpNd2CApNI
FY90zSQVlKSPhT/53RedSXT+MXrI64mGELn8o3HnqKuhcSz5BcGI/yVzpFicdbEi
GsFdiBjPzqO2qf1Jo2dQrZx2/yjW2z51XNTTRRKfHNYcyEAqKOH4xfnRiauOHu6h
Tx9nSvQfZhbhTvk6JVkCCu6fZRsWJf5T8qNeAYMAPqJN
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:46 2024 by rpki-client on console-ams.rpki-client.org