Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/A3DOFhW-ABTaSYjdQnVTSyBT7-M.roa
File: A3DOFhW-ABTaSYjdQnVTSyBT7-M.roa (raw, json)
Hash identifier: k7RfRUVpTxLRDRaV/mG++/NICS460bQZn+W9XcDoNcw=
Subject key identifier: 03:70:CE:16:15:BE:00:14:DA:49:88:DD:42:75:53:4B:20:53:EF:E3
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 01878F6A01399B5B0F7337BDDB9A745862BA
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/A3DOFhW-ABTaSYjdQnVTSyBT7-M.roa
Signing time: Mon 17 Apr 2023 13:31:41 +0000
ROA not before: Mon 17 Apr 2023 13:31:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52468
IP address blocks: 94.125.137.0/25 maxlen: 25
94.125.137.128/25 maxlen: 25
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:8f:6a:01:39:9b:5b:0f:73:37:bd:db:9a:74:58:62:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Apr 17 13:31:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0370ce1615be0014da4988dd4275534b2053efe3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:d2:e1:2c:67:db:0c:df:fa:37:d3:27:17:d9:
46:de:67:ad:5a:5c:8d:2f:9a:b3:88:c8:7a:a4:99:
28:69:e1:23:b8:d1:5d:2f:ba:76:eb:0f:c9:79:bc:
31:89:18:6c:2f:06:3b:37:2e:0d:18:68:fc:76:2e:
6f:5f:d7:5b:aa:12:1b:f5:3c:0b:21:4e:c3:82:cb:
91:78:e8:be:94:e6:75:b9:fe:8a:df:76:2f:db:f7:
ca:04:a2:0b:87:fa:cd:e9:c1:84:1a:74:0f:70:8b:
2c:56:c2:55:79:a4:76:fb:f0:52:3a:38:b6:e6:8c:
91:dd:e5:90:72:c8:1a:34:9f:a9:a0:be:6b:77:f7:
6c:52:5c:52:24:62:e9:4b:02:38:4b:3a:0d:09:5b:
48:eb:bf:16:bd:ca:d8:31:0b:a5:94:bc:da:6d:2b:
bd:52:6c:93:0e:ce:0a:93:10:b1:27:5d:3f:2e:7d:
54:a4:b9:8c:37:9b:93:89:f7:52:05:66:d1:ed:8b:
42:12:76:f8:63:5d:94:7f:2d:f2:2e:58:3c:51:10:
a9:b7:ec:60:b9:75:1b:40:2c:cd:4d:d9:08:2a:81:
0e:3a:1c:b4:69:29:2e:54:78:8b:0b:24:eb:f4:73:
2d:08:f7:76:96:18:c8:8f:f3:cf:df:82:0e:ea:11:
64:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:70:CE:16:15:BE:00:14:DA:49:88:DD:42:75:53:4B:20:53:EF:E3
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/A3DOFhW-ABTaSYjdQnVTSyBT7-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.125.137.0/24
Signature Algorithm: sha256WithRSAEncryption
26:81:d5:2f:8b:82:1e:78:97:a2:c4:b3:92:a2:be:85:69:d8:
a7:e8:fd:b5:12:99:3d:ba:67:8b:63:dc:2e:d1:9a:53:43:7e:
5c:60:29:b8:82:48:be:b9:97:da:70:cf:0b:45:64:4c:19:a0:
bf:28:2e:e0:5b:d7:e6:38:11:3d:2f:bb:1a:e4:d8:b9:8e:ee:
9e:6e:24:bf:c6:68:e6:62:ba:2a:d3:cf:e0:e2:a3:a7:20:fd:
f0:5d:56:ad:b6:14:a6:ca:c1:f6:92:92:f6:c2:b0:63:85:7c:
27:93:7e:55:cc:0d:b2:12:6b:34:45:db:df:06:f0:fa:9b:6d:
8c:92:27:57:dc:57:4c:3e:4e:26:1e:7a:ee:9f:13:de:4e:aa:
45:1c:e0:6d:63:e9:7c:1e:10:fa:c8:4b:cf:a9:2a:31:08:74:
85:a4:86:51:fe:ef:1f:75:73:1d:6e:b9:34:f1:a0:17:c6:3f:
6e:80:e2:98:ca:2a:1b:8a:dd:b7:32:54:43:f5:5b:df:50:eb:
80:77:dd:d3:80:6c:bd:54:00:be:81:bb:09:7d:a8:da:1b:12:
d4:2c:12:0a:f7:27:97:fb:07:29:e0:87:c2:92:9f:21:81:a0:
c2:57:36:3d:16:1f:53:35:90:da:a2:89:f2:24:4c:90:03:ce:
59:55:5a:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:35 2023 by rpki-client on console-ams.rpki-client.org