Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/8CDjp4Qwe93lCPR7ltaQZNUf7gQ.roa
File: 8CDjp4Qwe93lCPR7ltaQZNUf7gQ.roa (raw, json)
Hash identifier: xni6RHyBFPbA/lYver9Y9S8XnG5tpNH4oRlnqUzCKgg=
Subject key identifier: F0:20:E3:A7:84:30:7B:DD:E5:08:F4:7B:96:D6:90:64:D5:1F:EE:04
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018C54A444F4AD1957258F1CDB69ECFDF0F4
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/8CDjp4Qwe93lCPR7ltaQZNUf7gQ.roa
Signing time: Sun 10 Dec 2023 16:51:40 +0000
ROA not before: Sun 10 Dec 2023 16:51:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60117
IP address blocks: 94.176.214.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Dec 2023 12:27:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:54:a4:44:f4:ad:19:57:25:8f:1c:db:69:ec:fd:f0:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Dec 10 16:51:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f020e3a784307bdde508f47b96d69064d51fee04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:b0:8f:97:80:ca:a6:ab:62:4d:26:c5:85:04:
a9:bc:4b:94:73:89:1e:d5:97:14:32:a7:fc:dc:df:
29:5f:e5:13:29:09:e8:ee:11:80:43:22:1f:e8:96:
a3:0c:8e:cd:23:8e:26:58:2a:a9:b4:4a:0e:47:ef:
57:d4:7c:df:b1:7a:5a:7c:19:51:02:ff:df:2c:a4:
f3:d4:5e:86:2f:4c:7f:c2:d1:20:ed:7f:7d:c3:ee:
db:59:e3:e5:10:aa:54:6c:dc:dc:79:33:77:ce:29:
a6:8a:19:6a:4f:b0:85:ef:0a:8d:1f:1f:ce:8f:cb:
70:4a:97:fc:96:d2:ee:4e:72:60:40:da:25:ee:01:
79:c9:cc:2a:e7:cb:93:9a:0b:e6:3a:38:c1:69:f8:
6b:af:a8:06:f4:54:d6:46:4a:e3:43:47:ad:6e:8c:
04:80:22:1b:eb:23:7e:97:9d:4e:f5:14:8a:7b:66:
64:84:3d:c3:d4:e0:e9:a7:0a:89:a2:35:5f:9d:e8:
f5:7d:a5:70:b6:ee:84:58:5c:b6:72:c6:80:c5:38:
ef:eb:ff:e4:31:f0:23:9b:3a:89:2e:36:36:a7:cd:
6e:0b:c0:9e:0e:ea:fc:e6:cd:1a:1c:a9:7c:da:05:
2c:e0:fb:ae:f4:49:06:0f:9a:4b:9a:82:c0:cb:25:
40:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:20:E3:A7:84:30:7B:DD:E5:08:F4:7B:96:D6:90:64:D5:1F:EE:04
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/8CDjp4Qwe93lCPR7ltaQZNUf7gQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.176.214.0/24
Signature Algorithm: sha256WithRSAEncryption
96:ce:f1:b2:ac:7a:49:85:0c:4a:56:c7:8b:9f:bb:81:77:c2:
6e:d2:15:f2:45:f6:5f:78:4b:95:66:12:8a:ac:ca:a6:16:69:
8a:0f:dc:00:4b:48:44:ec:76:28:3b:1a:0b:8e:3d:bf:d5:4e:
f8:77:68:36:6c:da:86:b3:af:f6:fa:2e:9f:f5:cb:10:cc:f2:
00:7c:47:30:99:0b:a1:40:34:3f:46:09:4b:47:b2:ff:ce:e3:
c3:05:e3:b9:d6:b4:75:5d:e8:e8:a7:b3:47:be:2c:69:81:6e:
7a:e9:49:d2:c4:ae:f8:d4:64:ed:f7:3f:cb:05:5a:92:a4:9d:
99:94:12:cd:ca:a6:17:3d:de:2e:44:62:54:b1:d0:0d:2b:01:
98:c4:be:e8:3c:ec:f2:e7:22:9d:43:b3:c0:e4:ff:b0:f3:81:
d6:92:5e:5e:7c:f9:45:08:8d:2a:04:07:ab:9d:43:c6:a3:fd:
7c:68:a8:a9:53:1a:fe:1b:ce:98:18:be:8e:a7:3f:19:8a:26:
71:9a:07:cd:5c:c8:ce:d7:55:0c:9f:38:ca:04:90:ac:bf:9d:
05:b3:3e:00:04:7e:0c:b7:bd:21:d8:09:23:2d:e6:e0:06:30:
37:70:a9:15:aa:0f:06:e8:b1:6c:a7:b7:8b:33:58:7c:75:ed:
5c:42:b5:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:06 2024 by rpki-client on console-fra.rpki-client.org