Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/tSPFfaF5-fuGQJ6344ez99lJ4kA.roa
File: tSPFfaF5-fuGQJ6344ez99lJ4kA.roa (raw, json)
Hash identifier: kPWJySaUXA/mvZjJIdK6jR6jK4Yw8MIkN1hnkBNYNDQ=
Subject key identifier: B5:23:C5:7D:A1:79:F9:FB:86:40:9E:B7:E3:87:B3:F7:D9:49:E2:40
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018A83A20E10B8AA865CD2B83331CE78CDCE
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/tSPFfaF5-fuGQJ6344ez99lJ4kA.roa
Signing time: Mon 11 Sep 2023 09:45:50 +0000
ROA not before: Mon 11 Sep 2023 09:45:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211373
IP address blocks: 94.177.145.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:83:a2:0e:10:b8:aa:86:5c:d2:b8:33:31:ce:78:cd:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Sep 11 09:45:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b523c57da179f9fb86409eb7e387b3f7d949e240
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ea:e7:5f:28:a9:1e:9d:ef:40:c4:51:7d:1b:
92:e1:5e:3b:a6:7e:5a:6a:3e:f2:ee:8f:e1:43:d9:
1d:99:3e:c8:09:8a:ac:5f:90:fd:73:3e:32:b4:11:
3d:e3:1c:e8:78:73:f5:02:b4:29:1f:d2:d4:66:14:
ef:6b:26:c0:7c:3a:bc:de:e8:0e:95:55:0f:24:f6:
5a:94:8c:56:22:f7:dd:8d:e3:72:a1:7c:d1:84:00:
3e:39:55:57:14:a1:72:39:09:2c:d9:bc:d1:a0:be:
14:a4:ae:aa:29:56:cc:84:65:f4:a5:9b:b9:f4:ae:
c0:68:89:37:38:79:3a:33:bd:8a:20:30:e8:f7:97:
33:f9:58:bd:40:b1:78:5c:fb:82:01:6d:52:d5:4e:
ed:1c:4e:6d:da:32:6d:1b:28:4d:ee:b0:cf:d9:96:
cf:f6:b6:79:ef:4d:15:69:96:15:66:47:d9:d8:60:
9a:51:4f:7c:34:62:e0:bf:2a:ca:44:63:59:b4:f5:
c5:4d:88:47:4d:be:46:f3:40:20:a9:05:3f:23:70:
88:04:2e:a4:6c:1e:6e:37:6d:d1:6c:62:7e:ac:67:
83:ee:58:23:4c:24:56:73:9f:fa:62:43:55:46:87:
9a:5a:15:ce:f0:e0:35:15:c6:9e:e3:e6:73:b2:d0:
ba:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:23:C5:7D:A1:79:F9:FB:86:40:9E:B7:E3:87:B3:F7:D9:49:E2:40
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/tSPFfaF5-fuGQJ6344ez99lJ4kA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.177.145.0/24
Signature Algorithm: sha256WithRSAEncryption
40:a2:a6:95:80:e7:1f:05:e4:d0:2f:18:39:50:15:50:46:54:
f5:92:99:ab:ed:e4:dc:24:b2:6a:99:af:5f:d7:09:2c:d5:3d:
b5:35:9c:d3:fd:15:9e:2f:2d:db:bc:29:3b:85:85:cc:ce:de:
1a:10:c1:e7:5b:08:45:d6:aa:d8:38:97:a8:20:cd:75:e2:86:
67:40:6c:c2:8c:09:65:04:91:5b:cb:de:50:9e:65:7a:f1:5e:
e8:bf:55:cd:c8:04:56:80:e4:a6:df:3f:c6:fe:fc:db:fb:3a:
6f:f9:89:1d:c3:74:88:50:8f:99:8b:62:02:ad:06:fc:2a:3b:
77:ca:29:7b:16:d7:f7:6c:15:c3:a4:7b:b5:90:35:dc:77:db:
86:9d:9e:2b:fb:92:af:34:62:66:71:6f:31:c5:3f:f3:d6:bf:
4b:f7:31:77:c7:63:f8:15:f6:a0:45:74:d6:96:5e:50:bc:95:
4d:96:61:f9:80:8c:23:ba:3b:6a:ae:3e:70:99:36:28:f5:1e:
69:76:41:42:6f:37:aa:68:ff:d1:0c:95:52:00:96:05:83:06:
72:5a:09:3f:06:b7:d8:23:c1:6e:51:33:cd:7a:f3:6a:1d:ec:
71:ed:ce:4a:21:9b:1c:ab:4c:f0:b7:07:3e:1c:81:6a:9b:09:
ea:be:cb:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:14 2024 by rpki-client on console-ams.rpki-client.org