Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/LlNj0o_ggz9bPOZNU96m-dTbkC4.roa
File: LlNj0o_ggz9bPOZNU96m-dTbkC4.roa (raw, json)
Hash identifier: lpi+R5zHLVx2EL9VJ4vq2XcYUHMdH6bmd3Pdz7KyqnQ=
Subject key identifier: 2E:53:63:D2:8F:E0:83:3F:5B:3C:E6:4D:53:DE:A6:F9:D4:DB:90:2E
Certificate issuer: /CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Certificate serial: 018DEF9FDF4C7C32E9F602F8D55A6B60CADF
Authority key identifier: 5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/LlNj0o_ggz9bPOZNU96m-dTbkC4.roa
Signing time: Wed 28 Feb 2024 12:10:48 +0000
ROA not before: Wed 28 Feb 2024 12:10:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47726
IP address blocks: 194.113.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 18:56:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ef:9f:df:4c:7c:32:e9:f6:02:f8:d5:5a:6b:60:ca:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Validity
Not Before: Feb 28 12:10:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2e5363d28fe0833f5b3ce64d53dea6f9d4db902e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:cb:64:9d:41:96:b4:44:5c:76:4c:a4:00:0f:
ed:89:7a:d5:03:bb:d5:4c:4c:9b:96:55:e3:4d:29:
d5:41:25:42:2b:70:c3:81:a6:3b:c6:de:08:ac:b9:
26:64:c8:a9:bc:05:b8:9f:3f:f5:16:63:7a:29:42:
f6:97:94:04:65:1b:80:9d:c2:cb:c3:1a:8f:87:16:
0d:87:15:61:15:cc:7e:7f:e6:a1:25:a4:be:5c:81:
94:97:e1:a5:3d:9b:fd:70:ea:9c:11:6d:5a:5b:c4:
02:ff:26:1b:0a:5c:42:94:de:f2:67:6f:a6:6d:d9:
83:9e:c8:28:86:03:e8:5a:38:5b:cb:89:5d:8a:f8:
fd:d3:92:01:ed:c1:eb:67:31:39:8b:4f:d0:be:af:
27:28:f8:fe:30:8d:bf:95:e1:c1:cf:f9:77:4b:e8:
4e:f6:89:b4:31:ba:54:5b:28:eb:38:42:dc:a3:64:
6d:68:fe:79:65:32:96:e0:7f:41:8f:50:35:10:fe:
d7:2f:07:b5:ea:de:c9:0c:0f:bf:3e:5c:f0:fd:6c:
fb:00:60:fc:ce:d9:85:68:16:08:df:66:70:97:20:
ff:f2:6c:49:d6:56:7b:21:6f:83:09:62:cf:77:86:
0d:27:ac:f8:15:a3:5a:63:12:f5:d5:dc:ee:dc:a9:
8a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:53:63:D2:8F:E0:83:3F:5B:3C:E6:4D:53:DE:A6:F9:D4:DB:90:2E
X509v3 Authority Key Identifier:
keyid:5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/LlNj0o_ggz9bPOZNU96m-dTbkC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/XaOUHCfP5cI0xL8iHssqV5st6qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.113.153.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:8e:15:a7:26:5c:db:c9:79:e2:dd:09:88:2b:63:ca:ee:55:
11:f4:68:64:d9:11:dc:e6:89:be:1c:c0:05:57:2d:5a:23:40:
cf:45:8e:8f:f8:34:fd:66:7d:6d:2c:df:1f:6d:55:9d:ed:5e:
e5:0d:a7:b3:7a:8f:d6:25:ff:61:18:e3:d8:39:be:d8:06:0d:
c6:b9:47:b3:bf:16:ce:47:a4:08:89:63:c3:68:5f:ba:b4:8e:
b9:fe:87:dc:ab:08:72:54:d7:3d:c2:95:93:a8:33:5b:47:a8:
46:43:ef:2a:34:f4:26:b7:d7:85:7e:41:51:12:18:21:10:23:
0a:b4:e6:78:f9:83:71:2a:21:c4:dd:7c:22:dc:08:c3:77:40:
fc:f3:e7:12:a0:ea:97:53:2a:82:31:fe:1c:b2:7f:25:0c:3e:
18:d4:5e:40:4c:8d:bf:80:f5:ab:cc:21:82:6a:8a:ae:9c:70:
aa:cd:85:dd:b3:83:b5:a4:36:2a:09:82:8b:83:5d:aa:9e:e2:
5c:ed:50:5d:ef:85:a3:db:64:a3:a9:d0:93:eb:56:89:61:55:
62:7f:97:27:65:5f:53:a1:13:62:53:8f:d3:e7:bb:fd:bf:1f:
42:01:fc:a3:78:9f:66:d9:d0:b4:85:d8:16:64:a5:4d:4a:f8:
3b:91:d2:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 29 21:44:01 2024 by rpki-client on console-ams.rpki-client.org