Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/ba61ce-9c86-42ef-90fb-dd515e63cfcb/1/7bVhKRCM9tbMoSQjoTanGR9t0Kc.roa
File: 7bVhKRCM9tbMoSQjoTanGR9t0Kc.roa (raw, json)
Hash identifier: ZTAIrFLaRVqtbyDW54I86bwjCOqAqcReQCJSdPcSzXY=
Subject key identifier: ED:B5:61:29:10:8C:F6:D6:CC:A1:24:23:A1:36:A7:19:1F:6D:D0:A7
Certificate issuer: /CN=738e65fb03e6d607d8be204345d6e05a460b9a4f
Certificate serial: 01857315CF938E5B09A7F1E4D9F003ED1C31
Authority key identifier: 73:8E:65:FB:03:E6:D6:07:D8:BE:20:43:45:D6:E0:5A:46:0B:9A:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c45l-wPm1gfYviBDRdbgWkYLmk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/ba61ce-9c86-42ef-90fb-dd515e63cfcb/1/7bVhKRCM9tbMoSQjoTanGR9t0Kc.roa
Signing time: Mon 02 Jan 2023 15:24:47 +0000
ROA not before: Mon 02 Jan 2023 15:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213307
IP address blocks: 94.154.12.0/24 maxlen: 24
2a05:7700::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:15:cf:93:8e:5b:09:a7:f1:e4:d9:f0:03:ed:1c:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=738e65fb03e6d607d8be204345d6e05a460b9a4f
Validity
Not Before: Jan 2 15:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=edb56129108cf6d6cca12423a136a7191f6dd0a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:a3:dd:6d:01:94:76:ae:43:d3:a3:84:42:3b:
b4:26:d3:52:1e:fe:8b:33:3c:77:43:5c:08:e2:4e:
d7:02:03:30:6e:8c:b8:c2:e3:21:76:16:31:76:49:
4f:05:77:18:15:ec:70:3d:9d:00:dc:1e:8d:78:94:
5d:84:b0:57:0d:c0:d5:5b:3b:cc:dd:fc:a4:58:4b:
7c:f9:74:24:4b:33:26:5b:5b:4f:d8:fb:67:a7:9c:
d9:de:ab:68:72:f1:61:dd:e4:06:8c:09:80:a6:92:
09:73:5a:e3:28:a3:d5:52:af:42:aa:a2:0a:79:97:
ae:4e:a0:54:f9:d4:a3:ed:a6:ad:7b:0c:62:5b:73:
f4:cf:9d:6e:4e:7b:1b:5f:71:46:7d:59:2c:27:a4:
12:74:c1:0a:21:f4:ea:f8:2c:6c:6c:75:c5:10:63:
d8:bc:fe:24:34:0f:a8:1e:2d:d7:3a:4a:07:9d:60:
64:d7:f2:47:3a:c7:e0:ea:c1:c3:45:13:a3:be:4c:
a7:fc:1c:ad:4e:f4:1f:da:14:29:ab:0d:69:29:65:
2f:e4:ad:cb:13:ca:e5:eb:bf:5d:52:b3:2a:3c:b3:
44:a9:e7:a2:34:69:62:2e:f8:eb:9a:a0:2a:d5:99:
29:93:da:b5:e8:28:00:91:87:b2:16:a1:c4:c5:3c:
21:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:B5:61:29:10:8C:F6:D6:CC:A1:24:23:A1:36:A7:19:1F:6D:D0:A7
X509v3 Authority Key Identifier:
keyid:73:8E:65:FB:03:E6:D6:07:D8:BE:20:43:45:D6:E0:5A:46:0B:9A:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c45l-wPm1gfYviBDRdbgWkYLmk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/ba61ce-9c86-42ef-90fb-dd515e63cfcb/1/7bVhKRCM9tbMoSQjoTanGR9t0Kc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/ba61ce-9c86-42ef-90fb-dd515e63cfcb/1/c45l-wPm1gfYviBDRdbgWkYLmk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.12.0/24
IPv6:
2a05:7700::/29
Signature Algorithm: sha256WithRSAEncryption
98:9a:15:e9:32:17:b5:b0:ef:27:ed:df:40:ae:c9:ef:63:60:
4d:a6:8e:d9:cd:89:5a:03:91:84:5c:fe:8c:8f:ef:15:a7:2c:
8d:61:9d:ac:c8:32:c8:37:df:fb:35:5c:4b:0c:de:2c:d3:8e:
69:c1:ce:75:0c:c0:e7:17:de:2f:ac:5a:df:b8:c4:8a:71:c0:
6f:f2:b3:c2:34:73:9e:29:51:2c:e5:7c:74:c7:10:ee:ad:a6:
16:ff:82:dd:24:27:17:d2:a6:e5:ca:89:e4:5a:d4:3b:16:66:
f3:38:2c:bb:f2:12:88:bb:00:68:e9:5e:cd:bc:68:da:65:46:
f7:67:8f:1d:8d:ab:ba:c7:e9:4b:5e:05:7f:26:d1:4c:18:ba:
51:f4:c1:5e:05:de:a0:ab:75:3b:2e:e0:da:8f:5e:65:40:f1:
5f:68:3d:00:45:e6:53:73:10:2d:49:79:d0:e9:51:5a:c3:53:
dd:4d:15:a1:ee:69:19:38:fb:e9:55:bb:bf:d8:c6:97:38:81:
d4:ca:75:48:0e:ef:9d:c5:e6:cf:fa:90:ce:72:8a:87:d0:b9:
24:b8:b1:44:c2:5f:de:d2:ca:b7:b6:f2:5d:c1:f9:16:a0:bb:
55:d9:04:52:eb:6e:09:d8:fb:aa:ec:28:ca:69:b0:bc:22:a6:
da:47:b9:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:16 2024 by rpki-client on console-ams.rpki-client.org