Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/0f19e9-1b2b-4812-ab5a-fdf84f83a274/1/xB1ekQwUisRhaqsvaKBQDRbtM1U.roa
File: xB1ekQwUisRhaqsvaKBQDRbtM1U.roa (raw, json)
Hash identifier: WViESwklBgx4s3cRNedR55BQ64lFL94J5jgfztJXHPI=
Subject key identifier: C4:1D:5E:91:0C:14:8A:C4:61:6A:AB:2F:68:A0:50:0D:16:ED:33:55
Certificate issuer: /CN=33954330349f57502a76ae6e99987efc3e3b8109
Certificate serial: 01856C4A5491C3CEBDE0D27B727E09430988
Authority key identifier: 33:95:43:30:34:9F:57:50:2A:76:AE:6E:99:98:7E:FC:3E:3B:81:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M5VDMDSfV1Aqdq5umZh-_D47gQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/0f19e9-1b2b-4812-ab5a-fdf84f83a274/1/xB1ekQwUisRhaqsvaKBQDRbtM1U.roa
Signing time: Sun 01 Jan 2023 07:44:48 +0000
ROA not before: Sun 01 Jan 2023 07:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209928
IP address blocks: 94.231.40.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:4a:54:91:c3:ce:bd:e0:d2:7b:72:7e:09:43:09:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33954330349f57502a76ae6e99987efc3e3b8109
Validity
Not Before: Jan 1 07:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c41d5e910c148ac4616aab2f68a0500d16ed3355
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:0e:b2:da:fa:d3:5a:12:f9:ea:49:39:ff:f2:
87:3b:57:80:19:c1:0b:6a:cd:7d:df:8e:54:0d:e8:
c2:7f:98:6a:f3:34:82:66:04:c8:91:fd:c8:6b:1e:
3d:32:af:2a:e0:1d:27:7e:e7:0d:25:a9:9f:f2:96:
47:42:d4:45:78:e1:53:9a:11:db:69:30:1c:f2:42:
23:b2:19:1d:4e:7e:51:d4:6f:68:0f:6f:f8:7e:f9:
dc:10:c1:0a:70:4c:d6:6d:a4:b5:7d:7e:81:e2:42:
65:cd:6c:b3:30:9f:11:f0:48:41:01:36:ca:f6:f3:
32:c6:58:91:b2:32:75:52:74:51:0d:18:b2:1d:2e:
fd:a7:01:d1:76:3d:dc:4a:d1:77:a7:cc:d7:ce:5c:
20:1f:6d:53:38:7c:0e:5b:85:4d:ed:f7:53:4a:b0:
64:62:07:94:d5:35:8c:88:b9:35:fb:0c:b9:cd:f4:
7a:93:11:e9:d3:d1:13:3e:05:7a:c0:3f:3d:c2:08:
58:2b:96:87:81:ca:ed:d0:d9:0c:56:e9:5d:f4:57:
88:c5:d7:9e:9d:1b:f6:70:6d:86:c9:75:66:91:0d:
cd:a0:2b:67:83:ef:c1:c3:55:b8:31:ba:b5:34:2b:
5f:f8:21:5e:46:73:44:81:83:d6:17:c9:62:8f:04:
b4:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:1D:5E:91:0C:14:8A:C4:61:6A:AB:2F:68:A0:50:0D:16:ED:33:55
X509v3 Authority Key Identifier:
keyid:33:95:43:30:34:9F:57:50:2A:76:AE:6E:99:98:7E:FC:3E:3B:81:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M5VDMDSfV1Aqdq5umZh-_D47gQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/0f19e9-1b2b-4812-ab5a-fdf84f83a274/1/xB1ekQwUisRhaqsvaKBQDRbtM1U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/0f19e9-1b2b-4812-ab5a-fdf84f83a274/1/M5VDMDSfV1Aqdq5umZh-_D47gQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.231.40.0/21
Signature Algorithm: sha256WithRSAEncryption
19:53:b9:57:36:b8:5a:59:5f:c3:d5:ff:3b:75:a1:75:fd:dc:
87:50:33:83:36:90:1c:ca:9f:07:92:80:d3:79:ac:6a:b0:18:
c9:8b:fe:d3:fd:d8:ff:a5:7b:ad:dd:a0:72:ac:b0:c3:bb:ec:
8e:49:30:fe:06:87:6b:2f:ec:fc:8c:60:2d:ce:b0:12:7c:26:
e6:47:1f:3f:10:ae:c2:a7:56:70:7d:ce:a6:be:c9:c1:ba:f4:
96:cf:ad:6d:c5:f4:51:71:65:99:0a:20:c1:dc:45:16:fe:39:
74:03:fb:8b:32:5a:c3:9d:a4:79:8b:eb:bb:f4:1d:9c:e8:04:
43:66:85:4e:5e:50:5f:c5:b2:68:46:66:fc:a0:6c:5f:fd:40:
29:5e:78:24:b5:e5:f1:48:31:17:75:bc:df:d8:42:4b:c6:fb:
01:21:7b:2f:63:9c:5d:2f:18:a6:0f:7a:54:b8:4b:1d:7e:3b:
3a:37:34:76:eb:5c:83:cb:2e:c7:74:0a:f2:8b:c7:d7:af:6a:
ac:44:ea:48:d2:14:76:36:0d:2f:67:bd:d6:f8:37:60:cb:59:
c1:92:bb:77:02:c2:07:1c:e4:ee:ff:17:ee:39:90:01:15:e0:
4a:b8:0a:b4:2e:97:4a:f1:71:47:ac:9e:b6:34:9d:04:c1:07:
b9:bb:08:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:25 2024 by rpki-client on console-fra.rpki-client.org