Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/q4BdmfcliDEmGFBj3V9JmoU1ZB0.roa
File: q4BdmfcliDEmGFBj3V9JmoU1ZB0.roa (raw, json)
Hash identifier: y2zCNTQYi1ePNANmhG/8zbYZcwDnVGu7RqEdvqxoRQc=
Subject key identifier: AB:80:5D:99:F7:25:88:31:26:18:50:63:DD:5F:49:9A:85:35:64:1D
Certificate issuer: /CN=89da60f049dfba34be4b4e8418b9ff492125c449
Certificate serial: 01856FA7088D53585ACC30AA41DCDF342DF2
Authority key identifier: 89:DA:60:F0:49:DF:BA:34:BE:4B:4E:84:18:B9:FF:49:21:25:C4:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idpg8EnfujS-S06EGLn_SSElxEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/q4BdmfcliDEmGFBj3V9JmoU1ZB0.roa
Signing time: Sun 01 Jan 2023 23:24:55 +0000
ROA not before: Sun 01 Jan 2023 23:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25465
IP address blocks: 94.207.41.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a7:08:8d:53:58:5a:cc:30:aa:41:dc:df:34:2d:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89da60f049dfba34be4b4e8418b9ff492125c449
Validity
Not Before: Jan 1 23:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab805d99f725883126185063dd5f499a8535641d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:3e:c4:55:ad:54:8a:4c:e5:80:42:79:3b:28:
b8:3a:c8:bb:7d:04:d7:77:07:9a:7c:2f:a0:af:c0:
ba:f7:9d:0a:55:50:36:0d:40:5e:fa:a1:5d:02:a0:
82:f6:56:a8:62:f2:c4:b1:c9:f9:03:9d:b4:16:17:
56:f0:c8:83:00:9d:67:46:d9:b0:5f:fe:f0:8f:c1:
ad:f7:a5:a1:e9:31:7a:d0:26:30:5f:29:47:82:7d:
31:4b:bf:5b:52:44:5b:a2:0d:21:cd:9e:10:47:1a:
63:32:0c:0d:ed:a9:d7:aa:f9:0b:9a:10:52:bb:ee:
e6:aa:89:09:c9:d9:68:4a:d6:0d:34:d0:b8:79:34:
3c:a1:8a:ee:56:30:2a:a3:68:16:ee:32:f5:e7:2e:
65:ae:0c:cd:65:d7:12:75:c1:74:47:c1:13:ac:70:
9d:d7:3f:a8:2f:9f:25:2c:49:fd:a2:de:f4:2f:48:
da:24:cc:41:33:98:6d:81:d4:a9:5b:cf:2f:f0:f5:
8f:58:a2:59:6d:2e:ac:95:49:ec:91:92:3f:31:26:
26:ca:67:dd:61:d9:d9:ed:63:c7:0f:9e:8f:5f:8e:
65:fd:8c:75:e0:91:50:65:e5:fd:4d:93:06:bf:a3:
89:75:c9:54:ff:39:d5:d2:89:6a:cc:6c:20:06:79:
36:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:80:5D:99:F7:25:88:31:26:18:50:63:DD:5F:49:9A:85:35:64:1D
X509v3 Authority Key Identifier:
keyid:89:DA:60:F0:49:DF:BA:34:BE:4B:4E:84:18:B9:FF:49:21:25:C4:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idpg8EnfujS-S06EGLn_SSElxEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/q4BdmfcliDEmGFBj3V9JmoU1ZB0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/idpg8EnfujS-S06EGLn_SSElxEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.207.41.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:d8:07:ad:32:15:cb:0b:e1:81:fa:58:3a:3a:5f:47:a6:2a:
77:ef:dd:83:c3:3d:95:3d:33:2e:41:93:c6:33:f1:87:10:e0:
d6:be:6c:a7:12:76:03:d9:01:16:71:16:8e:3f:9b:f4:38:a4:
72:6f:8b:c9:b1:28:99:8e:5c:60:91:e8:3a:83:c6:e7:d7:23:
55:d1:21:6f:75:c9:8a:c3:75:1b:b4:86:ea:26:fd:ac:b3:10:
b9:bf:31:f0:8b:65:24:26:36:40:b6:2b:94:93:0e:74:91:d3:
ec:f9:45:4f:e6:65:7d:8f:a5:af:72:10:a3:53:4a:3b:f0:10:
ed:42:26:1f:a3:ae:d2:86:35:f0:5b:2a:29:cf:ea:53:5c:5e:
0c:27:15:7e:e1:4f:b5:9d:f1:21:11:50:67:8b:f1:9b:8e:60:
31:40:ae:5f:c1:b8:49:50:9a:bd:c9:de:b4:b1:7f:03:c2:69:
94:65:14:cf:2e:da:1a:09:2c:9b:c5:f1:b4:aa:9f:fe:22:ec:
79:f6:f7:80:32:f8:04:03:3c:02:28:e4:8b:53:24:b8:15:04:
07:c3:e8:f6:22:7d:87:24:38:1c:35:0d:cf:f4:2e:68:b6:57:
ec:b9:b2:ef:b9:e1:f9:11:35:d6:92:50:2c:56:c5:13:94:ab:
f6:02:3a:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:22:13 2024 by rpki-client on console-ams.rpki-client.org