Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/d-lsP1bG0nlr07pXG2kjIzuZxp0.roa
File: d-lsP1bG0nlr07pXG2kjIzuZxp0.roa (raw, json)
Hash identifier: HeK5yamsqYm13v2mKlEb2Xdsxsk3AeboNsN050RbAWs=
Subject key identifier: 77:E9:6C:3F:56:C6:D2:79:6B:D3:BA:57:1B:69:23:23:3B:99:C6:9D
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0185708CE6DF9485EDB9B2F0BD75235545A7
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/d-lsP1bG0nlr07pXG2kjIzuZxp0.roa
Signing time: Mon 02 Jan 2023 03:36:00 +0000
ROA not before: Mon 02 Jan 2023 03:36:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201936
IP address blocks: 94.241.132.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:31:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:e6:df:94:85:ed:b9:b2:f0:bd:75:23:55:45:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jan 2 03:36:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77e96c3f56c6d2796bd3ba571b6923233b99c69d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:4a:0b:22:44:da:ad:cf:7d:da:50:09:00:e7:
24:70:bf:6e:99:f9:50:d0:77:97:e1:6d:51:13:58:
d2:8f:69:df:b4:c0:44:bb:a5:8f:31:eb:bd:26:06:
6e:8e:5f:1b:a4:32:13:82:3d:16:cb:48:ac:0e:2a:
8e:b6:bb:01:17:50:ac:1a:59:6d:20:3e:ee:66:36:
a3:35:73:55:40:71:d0:a7:e4:c8:29:a9:f1:16:b5:
ea:3e:33:b1:7c:79:b4:f6:e1:99:03:9a:71:d8:16:
3f:41:72:b5:d2:99:ed:8f:8a:35:18:f3:d1:db:04:
33:ff:00:b9:8f:47:6f:05:38:6b:3e:25:8f:11:cf:
10:b0:89:7b:eb:a8:16:9e:04:8b:2b:32:b1:07:3e:
8e:5b:9e:25:63:a5:ba:1d:01:bf:80:63:a2:f6:d8:
f6:c5:d0:ca:13:e4:b1:7b:c6:13:16:55:e2:fe:d7:
39:bb:20:9b:4e:fe:2b:c6:b6:92:8e:6e:d1:d3:6d:
30:98:c0:c5:16:9c:55:4f:1e:ae:85:bf:cf:24:34:
fd:21:aa:d3:6b:e9:13:ad:ef:1c:7a:bb:4e:41:1b:
f2:e4:1f:23:43:09:1a:75:50:a2:59:18:3c:39:90:
aa:fb:67:71:0a:26:fe:9d:6f:65:48:c2:47:c2:ad:
fd:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:E9:6C:3F:56:C6:D2:79:6B:D3:BA:57:1B:69:23:23:3B:99:C6:9D
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/d-lsP1bG0nlr07pXG2kjIzuZxp0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.241.132.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:d7:31:30:de:35:a4:eb:66:fb:2f:00:f8:53:34:de:69:08:
eb:ed:d0:ec:52:b2:c3:3b:bc:0a:1d:da:60:d1:18:b8:6f:45:
40:9f:62:ad:19:29:00:ac:5c:20:d9:95:50:94:3a:5b:c5:a8:
17:01:cb:6c:07:4f:9f:e7:cf:bc:6c:e4:35:f3:59:d4:fc:0c:
e5:a1:01:8b:c9:ae:8e:7d:82:3e:12:36:1f:b2:95:d5:43:ba:
9d:86:da:c1:c8:d4:29:df:e0:b4:17:81:a0:ac:eb:31:a4:19:
ec:21:6b:0c:e3:a3:37:ec:a1:19:0b:d1:e5:bc:06:49:ad:0b:
47:1e:c4:49:16:4b:14:44:a7:06:5c:35:76:9a:e1:ef:fe:17:
dd:91:b8:d2:1d:a1:87:cf:eb:3b:ed:e3:20:54:be:93:99:e8:
f0:2d:5f:61:8d:23:d7:36:94:77:33:8e:3f:fa:ef:67:c1:d1:
80:2f:c3:ee:91:cd:3c:17:9f:84:39:a5:bc:26:3f:64:a9:74:
e1:e5:d4:2b:42:80:02:a1:03:f1:c5:64:a3:19:64:40:af:d3:
ad:56:d6:51:76:24:50:fb:77:dc:b2:99:26:88:54:f3:5c:81:
aa:6f:92:e8:32:5b:ae:0e:8f:e2:ec:37:a8:b0:2e:1d:d9:12:
87:99:d8:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:09 2024 by rpki-client on console-fra.rpki-client.org