Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/lUfZZh5cdREvR6dRNXKwVxfa1W8.roa
File: lUfZZh5cdREvR6dRNXKwVxfa1W8.roa (raw, json)
Hash identifier: M+qerITnGyMxlqWYa+wNOP9FjsnRqZ5i8Nuq3BH/oZU=
Subject key identifier: 95:47:D9:66:1E:5C:75:11:2F:47:A7:51:35:72:B0:57:17:DA:D5:6F
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018A2383936A6B1CCCC090E80A85D4E7BC95
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/lUfZZh5cdREvR6dRNXKwVxfa1W8.roa
Signing time: Wed 23 Aug 2023 17:49:00 +0000
ROA not before: Wed 23 Aug 2023 17:49:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5065
IP address blocks: 94.241.136.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:23:83:93:6a:6b:1c:cc:c0:90:e8:0a:85:d4:e7:bc:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Aug 23 17:49:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9547d9661e5c75112f47a7513572b05717dad56f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:12:f2:72:89:6f:57:1f:8a:36:57:a1:bc:86:
aa:da:5f:a9:fc:b9:bb:80:87:cd:2c:c6:2c:74:ae:
be:41:c6:55:6c:30:a7:f3:30:ce:55:5b:54:c5:1a:
07:df:75:c8:8a:77:e3:69:40:26:76:a8:47:30:03:
bf:46:6e:05:65:77:77:5a:f6:05:e7:2a:b5:a5:0a:
f2:27:95:db:87:34:30:68:35:3b:99:54:67:ce:41:
92:6e:39:be:f9:2f:03:ad:54:c1:c5:37:1c:af:45:
b4:73:d3:d0:24:db:db:18:ad:12:a7:6d:7a:fb:21:
24:96:3a:cf:d1:c4:79:59:54:ba:c0:be:9a:da:85:
93:83:bb:da:3c:61:ca:27:59:51:f1:11:ae:07:40:
70:df:bf:e8:7b:c3:b6:d7:01:41:4d:5d:b4:fe:5b:
6d:5a:35:03:42:ed:94:80:2a:4e:ac:1d:2f:cb:fc:
a1:4b:ea:f2:f4:69:10:60:75:53:20:77:38:26:88:
fc:3e:5b:00:10:37:33:dd:ac:ba:80:92:ed:69:b7:
cd:90:cf:83:f1:60:e9:fc:c0:ec:3f:f1:e5:47:29:
9b:b3:de:af:28:2e:49:6b:22:08:10:7a:cd:aa:68:
1e:bb:ea:ee:55:45:51:d1:85:ba:3c:49:ea:03:fa:
ae:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:47:D9:66:1E:5C:75:11:2F:47:A7:51:35:72:B0:57:17:DA:D5:6F
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/lUfZZh5cdREvR6dRNXKwVxfa1W8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.241.136.0/23
Signature Algorithm: sha256WithRSAEncryption
96:23:ec:bc:c0:02:92:aa:4f:38:ae:7b:54:e7:93:1c:17:c9:
fd:29:76:d8:65:a9:ce:cd:32:2c:d9:b9:c3:bd:f2:10:d0:19:
1a:73:26:a8:7a:53:a5:be:6c:42:0a:6a:f8:46:d9:14:20:6f:
17:43:f7:99:34:b0:5d:a8:43:fa:e2:b3:30:60:a3:dd:35:8a:
cb:8b:ea:e6:9b:51:d2:50:d8:10:95:53:0a:51:07:a5:1e:d7:
4b:fc:1f:ca:54:e4:29:f9:fb:d9:2d:78:ba:cf:0f:a2:c1:6d:
4b:04:79:a0:bf:16:58:a6:96:c4:e3:68:7c:5c:fd:8c:38:22:
5a:c3:90:4e:f6:cb:29:4d:d1:17:e6:12:aa:11:9a:45:16:ab:
04:08:70:17:66:7b:0f:a6:d3:9a:ce:72:5e:60:d2:af:29:6c:
37:e9:d4:c3:7b:13:14:d4:b1:c1:67:ed:c1:57:94:65:cf:f4:
eb:e7:3a:26:9c:2d:2c:51:c0:b4:e9:e3:e8:51:97:0a:31:a0:
fb:2d:b6:de:6c:11:6b:57:55:2a:76:63:00:22:b6:5c:45:b7:
7f:cb:97:3c:db:56:51:f7:d7:4e:70:e7:e8:d9:93:6b:0b:c2:
1a:45:e0:d9:f7:5a:90:5f:3c:85:55:96:5d:23:4c:dd:50:65:
25:7d:4a:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:22:36 2024 by rpki-client on console-ams.rpki-client.org