Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/7ed7b1-b8f3-43f3-96e3-1dc54d1c03a3/1/4996IQK32wG2I2siQszO-AVZZmo.roa
File: 4996IQK32wG2I2siQszO-AVZZmo.roa (raw, json)
Hash identifier: HoHfmrGEjvjZ0ltry/5e2pI8sJt7ixUvYFcuOs7e2wE=
Subject key identifier: E3:DF:7A:21:02:B7:DB:01:B6:23:6B:22:42:CC:CE:F8:05:59:66:6A
Certificate issuer: /CN=4c3789ecf67e04298c5ee44c67d8fb7f5d6d95a1
Certificate serial: 018B48D675AE072C4BFA9396DEF07833F258
Authority key identifier: 4C:37:89:EC:F6:7E:04:29:8C:5E:E4:4C:67:D8:FB:7F:5D:6D:95:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDeJ7PZ-BCmMXuRMZ9j7f11tlaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/7ed7b1-b8f3-43f3-96e3-1dc54d1c03a3/1/4996IQK32wG2I2siQszO-AVZZmo.roa
Signing time: Thu 19 Oct 2023 16:48:16 +0000
ROA not before: Thu 19 Oct 2023 16:48:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48279
IP address blocks: 94.154.192.0/18 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:34:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:48:d6:75:ae:07:2c:4b:fa:93:96:de:f0:78:33:f2:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c3789ecf67e04298c5ee44c67d8fb7f5d6d95a1
Validity
Not Before: Oct 19 16:48:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3df7a2102b7db01b6236b2242cccef80559666a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ca:10:8f:b0:93:21:9e:7c:81:96:92:d5:98:
fb:0f:2f:88:c5:1e:cd:40:49:81:d6:e4:4d:df:49:
bb:fe:92:ed:3c:0e:74:46:7d:2c:57:fe:37:2a:ec:
55:ed:12:fa:1c:39:74:48:fa:c3:7c:c1:a9:2e:9b:
fc:93:ca:b2:ca:c2:10:9f:d3:58:d6:6e:74:49:57:
66:93:44:53:64:7c:b8:c8:9e:40:b4:97:5f:e5:85:
9b:e0:ba:43:d7:71:52:7f:25:00:95:1e:9d:58:06:
a0:34:a8:b0:e1:73:51:c5:b4:34:11:2a:88:e1:d1:
d9:5a:d6:ea:34:e6:c6:c3:da:60:bd:89:48:a1:41:
3a:16:fd:ab:ff:98:b9:b8:51:ab:bd:9a:f7:29:4d:
79:15:92:d3:46:79:79:95:bf:87:d4:4b:57:da:f0:
e2:e0:35:97:d5:10:c3:fd:11:fa:f1:94:c4:bc:92:
f4:b6:dc:6b:42:91:8a:80:6a:93:6a:9d:79:75:e9:
f0:6b:1a:83:7c:af:3c:7a:e0:5c:04:16:a9:21:5f:
b0:11:d2:93:fc:58:f3:7a:02:52:10:82:ef:d5:0f:
2a:87:cf:08:9e:ce:6c:53:ff:d1:90:ec:7f:c4:70:
19:c2:c5:a3:d1:25:75:35:57:b1:f7:70:12:1d:09:
7d:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:DF:7A:21:02:B7:DB:01:B6:23:6B:22:42:CC:CE:F8:05:59:66:6A
X509v3 Authority Key Identifier:
keyid:4C:37:89:EC:F6:7E:04:29:8C:5E:E4:4C:67:D8:FB:7F:5D:6D:95:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDeJ7PZ-BCmMXuRMZ9j7f11tlaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/7ed7b1-b8f3-43f3-96e3-1dc54d1c03a3/1/4996IQK32wG2I2siQszO-AVZZmo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/7ed7b1-b8f3-43f3-96e3-1dc54d1c03a3/1/TDeJ7PZ-BCmMXuRMZ9j7f11tlaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.192.0/18
Signature Algorithm: sha256WithRSAEncryption
7c:b5:fe:06:63:6f:66:3a:11:59:ef:41:70:dc:4a:04:0f:0c:
52:35:05:3e:af:b8:a4:ab:cf:01:f1:f9:f9:a3:42:c5:ba:6c:
51:56:f8:0a:e6:f4:67:88:d3:f4:5b:d8:c7:04:83:0b:b3:49:
cd:59:af:74:50:9e:d6:4d:71:e5:3a:a6:3d:28:07:c5:1f:2a:
42:dc:51:e7:06:0f:34:20:09:81:5c:48:7e:18:c9:79:f6:df:
0f:e4:88:38:cb:d2:16:b6:bc:7e:50:a9:b3:53:85:e7:58:d5:
ce:cc:21:7c:ec:23:51:b6:6b:8a:2e:19:69:36:c5:79:03:a0:
08:8b:54:d8:18:dc:a0:5c:4a:2a:14:50:a2:44:8d:f7:4a:83:
4b:6e:b5:a6:8a:32:0e:07:61:f8:4c:7c:96:6d:16:be:b4:4f:
97:5c:7e:4f:b7:9f:b8:7d:4e:cf:b5:2b:a4:1a:a3:ad:b7:76:
2c:a8:ac:b1:bb:eb:17:26:6d:39:1b:7a:2c:38:16:96:70:cd:
e6:58:28:cb:af:32:81:80:c5:fe:0e:f4:d1:1d:e0:21:df:75:
8a:9f:44:10:43:c1:97:06:f2:c7:66:1c:93:1a:02:81:c2:c6:
ca:a9:a4:b8:df:30:f1:78:4f:63:62:b1:c5:d5:6d:54:d2:f8:
c1:62:13:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:25 2024 by rpki-client on console-ams.rpki-client.org