Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/VDhgaSlL7TJ9wtZjkVeC3nO0WGg.roa
File: VDhgaSlL7TJ9wtZjkVeC3nO0WGg.roa (raw, json)
Hash identifier: XxLAlOR0AmsNdKZ13XSBcQPNwTMzoVgln2s67kDNo0s=
Subject key identifier: 54:38:60:69:29:4B:ED:32:7D:C2:D6:63:91:57:82:DE:73:B4:58:68
Certificate issuer: /CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Certificate serial: 018571155B0387C4DAA355D13FFE51680139
Authority key identifier: 1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/VDhgaSlL7TJ9wtZjkVeC3nO0WGg.roa
Signing time: Mon 02 Jan 2023 06:05:03 +0000
ROA not before: Mon 02 Jan 2023 06:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201893
IP address blocks: 94.42.196.0/24 maxlen: 24
94.42.195.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:15:5b:03:87:c4:da:a3:55:d1:3f:fe:51:68:01:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Validity
Not Before: Jan 2 06:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=54386069294bed327dc2d663915782de73b45868
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:ba:b7:3e:3a:d2:59:87:ed:29:6c:61:e3:6e:
70:e3:59:69:42:75:88:cc:6e:6e:78:84:6d:58:fa:
c7:21:7e:89:bf:bc:43:26:78:17:9c:08:8a:4d:5a:
d1:31:f3:59:d2:36:df:0e:12:cc:ef:88:6e:4c:d7:
7a:52:ab:af:90:40:6f:7c:d8:be:dc:d8:2c:d0:b3:
f1:83:be:9b:40:3a:28:10:75:c8:39:35:d6:a2:9b:
0f:1a:b1:e4:e1:4f:ba:d4:dd:d2:80:b3:7a:72:c1:
2c:18:7c:5a:2c:a2:f0:ba:8a:48:8c:ab:5d:a5:4f:
5c:0c:a4:3f:e2:d1:2c:9f:a8:09:b0:f9:a5:be:6d:
1b:ca:8b:f5:87:72:29:3c:21:ac:a5:1d:03:21:15:
83:73:d5:a3:11:6a:f4:c4:02:ba:15:75:87:af:b2:
23:18:9e:68:50:a3:7b:d8:f9:01:a0:45:29:75:6c:
a4:ef:91:b2:ea:6f:bf:49:a3:b9:5d:49:29:dc:31:
11:c7:f2:8f:d0:57:03:50:a0:84:89:bd:28:f6:55:
ae:97:1f:aa:5f:62:39:87:6b:72:0b:db:d3:0b:e4:
85:10:fe:13:76:81:8a:7a:b0:ab:97:7f:18:a3:7e:
16:eb:dc:ee:48:bb:c6:af:32:77:fd:50:f4:61:b9:
39:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:38:60:69:29:4B:ED:32:7D:C2:D6:63:91:57:82:DE:73:B4:58:68
X509v3 Authority Key Identifier:
keyid:1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/VDhgaSlL7TJ9wtZjkVeC3nO0WGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.42.195.0-94.42.196.255
Signature Algorithm: sha256WithRSAEncryption
47:37:40:f4:f1:72:1b:d4:09:b8:bb:ba:ea:60:87:60:11:87:
04:ce:d8:c0:af:07:b7:a9:4e:61:3c:9c:d2:7c:fa:32:da:c8:
5d:52:de:7e:44:97:a3:5d:aa:31:59:c1:4c:0d:78:bd:11:86:
5d:e7:24:93:87:a6:55:13:35:7d:ce:f4:ba:8c:d0:e6:df:6d:
f2:f1:81:fd:4a:ba:2c:dc:72:f3:c7:fe:9f:72:56:aa:8c:e8:
eb:c5:2a:b6:11:31:fc:30:af:43:53:04:05:bc:06:b1:fc:ff:
0a:17:cf:61:8e:1a:3d:64:49:52:42:ac:33:e3:ed:30:40:00:
49:18:43:8e:08:7d:76:44:ec:b5:96:7d:3a:e4:75:11:96:b3:
23:06:b6:f8:ba:ae:ed:f1:b4:f0:7a:b3:0c:de:75:f0:6c:21:
47:7a:85:b6:47:b6:b4:25:19:f1:cc:2f:fa:68:ba:ab:81:57:
b7:a2:02:4c:76:7e:36:45:8a:da:76:f9:32:e0:8d:b0:7d:29:
0f:da:29:73:89:23:5a:3d:9a:e8:be:bc:67:ca:2b:83:4b:84:
19:e0:6f:bb:af:eb:8e:9d:3d:40:fd:fc:2c:d1:cd:59:8f:2a:
fc:ea:cc:ba:17:53:4b:69:63:de:d6:0a:a7:bc:98:cd:8a:2d:
10:32:71:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:50:29 2024 by rpki-client on console-fra.rpki-client.org