Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/ba19e4-71cc-470e-bda5-9da4cc620533/1/8EE5d00uaGIvMVWd2zJ7b10AW4g.roa
File: 8EE5d00uaGIvMVWd2zJ7b10AW4g.roa (raw, json)
Hash identifier: i9QJwnUiY87qcj8ZuBhy94YFJjjOVu86xxdYsDjdQR4=
Subject key identifier: F0:41:39:77:4D:2E:68:62:2F:31:55:9D:DB:32:7B:6F:5D:00:5B:88
Certificate issuer: /CN=e2aec3c8ab11fc058c9a8ef400ef1c3d144a7ba8
Certificate serial: 0188141C277FC4767B3F658C1BD57731E37D
Authority key identifier: E2:AE:C3:C8:AB:11:FC:05:8C:9A:8E:F4:00:EF:1C:3D:14:4A:7B:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4q7DyKsR_AWMmo70AO8cPRRKe6g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/ba19e4-71cc-470e-bda5-9da4cc620533/1/8EE5d00uaGIvMVWd2zJ7b10AW4g.roa
Signing time: Sat 13 May 2023 07:56:09 +0000
ROA not before: Sat 13 May 2023 07:56:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204555
IP address blocks: 94.125.143.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:14:1c:27:7f:c4:76:7b:3f:65:8c:1b:d5:77:31:e3:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2aec3c8ab11fc058c9a8ef400ef1c3d144a7ba8
Validity
Not Before: May 13 07:56:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f04139774d2e68622f31559ddb327b6f5d005b88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5e:33:7d:44:66:98:ad:5a:8c:5b:9e:4e:f2:
e8:61:31:d3:e1:a8:5f:c7:64:81:58:0d:b7:52:00:
f0:8c:d0:ad:6b:72:6f:c9:22:95:b6:04:75:2e:39:
8d:02:7f:19:10:85:5a:5d:3c:70:82:09:83:fb:14:
a6:01:b3:d9:d3:98:a4:50:f5:be:bc:7d:84:d1:2c:
e7:dc:57:43:db:94:f9:6e:a8:c5:cb:75:fc:52:23:
4c:1e:bf:e4:3c:34:fc:6f:57:08:6a:5c:20:04:9b:
2b:a8:fc:bd:a5:6b:a6:f2:d0:88:91:38:15:b1:49:
44:0c:ba:08:64:71:22:d6:7b:ec:ad:38:39:c5:5b:
67:6f:07:40:92:13:5e:39:a5:e1:55:0c:30:8a:ba:
87:db:38:0d:c9:03:6e:37:69:04:5b:d7:80:6d:ff:
35:c3:0f:0c:e9:92:b6:91:8e:bd:e8:45:4f:73:d5:
d7:13:02:f4:3b:27:80:d1:53:4e:4d:37:1f:e5:4f:
25:0f:13:89:ee:5e:28:0a:40:4e:a4:a6:9e:03:8d:
5c:2e:fb:06:55:d6:c7:c1:02:bd:63:51:40:eb:24:
92:7c:97:20:a0:d4:f4:7f:76:e4:09:9f:ef:f0:98:
98:32:16:70:0d:25:35:ef:d8:55:06:0f:48:50:d1:
fd:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:41:39:77:4D:2E:68:62:2F:31:55:9D:DB:32:7B:6F:5D:00:5B:88
X509v3 Authority Key Identifier:
keyid:E2:AE:C3:C8:AB:11:FC:05:8C:9A:8E:F4:00:EF:1C:3D:14:4A:7B:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4q7DyKsR_AWMmo70AO8cPRRKe6g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/ba19e4-71cc-470e-bda5-9da4cc620533/1/8EE5d00uaGIvMVWd2zJ7b10AW4g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/ba19e4-71cc-470e-bda5-9da4cc620533/1/4q7DyKsR_AWMmo70AO8cPRRKe6g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.125.143.0/24
Signature Algorithm: sha256WithRSAEncryption
99:6a:22:17:29:ee:0e:1d:61:0a:c1:70:c0:82:91:fc:19:26:
37:d5:b0:f4:6d:eb:fb:bd:2a:3b:ae:1f:ca:13:b6:72:02:e3:
40:3b:78:a6:aa:9c:38:a6:22:94:a6:02:d8:fc:e6:e5:85:4b:
3f:d7:2f:e5:c1:eb:0f:31:4a:31:4d:4d:b3:0f:fa:cd:7a:5d:
df:92:f7:1b:89:c2:da:8f:b6:b3:7c:a4:08:81:2d:fc:8a:7a:
b6:a4:07:40:44:cb:bb:36:26:d5:eb:23:4b:27:5f:20:93:11:
cf:f6:c1:56:15:a8:26:13:c0:62:30:65:cf:11:4a:6a:13:eb:
bf:4e:c2:c3:74:42:c0:09:c6:26:52:d4:ac:4a:80:ae:2b:8d:
80:bb:1d:e7:2f:53:6b:e6:34:3b:39:89:9a:12:3c:a9:d4:ac:
0d:c7:e2:ec:d0:79:da:1f:6a:07:67:b7:4a:f9:a1:18:8a:2d:
10:97:4b:da:8c:55:5c:dd:72:66:4d:34:6c:aa:51:6b:9d:a7:
80:1a:a6:94:24:10:be:88:3f:10:76:1e:4b:b1:68:94:09:66:
08:6d:07:ab:34:07:e0:a3:08:73:e3:21:8f:4b:1e:8e:94:47:
ce:74:76:92:9e:a1:79:d3:c9:be:ba:f7:bb:82:5b:19:7d:62:
e4:e3:cb:fe
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYgUHCd/xHZ7P2WMG9V3MeN9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUyYWVjM2M4YWIxMWZjMDU4YzlhOGVmNDAwZWYxYzNkMTQ0
YTdiYTgwHhcNMjMwNTEzMDc1NjA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMDQxMzk3NzRkMmU2ODYyMmYzMTU1OWRkYjMyN2I2ZjVkMDA1Yjg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAul4zfURmmK1ajFueTvLoYTHT4ahf
x2SBWA23UgDwjNCta3JvySKVtgR1LjmNAn8ZEIVaXTxwggmD+xSmAbPZ05ikUPW+
vH2E0Szn3FdD25T5bqjFy3X8UiNMHr/kPDT8b1cIalwgBJsrqPy9pWum8tCIkTgV
sUlEDLoIZHEi1nvsrTg5xVtnbwdAkhNeOaXhVQwwirqH2zgNyQNuN2kEW9eAbf81
ww8M6ZK2kY696EVPc9XXEwL0OyeA0VNOTTcf5U8lDxOJ7l4oCkBOpKaeA41cLvsG
VdbHwQK9Y1FA6ySSfJcgoNT0f3bkCZ/v8JiYMhZwDSU179hVBg9IUNH93wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPBBOXdNLmhiLzFVndsye29dAFuIMB8GA1UdIwQY
MBaAFOKuw8irEfwFjJqO9ADvHD0USnuoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHE3RHlLc1JfQVdNbW83MEFPOGNQUlJLZTZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS9iYTE5ZTQtNzFjYy00NzBlLWJkYTUt
OWRhNGNjNjIwNTMzLzEvOEVFNWQwMHVhR0l2TVZXZDJ6SjdiMTBBVzRnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMS9iYTE5ZTQtNzFjYy00NzBlLWJkYTUtOWRhNGNjNjIwNTMz
LzEvNHE3RHlLc1JfQVdNbW83MEFPOGNQUlJLZTZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXn2PMA0G
CSqGSIb3DQEBCwUAA4IBAQCZaiIXKe4OHWEKwXDAgpH8GSY31bD0bev7vSo7rh/K
E7ZyAuNAO3imqpw4piKUpgLY/OblhUs/1y/lwesPMUoxTU2zD/rNel3fkvcbicLa
j7azfKQIgS38inq2pAdARMu7NibV6yNLJ18gkxHP9sFWFagmE8BiMGXPEUpqE+u/
TsLDdELACcYmUtSsSoCuK42Aux3nL1Nr5jQ7OYmaEjyp1KwNx+Ls0HnaH2oHZ7dK
+aEYii0Ql0vajFVc3XJmTTRsqlFrnaeAGqaUJBC+iD8Qdh5LsWiUCWYIbQerNAfg
owhz4yGPSx6OlEfOdHaSnqF508m+uve7glsZfWLk48v+
-----END CERTIFICATE-----
Generated at Mon Oct 30 14:14:24 2023 by rpki-client on console-ams.rpki-client.org