Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/09761d-6e5c-451b-8e8a-e92ee5eed226/1/1k5VnnvnwO9RoWAgRKP0h4x3KTU.roa
File: 1k5VnnvnwO9RoWAgRKP0h4x3KTU.roa (raw, json)
Hash identifier: am5Ih1yQiODqd/Z9rI6It+fffEmdYsMWbktWmENdd8E=
Subject key identifier: D6:4E:55:9E:7B:E7:C0:EF:51:A1:60:20:44:A3:F4:87:8C:77:29:35
Certificate issuer: /CN=0241154462e5adcca9d2bcbd1443fcc637879537
Certificate serial: 018CC9BBDA4CDD9640152F1ECCA2BFF89282
Authority key identifier: 02:41:15:44:62:E5:AD:CC:A9:D2:BC:BD:14:43:FC:C6:37:87:95:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AkEVRGLlrcyp0ry9FEP8xjeHlTc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/09761d-6e5c-451b-8e8a-e92ee5eed226/1/1k5VnnvnwO9RoWAgRKP0h4x3KTU.roa
Signing time: Tue 02 Jan 2024 10:33:00 +0000
ROA not before: Tue 02 Jan 2024 10:33:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204203
IP address blocks: 94.199.0.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 May 2024 22:17:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bb:da:4c:dd:96:40:15:2f:1e:cc:a2:bf:f8:92:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0241154462e5adcca9d2bcbd1443fcc637879537
Validity
Not Before: Jan 2 10:33:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d64e559e7be7c0ef51a1602044a3f4878c772935
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:09:64:56:5b:d5:f5:0f:b1:c0:48:c1:5e:a9:
db:7c:75:d2:9e:d3:1d:bf:70:1b:0a:e7:ae:f0:ea:
cc:44:a8:0e:29:24:81:6a:90:2e:37:12:3f:99:7b:
19:79:4e:48:9c:45:c5:e0:fd:75:ec:7e:3b:5c:a6:
0d:c9:92:2b:4b:80:38:68:10:ef:e4:a1:67:d6:8e:
64:9c:51:a3:46:32:dc:9f:34:aa:79:49:9c:57:c9:
13:5f:d4:11:fa:26:3f:c3:44:86:a0:ae:c9:cc:86:
1f:6d:f1:4d:52:0b:28:18:74:cb:34:c5:55:dd:e2:
7a:c0:1b:8e:9a:95:5c:33:d7:23:8e:76:47:3d:c4:
6f:86:e2:51:8b:87:73:1e:2c:8b:82:6f:28:27:e6:
87:b2:e4:49:52:d9:9a:3c:b3:2e:a3:d3:44:e6:0c:
cf:c1:13:c3:35:92:4f:e3:09:6d:22:58:61:e3:3a:
17:74:a2:d9:60:66:27:60:c0:70:fa:b9:07:6d:d0:
d0:a1:97:b4:4a:50:43:e5:94:cd:6f:6a:a6:fb:d2:
c3:eb:1a:68:30:b9:45:3f:4c:b2:9c:e0:db:97:ff:
bb:e1:6d:79:20:82:d5:f5:7b:98:46:19:52:dc:5e:
9e:86:55:30:07:e8:40:62:99:5d:3d:2d:bb:d6:88:
d1:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:4E:55:9E:7B:E7:C0:EF:51:A1:60:20:44:A3:F4:87:8C:77:29:35
X509v3 Authority Key Identifier:
keyid:02:41:15:44:62:E5:AD:CC:A9:D2:BC:BD:14:43:FC:C6:37:87:95:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AkEVRGLlrcyp0ry9FEP8xjeHlTc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/09761d-6e5c-451b-8e8a-e92ee5eed226/1/1k5VnnvnwO9RoWAgRKP0h4x3KTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/09761d-6e5c-451b-8e8a-e92ee5eed226/1/AkEVRGLlrcyp0ry9FEP8xjeHlTc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.199.0.0/24
Signature Algorithm: sha256WithRSAEncryption
60:40:80:74:8d:68:7d:e6:d2:0b:39:24:05:a7:39:bc:97:37:
7d:45:69:cf:ba:ec:4a:f3:f9:07:d0:e4:93:03:16:db:67:a4:
5c:6d:d8:81:30:9d:46:af:2f:ed:ff:98:72:b0:7c:07:58:06:
7a:6d:4a:5d:72:48:6b:99:0c:0c:d8:b4:ee:14:6f:b0:9e:a5:
83:95:5d:4e:f5:98:ba:b3:42:14:60:d1:f8:19:e1:bf:3f:db:
55:2f:72:2e:25:c8:21:e8:44:4b:63:32:cf:e5:bb:a5:8d:57:
d4:e4:69:7e:52:0a:60:89:c7:04:e9:74:2c:aa:57:5e:02:32:
2e:f4:b9:66:93:08:17:d2:72:ae:41:d0:aa:89:a1:51:e2:cc:
bb:8f:1f:6f:95:63:9f:6e:39:3c:f3:97:a3:96:63:22:60:1d:
d8:69:a6:46:fd:99:9a:0f:e8:90:99:14:5f:bb:1d:ed:b2:67:
46:39:8e:0a:78:90:8d:a8:da:27:76:90:49:be:54:9e:71:80:
d2:01:69:21:cd:1e:e8:46:91:f0:1c:05:e8:b6:8d:b2:10:59:
0b:cb:7f:6a:1d:5a:30:71:0d:be:be:e7:42:eb:02:d9:51:ae:
25:47:c4:93:7f:d3:43:43:e3:b3:29:ba:ef:d5:53:b4:3d:8d:
48:c1:ba:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:22 2024 by rpki-client on console-fra.rpki-client.org