Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/CAnqcTcgPZdJyqcXATPwnumSaBQ.roa
File: CAnqcTcgPZdJyqcXATPwnumSaBQ.roa (raw, json)
Hash identifier: TmyFx3YeCqAMTTq5oXuJkcKcTzYKPnILKheXL2Cy7e4=
Subject key identifier: 08:09:EA:71:37:20:3D:97:49:CA:A7:17:01:33:F0:9E:E9:92:68:14
Certificate issuer: /CN=297ae7592ca52491dc166a30fe1477d712bd465d
Certificate serial: 0192D956CBDC2F0AF357A383B9809A70027E
Authority key identifier: 29:7A:E7:59:2C:A5:24:91:DC:16:6A:30:FE:14:77:D7:12:BD:46:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXrnWSylJJHcFmow_hR31xK9Rl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/CAnqcTcgPZdJyqcXATPwnumSaBQ.roa
Signing time: Tue 29 Oct 2024 17:33:17 +0000
ROA not before: Tue 29 Oct 2024 17:33:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8595
IP address blocks: 94.159.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 31 Oct 2024 12:23:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:d9:56:cb:dc:2f:0a:f3:57:a3:83:b9:80:9a:70:02:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297ae7592ca52491dc166a30fe1477d712bd465d
Validity
Not Before: Oct 29 17:33:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0809ea7137203d9749caa7170133f09ee9926814
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:dc:e3:2c:84:e4:a1:cc:8c:d0:34:41:e6:64:
90:17:af:42:85:4d:3e:94:b8:e8:8d:f0:e6:f0:b0:
28:e0:a5:47:1a:12:b1:5a:a0:ab:4f:bf:84:ac:7e:
26:d6:ae:c3:f6:be:03:e1:31:0d:8d:41:09:fb:d4:
5a:e4:25:ef:a3:8b:23:50:d6:1c:24:8e:7e:c5:2f:
a5:02:5e:42:89:8f:41:16:dd:ec:c4:08:ea:31:0d:
dd:f8:bb:a9:11:e3:36:11:43:9c:97:a6:3e:b5:8b:
49:0f:bf:60:0e:69:eb:f5:1d:15:10:88:02:f1:7f:
41:28:2a:2d:08:be:d3:8b:f9:3a:0f:5a:b9:47:f4:
a6:a1:10:63:b6:9d:92:97:e3:ea:c7:36:c6:0d:9e:
14:2d:a7:32:d9:ec:fe:50:66:65:92:25:af:5d:b4:
ab:eb:d8:9f:a8:ee:62:da:64:fa:12:e0:3a:98:9a:
20:bd:73:dc:d0:44:4b:bb:e3:1d:32:a3:36:e5:ec:
5d:12:c8:f0:57:bd:a6:dc:c8:ca:56:98:f7:bc:68:
27:cc:59:de:9e:89:65:0f:7b:a3:62:bf:8d:3a:dd:
b8:23:91:33:a8:57:f4:99:97:19:9c:b6:7f:f0:a5:
e8:ea:55:6d:30:80:41:77:2e:32:a1:be:f9:58:95:
3f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:09:EA:71:37:20:3D:97:49:CA:A7:17:01:33:F0:9E:E9:92:68:14
X509v3 Authority Key Identifier:
keyid:29:7A:E7:59:2C:A5:24:91:DC:16:6A:30:FE:14:77:D7:12:BD:46:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXrnWSylJJHcFmow_hR31xK9Rl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/CAnqcTcgPZdJyqcXATPwnumSaBQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/KXrnWSylJJHcFmow_hR31xK9Rl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.159.94.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:d1:bf:73:b5:1a:f7:17:c4:c4:3f:6b:55:a1:da:da:97:11:
7c:bb:f3:7f:da:0c:64:3f:67:4d:0f:76:32:ce:44:c8:24:48:
98:11:0e:99:f7:5f:e1:76:0c:c2:5b:09:6e:e0:e6:85:14:0c:
b3:4c:c3:59:00:40:10:eb:26:3a:22:0f:76:26:ee:6f:a3:0c:
bf:b0:05:2f:57:ac:c3:e6:b9:b3:ea:a6:65:63:95:f8:75:fd:
74:77:d8:2c:93:63:fb:d0:05:34:9b:e7:24:ee:b4:f7:57:de:
0c:f4:28:17:00:39:a6:b0:37:c0:02:a2:c2:70:b8:59:fd:25:
25:03:47:fe:ac:da:6f:34:98:6e:5d:1f:cc:0b:af:48:ba:b2:
ec:21:9d:0e:f8:ea:67:92:2f:c9:f5:e8:94:99:26:3e:25:d7:
77:7b:9f:86:ff:24:59:f5:ef:9f:dd:17:ee:56:25:ac:a0:a7:
0b:19:df:6d:a9:98:a8:72:4e:c7:5a:bf:c2:cd:ef:c4:02:b4:
79:b0:19:91:12:83:d7:eb:3b:61:9d:3a:0d:14:3b:d3:93:a1:
5f:96:db:60:ac:6b:d8:89:b0:01:2c:42:4c:20:b4:97:10:92:
9a:c5:80:f2:8d:02:43:31:bd:40:5a:9f:4f:de:6e:2a:c4:c0:
72:ad:e2:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 31 15:31:01 2024 by rpki-client on console-fra.rpki-client.org