Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/D_AwrNaE241OJzz8o9hK0o26_8c.roa
File: D_AwrNaE241OJzz8o9hK0o26_8c.roa (raw, json)
Hash identifier: g+xhkis+YiJmSWlkzMKr946UnR9sGT+XoxLhcZnDz08=
Subject key identifier: 0F:F0:30:AC:D6:84:DB:8D:4E:27:3C:FC:A3:D8:4A:D2:8D:BA:FF:C7
Certificate issuer: /CN=297ae7592ca52491dc166a30fe1477d712bd465d
Certificate serial: 0191DD56D0924AC27AC163CE5675BFB45CA4
Authority key identifier: 29:7A:E7:59:2C:A5:24:91:DC:16:6A:30:FE:14:77:D7:12:BD:46:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXrnWSylJJHcFmow_hR31xK9Rl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/D_AwrNaE241OJzz8o9hK0o26_8c.roa
Signing time: Tue 10 Sep 2024 19:08:59 +0000
ROA not before: Tue 10 Sep 2024 19:08:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216300
IP address blocks: 94.159.112.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 10 Sep 2024 19:09:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:dd:56:d0:92:4a:c2:7a:c1:63:ce:56:75:bf:b4:5c:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297ae7592ca52491dc166a30fe1477d712bd465d
Validity
Not Before: Sep 10 19:08:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0ff030acd684db8d4e273cfca3d84ad28dbaffc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:14:1f:74:fa:dc:38:3e:e6:f8:07:05:fc:fc:
12:e9:fe:ed:85:4c:73:06:5e:32:07:0b:a4:23:8a:
c6:32:87:66:86:75:ac:20:1d:92:42:a2:7f:b0:84:
72:07:d0:90:b8:d0:a7:1b:b7:dc:51:fc:f1:3c:c2:
9e:82:e4:53:47:98:2b:21:06:57:66:aa:a8:4e:56:
31:30:ed:a9:70:f7:7a:9f:10:ec:42:12:77:70:b5:
6b:4e:e5:6a:4b:d1:06:1f:8c:c6:74:49:e9:73:7c:
23:f8:b3:67:e0:bc:e5:e7:c7:9b:43:e9:e8:24:44:
b2:b7:be:b2:fa:f4:ae:3f:6a:9d:c8:2b:b2:e3:6c:
70:b1:ac:54:c5:0e:ff:d4:a8:77:e3:50:53:8d:a5:
9c:db:2f:bf:33:6c:7d:30:3f:3f:52:95:60:eb:67:
0a:35:5c:29:40:6d:fd:90:f4:94:71:23:8a:71:fd:
9e:7a:08:8e:00:d3:40:27:f0:bc:18:e0:86:ab:60:
7c:91:43:80:85:4d:cd:ef:29:da:28:71:8b:84:22:
1f:ac:53:56:44:fd:49:f0:78:0b:85:3e:e7:25:23:
4e:a6:f2:f0:d3:83:3d:f6:11:26:c8:8a:9a:d0:06:
8b:f8:e0:cc:98:be:7d:af:e5:d3:30:5a:67:2c:9a:
30:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:F0:30:AC:D6:84:DB:8D:4E:27:3C:FC:A3:D8:4A:D2:8D:BA:FF:C7
X509v3 Authority Key Identifier:
keyid:29:7A:E7:59:2C:A5:24:91:DC:16:6A:30:FE:14:77:D7:12:BD:46:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXrnWSylJJHcFmow_hR31xK9Rl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/D_AwrNaE241OJzz8o9hK0o26_8c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/KXrnWSylJJHcFmow_hR31xK9Rl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.159.112.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:60:93:34:d5:65:4e:62:1b:fa:03:64:f1:df:2e:00:be:12:
d4:9a:e8:1e:f6:ef:1e:31:a1:69:ea:31:1c:d9:0b:c7:6a:8a:
1f:df:57:90:b3:d8:4e:e0:85:01:b7:8e:02:c9:ef:fa:f7:54:
fb:ec:a4:4d:ff:04:fc:73:8e:0e:ba:6e:b0:69:d8:12:52:82:
87:02:12:04:15:24:1d:c2:53:4a:f5:81:36:29:68:7a:47:60:
bc:5a:39:d6:7b:4d:89:12:9a:49:9d:3c:dc:30:a7:7e:41:f5:
fb:43:d0:69:12:37:dd:7c:c7:5b:e3:18:41:c5:1f:a5:a7:09:
ac:97:2b:e0:73:7a:3e:a5:8b:01:b7:79:47:8b:bd:4e:93:c2:
93:bb:2b:b3:87:dc:86:71:53:70:51:ea:a2:f1:b7:eb:4b:52:
42:7b:a9:b6:2e:5e:ee:1b:ad:72:d4:94:50:1d:d0:ba:2e:d8:
9c:2d:21:16:a1:22:25:08:19:7f:69:2a:f8:8f:ae:05:d8:e3:
86:f5:47:f6:76:06:da:67:5a:c8:8c:e6:76:37:42:3d:28:94:
66:b2:4c:91:74:b4:e5:77:0a:ae:03:85:d1:3d:8e:1c:c3:3a:
19:5b:c6:2b:da:cc:8b:c1:b5:6b:ec:fa:bc:29:06:bb:9c:91:
ac:34:b4:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 10 23:11:31 2024 by rpki-client on console-ams.rpki-client.org