Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/fzkGwfHt5MFmk_KEJmTGL-phf58.roa
File: fzkGwfHt5MFmk_KEJmTGL-phf58.roa (raw, json)
Hash identifier: pDLfQ74mPa3bQ147LL3VtlJWusbaM799SAGjS+ie9Ms=
Subject key identifier: 7F:39:06:C1:F1:ED:E4:C1:66:93:F2:84:26:64:C6:2F:EA:61:7F:9F
Certificate issuer: /CN=297ae7592ca52491dc166a30fe1477d712bd465d
Certificate serial: 0191DD59642CEBA267B17A634C615D2787E1
Authority key identifier: 29:7A:E7:59:2C:A5:24:91:DC:16:6A:30:FE:14:77:D7:12:BD:46:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXrnWSylJJHcFmow_hR31xK9Rl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/fzkGwfHt5MFmk_KEJmTGL-phf58.roa
Signing time: Tue 10 Sep 2024 19:11:48 +0000
ROA not before: Tue 10 Sep 2024 19:11:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29076
IP address blocks: 94.159.71.0/24 maxlen: 24
94.159.84.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 01 Oct 2024 19:42:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:dd:59:64:2c:eb:a2:67:b1:7a:63:4c:61:5d:27:87:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297ae7592ca52491dc166a30fe1477d712bd465d
Validity
Not Before: Sep 10 19:11:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7f3906c1f1ede4c16693f2842664c62fea617f9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:a2:33:42:55:69:7b:43:30:33:6d:17:f4:50:
10:b7:73:f5:0e:46:df:07:ab:59:8a:9b:30:8d:2c:
ca:e3:1d:4f:47:0e:9c:3f:b9:72:84:af:13:36:d9:
74:83:de:5e:73:16:75:ab:11:10:3b:94:7e:51:c3:
b1:3c:9a:90:f3:e8:40:57:6a:9a:ad:52:95:a9:0d:
01:29:14:ae:e7:ed:d6:70:ce:97:c2:fb:e3:0c:f4:
21:c6:91:d1:d6:ad:73:a8:14:c5:96:ed:22:2b:4d:
1e:ce:76:51:9a:df:e4:01:16:df:0c:f5:96:c7:f8:
c6:1f:9b:c3:9f:39:7e:50:a0:6b:7a:d0:a1:0c:05:
6d:a8:ab:f1:87:44:4c:5b:b2:c6:c6:06:b7:3b:70:
0c:3c:35:98:3e:25:cc:01:64:19:39:93:f8:c6:e5:
d1:37:39:b1:54:0b:e0:1c:c9:98:c0:71:c7:d5:31:
c7:1f:3c:3b:b7:c3:d7:6e:50:0b:6f:29:e9:5d:2c:
57:21:4b:c4:fb:2e:73:66:a8:48:79:55:19:e5:a7:
a2:a6:df:90:79:c9:e9:32:21:e4:06:73:9e:3a:31:
f8:dd:15:84:32:64:da:6f:61:b3:65:75:78:3f:92:
4d:ae:bb:63:d7:c3:8a:9d:ad:e8:29:17:a4:c5:bf:
53:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:39:06:C1:F1:ED:E4:C1:66:93:F2:84:26:64:C6:2F:EA:61:7F:9F
X509v3 Authority Key Identifier:
keyid:29:7A:E7:59:2C:A5:24:91:DC:16:6A:30:FE:14:77:D7:12:BD:46:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXrnWSylJJHcFmow_hR31xK9Rl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/fzkGwfHt5MFmk_KEJmTGL-phf58.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/KXrnWSylJJHcFmow_hR31xK9Rl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.159.71.0/24
94.159.84.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:04:38:88:c1:a6:e2:a9:3a:69:77:9e:54:79:7b:22:4a:b9:
21:c5:60:a3:6c:2d:8a:22:02:4f:9e:c2:13:31:c7:94:15:c7:
4e:07:22:b6:c5:a6:a7:80:b6:6f:23:6c:ba:cb:2a:b6:16:d9:
6c:b1:e0:df:5b:56:0d:ec:a4:43:a6:2f:81:ba:1d:82:42:b9:
52:b3:4d:11:48:8c:c6:df:25:ab:d3:87:37:f4:14:55:da:1e:
b8:8c:2b:2e:46:04:62:ed:6a:fd:c5:14:ac:5a:94:69:21:f6:
13:61:73:c3:51:cb:81:f1:fc:05:0f:76:3f:1b:e7:0e:31:9b:
c6:fd:ee:22:ca:af:e1:7d:7f:95:e8:e3:55:e1:41:37:3b:45:
4a:ba:4a:89:4c:0e:7d:22:09:87:f6:67:e5:98:ec:ea:24:41:
7d:a7:71:84:7d:9e:a3:c4:55:10:80:43:28:54:d3:c3:23:55:
19:40:66:96:e2:1b:58:49:11:d6:d4:5b:31:a7:78:28:18:45:
dd:5f:de:88:cd:61:4a:b8:19:1c:3d:f6:9a:3f:4c:67:0f:6a:
21:7b:f1:db:d6:2a:83:01:87:0c:68:de:84:b8:76:e6:10:3f:
fa:8e:41:87:e0:da:56:d3:8f:9f:72:cc:e8:93:ac:12:19:d3:
1e:38:e7:dc
-----BEGIN CERTIFICATE-----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Generated at Tue Oct 1 21:37:45 2024 by rpki-client on console-fra.rpki-client.org