Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/b3987a-4504-4749-9d73-df572fe9672a/1/LJefHx90b9-isNaMHbCEsAkK63Y.roa
File: LJefHx90b9-isNaMHbCEsAkK63Y.roa (raw, json)
Hash identifier: NBqC4QqWtm4+FaSEA+v/uTDlZlyWJ6aPg/xBOLrm+HU=
Subject key identifier: 2C:97:9F:1F:1F:74:6F:DF:A2:B0:D6:8C:1D:B0:84:B0:09:0A:EB:76
Certificate issuer: /CN=dbb396dfa951ec4157f211e5ed740ed97e1b0f3f
Certificate serial: 018EA3B35E2F7E463C05B3F8473DAA924DCD
Authority key identifier: DB:B3:96:DF:A9:51:EC:41:57:F2:11:E5:ED:74:0E:D9:7E:1B:0F:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/27OW36lR7EFX8hHl7XQO2X4bDz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/b3987a-4504-4749-9d73-df572fe9672a/1/LJefHx90b9-isNaMHbCEsAkK63Y.roa
Signing time: Wed 03 Apr 2024 11:23:45 +0000
ROA not before: Wed 03 Apr 2024 11:23:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49804
IP address blocks: 94.131.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Jun 2024 20:14:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:a3:b3:5e:2f:7e:46:3c:05:b3:f8:47:3d:aa:92:4d:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbb396dfa951ec4157f211e5ed740ed97e1b0f3f
Validity
Not Before: Apr 3 11:23:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2c979f1f1f746fdfa2b0d68c1db084b0090aeb76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f4:fc:c0:dd:f5:ed:df:b9:2a:cb:f0:2d:1a:
3b:11:70:bb:2b:c7:6a:86:b5:87:73:3a:3a:2d:d1:
44:b2:ea:8d:94:ca:98:ab:56:65:6b:72:51:4b:f5:
46:4a:e1:12:3e:f8:3f:27:c8:b7:7e:e0:72:6b:30:
de:3b:45:0e:f9:19:f3:4f:51:22:7a:e1:67:85:00:
e6:17:77:fd:77:c6:1f:fe:72:b1:a9:8a:f5:7b:3a:
8c:e8:91:59:a9:bb:c5:57:74:93:d9:07:4f:db:44:
50:08:34:9b:1f:bd:26:7e:cc:c3:3e:0b:eb:82:9e:
e7:95:2d:7b:b7:19:6e:e1:72:ce:65:23:08:e1:ae:
b7:be:79:13:06:3f:43:c5:be:05:3a:7b:76:9d:92:
96:8c:90:98:1a:9c:e2:cc:91:cf:6b:cc:a3:d4:7d:
d5:e9:b0:03:9c:4b:96:97:a8:cc:c4:43:07:f5:b9:
5d:9d:a3:16:99:4c:71:c0:c2:8a:1c:2a:18:fd:b4:
06:27:e2:70:14:4a:c2:fd:7a:4a:4c:55:b4:21:0d:
67:a5:01:62:cf:e2:dc:28:19:22:a5:07:8d:24:18:
53:ca:01:30:60:2d:32:80:7b:ba:3d:a8:b3:26:26:
8e:27:be:28:8b:46:a0:4c:d0:87:a7:93:e8:e3:3d:
a0:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:97:9F:1F:1F:74:6F:DF:A2:B0:D6:8C:1D:B0:84:B0:09:0A:EB:76
X509v3 Authority Key Identifier:
keyid:DB:B3:96:DF:A9:51:EC:41:57:F2:11:E5:ED:74:0E:D9:7E:1B:0F:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/27OW36lR7EFX8hHl7XQO2X4bDz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b3987a-4504-4749-9d73-df572fe9672a/1/LJefHx90b9-isNaMHbCEsAkK63Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b3987a-4504-4749-9d73-df572fe9672a/1/27OW36lR7EFX8hHl7XQO2X4bDz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.131.223.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:c7:e6:05:f1:b2:80:73:d6:ef:07:32:1f:8b:a8:b0:51:c4:
0e:e0:ee:4f:61:bd:7c:7e:09:31:d8:87:c7:69:e5:1f:d6:bc:
4f:e9:13:a5:33:1c:24:cf:7f:e2:3b:c8:81:45:b6:b3:f5:d2:
49:25:03:9d:30:ad:c4:8b:68:58:79:93:fa:07:06:4f:c3:f5:
55:47:b7:45:ba:db:e9:c5:68:55:42:25:a6:9c:25:d4:89:44:
b9:dd:cb:5a:63:dc:04:ff:3b:59:0a:28:c2:f6:ba:ba:54:82:
e0:bb:0f:66:13:bb:86:c2:0c:3c:72:6e:ad:a3:0f:2f:75:16:
0c:56:2a:70:67:88:ab:cf:94:92:fb:46:ed:db:cf:f0:7f:fb:
fa:28:a6:72:f9:49:8b:7a:e7:6b:f7:9f:5f:47:0a:e6:37:6a:
68:63:b8:9c:c5:12:b4:e1:b7:06:06:36:55:85:5a:5e:fe:bf:
af:d4:d5:66:28:64:9f:6e:be:e5:22:21:99:84:84:e7:78:e5:
7b:ec:2c:60:02:66:8e:35:90:d4:29:35:d2:88:70:bc:59:77:
54:86:da:35:39:58:8f:52:e5:d8:9c:8c:f4:d0:3e:a7:c3:0e:
11:b0:c1:a2:bb:4e:23:10:f3:dc:94:7e:c9:b9:61:23:a2:e4:
ed:90:63:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 23:20:48 2024 by rpki-client on console-ams.rpki-client.org