Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/DRSHYdtNcXoAIAK5YWCaoLbLBmg.roa
File: DRSHYdtNcXoAIAK5YWCaoLbLBmg.roa (raw, json)
Hash identifier: zfv00gINPMASlPrN2M+tc3l0nmqLjtK1kSDjMi7NNik=
Subject key identifier: 0D:14:87:61:DB:4D:71:7A:00:20:02:B9:61:60:9A:A0:B6:CB:06:68
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 018E55992CE926DFB9679D832B7762910EF3
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/DRSHYdtNcXoAIAK5YWCaoLbLBmg.roa
Signing time: Tue 19 Mar 2024 07:24:45 +0000
ROA not before: Tue 19 Mar 2024 07:24:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211192
IP address blocks: 94.177.113.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Apr 2024 16:41:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:55:99:2c:e9:26:df:b9:67:9d:83:2b:77:62:91:0e:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Mar 19 07:24:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0d148761db4d717a002002b961609aa0b6cb0668
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:8b:a7:34:f7:03:55:1b:d0:da:2f:d5:70:5a:
56:9f:1b:3f:f3:51:e8:07:a5:b2:19:58:f6:d3:0e:
ce:cb:c2:ab:df:7f:ef:8a:76:11:af:21:e1:e6:4e:
f3:ff:8f:67:cd:e1:73:a2:52:6f:84:c9:2e:6a:bb:
1d:db:df:2a:38:3b:4a:e0:da:26:62:24:86:65:28:
bb:f3:13:58:f6:81:e0:6c:84:58:4e:4f:db:74:7a:
0e:36:0c:84:71:48:9e:90:93:e0:97:12:b5:39:b2:
43:29:22:5b:58:43:8e:02:d8:92:e3:eb:6a:d8:dd:
b1:88:28:49:b6:c3:c8:43:ea:c1:23:80:5e:ab:85:
f9:91:78:c5:5f:8a:9e:94:c5:de:a2:b2:43:52:71:
2f:1a:79:a5:43:70:da:de:95:58:e8:3e:c5:d7:4f:
e5:5d:97:d3:59:2c:ae:ea:ae:a3:fb:25:07:6a:7a:
2a:15:fa:d4:98:e6:ae:ea:7e:ff:76:5c:fc:01:a6:
a6:51:1d:17:b9:71:dc:bb:4f:67:de:e1:bc:5e:ee:
f4:c4:e6:ae:1b:1e:99:05:49:89:db:e6:0c:22:80:
03:4b:0d:ad:3c:d6:0e:b3:63:7d:e6:99:44:89:1c:
28:b4:67:cc:f8:66:25:d9:c8:50:64:bb:1d:3c:99:
d1:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:14:87:61:DB:4D:71:7A:00:20:02:B9:61:60:9A:A0:B6:CB:06:68
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/DRSHYdtNcXoAIAK5YWCaoLbLBmg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.177.113.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:f3:f0:43:33:2f:ba:f7:b3:b7:0a:c7:b5:26:17:0a:14:bb:
dc:68:85:62:01:d1:2e:b6:49:30:6c:32:ea:3a:03:65:44:27:
5b:07:5a:6c:d5:4b:2b:c9:67:8f:96:11:78:19:e7:31:08:5d:
da:14:1c:07:ce:be:7f:ba:93:6f:a3:98:44:2a:c7:c1:f8:4b:
b3:d8:d4:11:6a:f1:64:0d:8a:66:07:1e:5b:16:20:74:f3:0c:
be:c4:51:f3:54:96:2e:68:e4:e2:52:c4:ca:6b:ad:b8:c1:90:
f6:cc:1e:a2:df:b9:4f:da:ab:e3:dc:99:4a:d4:d4:9a:22:1c:
9f:46:35:8e:a6:64:1f:3d:7b:a8:7d:a8:a6:3e:06:91:bc:3f:
4f:53:0a:e0:84:ae:10:00:88:63:58:04:6e:74:b5:19:ad:a6:
c2:e2:09:9b:91:59:3c:04:f9:97:5a:ad:80:61:1d:98:2d:05:
97:b8:b5:10:eb:8b:81:30:38:a1:d0:26:0b:75:ab:db:da:1b:
78:9d:7f:1b:a8:57:be:d5:eb:51:cc:ce:d4:c6:6e:ff:c1:27:
73:a2:75:db:f3:a4:b9:5d:2d:d1:4d:c8:55:29:d4:5b:75:db:
80:30:4c:60:2f:a5:c5:6a:91:70:2f:33:83:8c:47:97:3c:60:
e5:f3:c8:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 3 19:36:07 2024 by rpki-client on console-ams.rpki-client.org