Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/xhYhOnsF3WvNLXXprI3UZ1Mlqo4.roa
File: xhYhOnsF3WvNLXXprI3UZ1Mlqo4.roa (raw, json)
Hash identifier: 0vjI19SHSDkLl096ywtT9w4lRR1N39cdmitLIcrHz7I=
Subject key identifier: C6:16:21:3A:7B:05:DD:6B:CD:2D:75:E9:AC:8D:D4:67:53:25:AA:8E
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 01871056A66C7644E4D081E110651D1DBD5F
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/xhYhOnsF3WvNLXXprI3UZ1Mlqo4.roa
Signing time: Thu 23 Mar 2023 21:18:46 +0000
ROA not before: Thu 23 Mar 2023 21:18:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50225
IP address blocks: 94.177.118.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:10:56:a6:6c:76:44:e4:d0:81:e1:10:65:1d:1d:bd:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Mar 23 21:18:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c616213a7b05dd6bcd2d75e9ac8dd4675325aa8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:38:30:45:b3:85:32:38:79:ea:55:9a:b1:ba:
ee:f8:33:c6:a5:2a:6e:ba:08:c5:bd:4b:97:ad:4f:
7b:5f:28:1e:a5:76:b9:21:88:6a:be:da:ad:06:90:
ad:c7:2a:fd:40:43:04:9b:82:db:bc:09:ae:30:ca:
c0:e4:63:61:4d:0a:6d:f4:90:8e:56:99:44:61:5e:
f5:64:0c:de:b4:98:52:3b:39:33:ac:82:1d:d8:1b:
3f:b2:c5:e8:2d:dd:d0:89:fe:bd:df:26:43:07:df:
3d:d4:03:1c:00:65:be:85:30:fd:80:08:9c:8a:38:
3b:77:1a:dd:b5:e9:dd:1d:da:a5:74:6e:49:6b:35:
f0:69:d3:87:d2:2f:40:e0:0e:68:51:b0:26:f8:54:
ef:34:a3:4a:82:f2:92:34:76:fe:10:42:65:ba:2d:
07:45:8a:7e:51:8c:ba:20:12:4d:1a:f4:b8:f8:a3:
f0:69:68:41:e1:9a:b2:37:ca:75:ad:f6:86:5b:a3:
ee:3b:c6:f2:18:23:c3:88:3c:f7:91:6c:50:31:e2:
fd:c7:9c:d5:ef:86:5d:77:21:84:bf:72:2a:13:bd:
21:9d:53:f6:2e:6c:75:23:c8:15:24:34:b0:fa:7f:
61:2c:01:d2:9d:9e:d0:0b:7f:7f:e5:58:b1:d8:e7:
d3:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:16:21:3A:7B:05:DD:6B:CD:2D:75:E9:AC:8D:D4:67:53:25:AA:8E
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/xhYhOnsF3WvNLXXprI3UZ1Mlqo4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.177.118.0/24
Signature Algorithm: sha256WithRSAEncryption
08:dc:a4:af:a3:8e:57:6b:82:62:80:ac:b8:51:bc:a1:06:b8:
d7:54:29:71:dc:45:ad:9a:01:c5:58:5d:f2:4e:33:48:b0:94:
9d:65:6b:f0:82:68:50:59:22:bd:9a:97:be:0b:06:d2:18:0a:
9a:bf:75:37:76:22:e1:f7:ca:4e:67:2c:14:f7:89:0d:6a:ef:
60:04:4a:e1:f4:cf:cb:a4:da:ad:5d:03:1b:54:64:f1:63:9f:
f1:6c:e6:f2:63:a4:83:ba:bc:49:4c:a8:07:ad:85:6e:c6:05:
f9:d5:67:4f:1e:d5:cf:ec:2d:b8:41:91:dd:fa:d8:75:9c:df:
fa:3b:28:9d:45:7c:7b:2c:86:cc:0e:71:64:f3:f4:50:22:b6:
2c:42:31:80:2a:c6:33:26:bc:fa:68:36:f3:4e:b4:64:4b:dc:
c2:4d:a1:4f:e9:1e:47:9a:a8:6b:92:98:b5:ab:29:07:c6:8e:
7f:d8:9f:d8:4d:b1:88:b3:bf:62:ed:fb:f9:4f:5c:39:f9:79:
4e:09:8c:08:bd:cd:3e:3e:14:40:e7:cc:4e:d8:43:e8:2c:a5:
74:3f:04:da:3f:a6:b5:e7:27:20:fe:b7:d7:6a:6c:5d:8f:64:
0d:b4:b7:ce:c1:2d:09:bc:5e:b4:63:5c:11:e3:0a:c7:0a:87:
eb:3c:80:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:55 2023 by rpki-client on console-ams.rpki-client.org