Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/958cbc-c2f4-48f7-addd-e804dcbdd762/1/94h7LoWazdxH1Z-rFfeFjCRLZpY.roa
File: 94h7LoWazdxH1Z-rFfeFjCRLZpY.roa (raw, json)
Hash identifier: TuuumpVAoFhxqBJ6ld07agxlO4GGoECLU1WN/NLDXZM=
Subject key identifier: F7:88:7B:2E:85:9A:CD:DC:47:D5:9F:AB:15:F7:85:8C:24:4B:66:96
Certificate issuer: /CN=952093150f4a46101acd7ea3a26bb438513123b5
Certificate serial: 01857295D50DC05B202E7DC732EF13A05E89
Authority key identifier: 95:20:93:15:0F:4A:46:10:1A:CD:7E:A3:A2:6B:B4:38:51:31:23:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lSCTFQ9KRhAazX6jomu0OFExI7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/958cbc-c2f4-48f7-addd-e804dcbdd762/1/94h7LoWazdxH1Z-rFfeFjCRLZpY.roa
Signing time: Mon 02 Jan 2023 13:05:00 +0000
ROA not before: Mon 02 Jan 2023 13:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 680
IP address blocks: 194.113.208.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:95:d5:0d:c0:5b:20:2e:7d:c7:32:ef:13:a0:5e:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=952093150f4a46101acd7ea3a26bb438513123b5
Validity
Not Before: Jan 2 13:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f7887b2e859acddc47d59fab15f7858c244b6696
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:03:c3:fd:cb:12:81:7d:4b:3a:2c:2d:23:47:
f9:23:8a:71:ba:83:ae:23:d0:8d:3e:33:4c:86:9d:
29:c4:43:0f:bf:db:70:aa:0c:2a:82:32:aa:e9:ca:
17:08:40:c3:d0:85:96:56:ec:ae:d7:67:c7:2a:00:
aa:d4:1e:0d:77:eb:55:da:12:5e:6a:de:68:31:0b:
2c:4c:e2:ad:6d:df:ac:ed:b8:1b:76:77:a1:44:bd:
b6:b0:03:87:6d:f1:d9:ec:53:28:5c:fc:76:67:56:
9e:d0:56:5e:e7:b9:57:a1:48:1c:23:00:24:b2:ed:
08:47:41:a0:45:37:ec:6f:0a:c6:76:25:ae:75:73:
85:49:8e:21:c4:c1:c2:01:9a:c4:91:0f:e9:c8:af:
ea:f7:24:0d:61:34:db:fe:fd:58:e6:be:db:1d:ca:
c0:99:a3:5a:b4:6b:5f:75:47:d4:82:0e:6c:55:2a:
90:7f:bb:f3:06:2d:d5:2e:ee:61:ec:cf:79:d6:41:
91:3c:69:9c:e4:57:23:20:bb:d7:95:b4:20:2f:75:
f2:6b:6e:01:c9:00:cd:8c:e6:7f:a0:2c:c3:e9:da:
fa:c2:08:bb:d7:64:61:84:52:30:35:be:93:88:e5:
f7:dd:b8:29:88:68:75:0a:ce:58:8c:75:48:cb:90:
59:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:88:7B:2E:85:9A:CD:DC:47:D5:9F:AB:15:F7:85:8C:24:4B:66:96
X509v3 Authority Key Identifier:
keyid:95:20:93:15:0F:4A:46:10:1A:CD:7E:A3:A2:6B:B4:38:51:31:23:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lSCTFQ9KRhAazX6jomu0OFExI7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/958cbc-c2f4-48f7-addd-e804dcbdd762/1/94h7LoWazdxH1Z-rFfeFjCRLZpY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/958cbc-c2f4-48f7-addd-e804dcbdd762/1/lSCTFQ9KRhAazX6jomu0OFExI7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.113.208.0/24
Signature Algorithm: sha256WithRSAEncryption
91:e1:9f:cd:eb:f7:cd:9e:ab:d4:b9:ee:37:35:59:f9:1e:34:
15:6b:ba:d6:71:dd:4c:f0:50:55:f2:14:33:50:f3:e6:80:f6:
b9:7f:24:42:e9:a1:51:e7:fa:6b:5a:21:1d:39:fe:bc:38:a8:
91:16:b9:96:47:ff:ef:2b:3f:15:00:1f:cb:78:fd:e5:20:27:
3c:9b:fa:b6:aa:9f:4d:e4:1f:5a:88:94:2d:15:3d:bd:03:ca:
91:9b:e0:9d:99:90:6a:fa:84:68:6e:32:9b:6f:0f:7b:78:fd:
e6:58:f4:f1:40:f1:05:e8:6a:06:2d:e7:95:cb:c5:9a:8a:7e:
4c:1b:b0:ba:02:22:a8:1f:34:36:7a:96:c2:00:9e:dc:e7:17:
9e:2e:ce:fe:1c:c3:59:02:2f:09:7a:08:56:6d:2f:d2:64:c2:
ae:c5:e6:1a:4e:dc:e4:dc:2e:63:65:89:c3:50:b8:63:a9:c0:
29:9c:8d:0e:f0:38:0d:ba:d9:a0:75:01:9b:20:f3:1a:f5:1c:
9d:26:61:8a:66:81:76:51:86:0c:7b:ef:90:f7:00:1b:6c:98:
c5:56:55:1b:1a:38:08:2d:68:6b:85:7e:49:a5:6a:44:b9:fc:
c6:8b:88:92:40:8c:38:83:a3:a0:ee:91:f3:63:7f:bd:bb:20:
55:16:67:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:15 2024 by rpki-client on console-fra.rpki-client.org