Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/VwBFrqw3Gff4U_WrpEgd3aVQdgA.roa
File: VwBFrqw3Gff4U_WrpEgd3aVQdgA.roa (raw, json)
Hash identifier: ekhft53y2JHEMN0LQhn/xQp6WrsWh1GEAueMtRJhQ0A=
Subject key identifier: 57:00:45:AE:AC:37:19:F7:F8:53:F5:AB:A4:48:1D:DD:A5:50:76:00
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 01856FD542A7B9569A76682F3737F8FDE5EB
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/VwBFrqw3Gff4U_WrpEgd3aVQdgA.roa
Signing time: Mon 02 Jan 2023 00:15:25 +0000
ROA not before: Mon 02 Jan 2023 00:15:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61279
IP address blocks: 89.40.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:42:a7:b9:56:9a:76:68:2f:37:37:f8:fd:e5:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 2 00:15:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=570045aeac3719f7f853f5aba4481ddda5507600
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:8f:e6:b6:fa:6e:02:ff:a0:04:24:dd:0e:5f:
af:fd:c1:3d:ea:d5:63:33:d5:96:f2:72:ca:b2:81:
b4:97:0e:32:ff:22:dd:67:39:24:a7:4c:1a:45:82:
12:aa:ec:63:aa:3e:52:1a:b7:9d:6b:19:5a:3d:3d:
36:3f:2c:a2:c5:b0:3f:09:59:b7:0f:df:24:f0:97:
c0:90:c5:ac:ed:0d:bf:44:7b:44:40:6f:6d:58:87:
60:fa:86:e6:6b:94:aa:69:7e:1e:64:0b:76:df:ed:
ae:65:f7:cd:4e:0a:2a:65:d9:50:ca:93:8d:59:7b:
ff:d1:ee:25:87:54:6d:8f:1f:be:14:bb:ed:73:f3:
0e:22:80:fd:14:37:73:92:5e:30:bc:d0:e7:32:3d:
45:f5:a9:bf:53:15:c5:d0:b3:52:f9:74:a6:20:5b:
ba:1f:b6:dc:91:59:81:55:45:ae:14:56:69:3b:69:
94:c3:bc:9f:6a:21:fd:a2:54:bf:6e:cd:c5:88:50:
3d:f3:d6:f2:2d:38:ae:88:03:0e:3b:1b:e0:99:0e:
43:ac:bf:d7:a0:b1:f0:dd:23:ec:59:0e:af:6e:ea:
c2:e6:b5:68:3d:33:ad:b1:c1:12:3b:e3:a1:88:81:
7a:20:1f:ec:1a:e5:9d:38:73:78:1d:e1:69:56:db:
10:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:00:45:AE:AC:37:19:F7:F8:53:F5:AB:A4:48:1D:DD:A5:50:76:00
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/VwBFrqw3Gff4U_WrpEgd3aVQdgA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.40.20.0/24
Signature Algorithm: sha256WithRSAEncryption
04:b9:d6:00:2b:85:2d:4e:eb:ba:cd:d3:fe:e3:79:0c:a8:19:
9d:c8:fd:12:85:01:4a:59:04:7e:94:cb:07:89:83:95:11:2a:
4d:06:62:f5:b2:6d:59:47:c9:34:14:76:2e:ea:a6:20:0f:ce:
13:bc:76:39:2c:cc:48:28:63:6e:70:26:b3:bb:8a:cc:22:cb:
c7:4e:23:8f:a1:dd:4f:42:7a:97:d2:f3:f0:19:42:f7:dd:17:
cf:91:75:9c:b3:11:49:ed:f7:0d:bc:5f:5c:55:04:de:7b:ee:
5e:56:ed:3f:85:f4:3e:9a:32:e3:9d:90:bf:0e:07:1f:c4:f2:
f0:ba:87:c8:4a:42:7e:16:78:66:0c:ea:f1:08:91:2f:bc:f2:
2c:86:ba:a8:45:b8:c5:95:c8:09:76:24:7d:66:9e:62:ee:24:
ae:ef:04:29:5e:c2:1c:75:56:5c:89:70:6d:ee:9f:02:48:94:
e6:da:5f:d6:9a:07:6d:67:94:2b:0b:61:f7:06:d3:80:0b:84:
ad:50:c6:63:89:2f:19:16:6e:43:7d:92:62:22:1e:e0:b6:24:
d6:f8:c3:fd:c4:92:a5:00:10:95:6a:52:f4:50:f8:bf:f9:dd:
20:80:be:65:8a:33:c8:eb:45:ec:35:48:08:ba:9b:97:c9:dd:
39:e0:db:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:52 2024 by rpki-client on console-ams.rpki-client.org