Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/c5f49d-10b0-4818-a0c4-7c0b9b19fcfb/1/89oWfrxW-vYYpD0e_oVpjxegr4Y.roa
File: 89oWfrxW-vYYpD0e_oVpjxegr4Y.roa (raw, json)
Hash identifier: x8oBipcWpMkTmyqr2GIcvwFxItSFF0zxX+/ajmsI8Nk=
Subject key identifier: F3:DA:16:7E:BC:56:FA:F6:18:A4:3D:1E:FE:85:69:8F:17:A0:AF:86
Certificate issuer: /CN=2f314bc00a7e5ae23349e05406293a7d6060cda1
Certificate serial: 018654931DDF504C50901192168627923DC6
Authority key identifier: 2F:31:4B:C0:0A:7E:5A:E2:33:49:E0:54:06:29:3A:7D:60:60:CD:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LzFLwAp-WuIzSeBUBik6fWBgzaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/c5f49d-10b0-4818-a0c4-7c0b9b19fcfb/1/89oWfrxW-vYYpD0e_oVpjxegr4Y.roa
Signing time: Wed 15 Feb 2023 10:16:12 +0000
ROA not before: Wed 15 Feb 2023 10:16:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8220
IP address blocks: 195.216.249.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Jun 2023 08:26:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:54:93:1d:df:50:4c:50:90:11:92:16:86:27:92:3d:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f314bc00a7e5ae23349e05406293a7d6060cda1
Validity
Not Before: Feb 15 10:16:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f3da167ebc56faf618a43d1efe85698f17a0af86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:5d:c8:86:e8:b8:34:f9:57:e6:17:0b:91:18:
ab:fb:20:7f:fa:c9:05:a5:a8:f0:1c:d5:46:c8:35:
55:13:48:c4:70:7d:d3:75:df:58:4c:aa:1e:04:50:
7b:29:d0:1d:a8:0f:ae:64:7c:ed:57:29:1c:6c:54:
b3:ad:f1:f8:8c:db:27:f4:dd:5e:b1:e1:95:f1:70:
0f:5b:5a:01:82:fb:b0:44:4a:6c:5c:d9:13:f4:e3:
64:14:15:ff:ce:4e:e3:9c:9d:63:bb:ac:c3:5e:58:
0e:3b:f2:3e:99:9d:5a:6e:07:b2:25:9d:f8:e3:00:
93:56:9f:47:1c:ee:7b:83:21:58:4f:c7:86:a5:1c:
98:69:a6:5c:1d:95:5b:bd:1f:40:65:83:d1:43:0d:
03:13:47:fb:59:a0:ec:4e:20:71:61:a3:57:2b:5b:
35:e7:03:b3:3b:6f:ed:67:f7:26:19:2b:21:0d:76:
d7:78:b6:91:c1:88:01:63:de:ee:5d:2e:76:49:1b:
06:7b:a6:6a:cc:ff:b2:db:02:e4:7a:68:63:1d:0e:
dc:26:83:a6:2e:ad:ec:e7:2f:79:a4:a3:1f:a5:e6:
5b:69:19:a4:99:22:eb:94:b5:67:8e:88:6e:d2:cf:
ad:ba:06:03:0c:2b:34:dd:c5:67:94:de:92:a5:d6:
85:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:DA:16:7E:BC:56:FA:F6:18:A4:3D:1E:FE:85:69:8F:17:A0:AF:86
X509v3 Authority Key Identifier:
keyid:2F:31:4B:C0:0A:7E:5A:E2:33:49:E0:54:06:29:3A:7D:60:60:CD:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LzFLwAp-WuIzSeBUBik6fWBgzaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/c5f49d-10b0-4818-a0c4-7c0b9b19fcfb/1/89oWfrxW-vYYpD0e_oVpjxegr4Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/c5f49d-10b0-4818-a0c4-7c0b9b19fcfb/1/LzFLwAp-WuIzSeBUBik6fWBgzaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.216.249.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:21:27:b4:0a:be:70:f6:83:bf:9c:9f:18:ff:31:14:71:2c:
ba:f0:bd:18:a5:eb:ac:ec:a9:b0:8b:c9:59:29:14:49:79:b7:
ab:22:e2:3c:ed:a4:5c:7c:2f:33:db:f0:25:9e:5d:39:3b:87:
b3:05:15:8a:8d:2b:2b:f0:2b:73:6e:58:6b:1e:71:41:7d:3a:
fa:ea:7c:b2:93:5d:70:b1:8d:12:21:c5:82:3c:cf:d5:1e:e0:
68:b8:d4:ae:a0:6a:a1:5e:63:bd:eb:2f:a0:b0:f2:75:dc:90:
f6:f8:05:cd:a0:83:13:b2:dc:fb:68:ae:fa:bd:ab:61:8f:41:
6c:f3:a3:e3:8a:f0:47:be:02:1b:6c:6a:1f:12:09:b5:72:a4:
de:a4:4e:81:4a:05:25:3d:fb:fa:35:ea:58:38:21:06:57:a3:
c9:b3:f0:ec:10:6f:db:6d:8a:09:18:37:b4:2e:8a:13:b3:3e:
6d:9d:42:6a:5b:88:c1:5a:9b:eb:7e:d9:b0:71:3b:18:a0:93:
1f:6a:b0:2b:bd:b3:90:99:13:0d:2a:9c:5c:3c:37:75:98:22:
03:e5:49:74:46:ee:d6:78:32:24:e6:87:e0:55:b4:7b:d2:26:
49:12:83:47:a2:20:7e:b9:21:28:51:22:76:4c:4a:6c:8b:f7:
d2:2e:cb:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:05 2024 by rpki-client on console-ams.rpki-client.org