Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/6683f4-3eec-4dcb-8787-731abc6f75ca/1/qMFT-QSMg7DXPfpEeMmsyrEj7LY.roa
File: qMFT-QSMg7DXPfpEeMmsyrEj7LY.roa (raw, json)
Hash identifier: BhDtoRPkp+4maLXx3QmKE+6GtyxtvDzjacf18UnoKhI=
Subject key identifier: A8:C1:53:F9:04:8C:83:B0:D7:3D:FA:44:78:C9:AC:CA:B1:23:EC:B6
Certificate issuer: /CN=1795ac843cd8ba90188f7313652bb561299b296f
Certificate serial: 0185715569F04B2B81A4539454E260BB4E9E
Authority key identifier: 17:95:AC:84:3C:D8:BA:90:18:8F:73:13:65:2B:B5:61:29:9B:29:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5WshDzYupAYj3MTZSu1YSmbKW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/6683f4-3eec-4dcb-8787-731abc6f75ca/1/qMFT-QSMg7DXPfpEeMmsyrEj7LY.roa
Signing time: Mon 02 Jan 2023 07:15:01 +0000
ROA not before: Mon 02 Jan 2023 07:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208096
IP address blocks: 89.200.246.0/24 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:55:69:f0:4b:2b:81:a4:53:94:54:e2:60:bb:4e:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1795ac843cd8ba90188f7313652bb561299b296f
Validity
Not Before: Jan 2 07:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a8c153f9048c83b0d73dfa4478c9accab123ecb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:59:61:96:9d:fb:7f:ba:06:de:60:7e:6f:64:
1e:60:ec:7a:c6:29:9c:2a:e9:ce:0f:89:d8:2a:b1:
a0:0c:c2:16:16:ef:b0:38:37:4d:b7:71:a1:87:ff:
4d:a6:a5:b2:fd:11:7f:82:16:b5:d3:58:e0:91:18:
b1:2e:af:3e:60:10:40:f1:f4:fb:3e:c9:22:dd:ca:
51:57:bc:27:c2:dd:db:0c:79:f1:c5:74:d3:64:73:
09:a0:b1:d2:4a:02:83:05:8f:ed:8d:fe:4f:ba:36:
5a:f3:ca:84:c4:4c:05:57:b1:a6:4a:5e:01:fa:68:
76:4b:92:e3:9d:d0:32:c2:01:5c:70:15:d4:7b:a4:
c6:1b:24:98:99:63:97:fb:1e:b6:5d:bb:5f:72:3e:
4c:3f:d4:75:6c:5d:75:eb:a5:19:ca:1c:b2:31:54:
ca:f4:cd:52:d2:e3:5b:97:4c:1d:2b:c8:df:de:19:
04:a7:49:40:3b:9b:70:ff:ed:03:5e:18:0d:3c:c3:
82:cc:66:43:ac:28:37:56:f0:05:7b:bf:5d:90:e3:
b7:b1:48:eb:b9:0d:eb:3a:d8:83:6e:60:d5:9d:18:
9d:52:ca:e0:dd:b3:73:b9:13:02:67:24:d9:e7:17:
2f:68:71:12:50:13:7e:b6:62:1f:df:b5:3b:11:b6:
e9:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:C1:53:F9:04:8C:83:B0:D7:3D:FA:44:78:C9:AC:CA:B1:23:EC:B6
X509v3 Authority Key Identifier:
keyid:17:95:AC:84:3C:D8:BA:90:18:8F:73:13:65:2B:B5:61:29:9B:29:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5WshDzYupAYj3MTZSu1YSmbKW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/6683f4-3eec-4dcb-8787-731abc6f75ca/1/qMFT-QSMg7DXPfpEeMmsyrEj7LY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/6683f4-3eec-4dcb-8787-731abc6f75ca/1/F5WshDzYupAYj3MTZSu1YSmbKW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.200.246.0/24
Signature Algorithm: sha256WithRSAEncryption
31:0c:45:e4:b8:8a:d6:eb:74:8d:ff:f7:74:76:34:25:06:44:
b0:f8:71:31:8d:5d:ce:0f:0a:6c:6e:40:ad:1a:1e:c9:d6:2e:
58:ae:c2:17:ac:26:84:29:62:b7:3b:a0:6b:40:58:38:c5:60:
81:18:5e:c2:07:55:4f:ff:65:82:b5:79:f6:94:a6:e3:58:64:
3b:c1:62:33:d5:ad:e3:1f:97:d5:b6:2a:3f:0b:1e:a3:6b:36:
d0:37:36:48:53:78:cb:5f:62:a5:66:8f:f8:5c:f8:ca:87:09:
b8:07:f7:42:8c:a1:8e:64:94:5f:f3:a2:fd:12:a3:8e:1d:f5:
b8:39:8b:64:55:15:3e:bd:8c:e2:6d:81:92:af:f6:fc:16:05:
3f:58:52:3d:aa:fc:b7:5a:b7:e5:57:4f:a6:7b:8b:77:a7:06:
3e:85:f9:3f:97:3b:5b:42:a3:e7:f0:54:7e:84:d4:20:f3:02:
c1:31:4e:6c:ea:37:87:93:d6:69:60:07:a6:aa:a1:65:b6:90:
a5:8e:a2:2c:0d:71:b4:8a:58:10:76:ee:09:df:19:a1:14:d9:
7a:05:13:d3:fa:21:ed:07:6b:b9:5e:c2:c5:cb:15:a9:b8:c5:
51:7a:0f:7a:a3:cb:ec:5e:f9:bf:86:d4:39:8a:04:69:24:44:
62:94:6d:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:34 2024 by rpki-client on console-ams.rpki-client.org