Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/e0cd69-deff-4c21-a809-6999a99dcf1e/1/cIg_GJ4a6aPIOSD9dz5QvvJaZks.roa
File: cIg_GJ4a6aPIOSD9dz5QvvJaZks.roa (raw, json)
Hash identifier: AFREfAqSI6Z1jotYbawWVEKR7Y5dB+/UXkDBh5wl6Ls=
Subject key identifier: 70:88:3F:18:9E:1A:E9:A3:C8:39:20:FD:77:3E:50:BE:F2:5A:66:4B
Certificate issuer: /CN=6bf0f847e1a216e7543c752a6350c6be23c7c6d5
Certificate serial: 01856E41D990FD60D09AE72229147F4B1DE5
Authority key identifier: 6B:F0:F8:47:E1:A2:16:E7:54:3C:75:2A:63:50:C6:BE:23:C7:C6:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a_D4R-GiFudUPHUqY1DGviPHxtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/e0cd69-deff-4c21-a809-6999a99dcf1e/1/cIg_GJ4a6aPIOSD9dz5QvvJaZks.roa
Signing time: Sun 01 Jan 2023 16:54:47 +0000
ROA not before: Sun 01 Jan 2023 16:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34687
IP address blocks: 89.248.176.0/20 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:41:d9:90:fd:60:d0:9a:e7:22:29:14:7f:4b:1d:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bf0f847e1a216e7543c752a6350c6be23c7c6d5
Validity
Not Before: Jan 1 16:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=70883f189e1ae9a3c83920fd773e50bef25a664b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ef:82:9c:ec:2e:53:84:77:e1:1a:4c:0e:35:
72:13:42:fe:0f:a8:45:cc:73:23:96:b7:5a:ef:6a:
0a:b0:8f:14:b4:0f:45:69:3c:ef:f5:4e:1e:7a:b3:
7b:e2:dd:4e:e2:8f:a5:7c:a3:22:20:6a:84:53:f1:
ad:43:cf:60:63:03:03:4d:64:f3:3b:e6:67:5b:8e:
cb:18:e7:5e:f7:55:af:d3:41:29:92:16:2e:3d:29:
0f:28:0a:a2:f4:72:d1:78:68:80:62:43:c6:3a:97:
45:55:6e:40:cd:cc:21:fa:8c:d2:47:66:c8:64:4c:
36:7c:c9:31:17:a0:b2:4e:30:7c:f8:9c:11:06:9d:
ce:9d:41:c2:bf:5f:70:98:28:dd:cb:51:c7:27:98:
ce:70:38:fd:ec:ac:87:ce:b2:14:f6:a9:9b:f2:2c:
75:9b:c7:6c:1b:30:77:f3:52:ba:c3:75:19:2b:c3:
4a:81:0f:8b:90:27:33:4a:ad:dd:6d:b5:76:d6:a8:
8a:67:34:2e:8c:08:c0:0b:b7:ff:0d:7c:be:a6:57:
6d:be:32:fa:c8:47:71:66:02:1d:fb:f5:44:cb:07:
a9:20:a6:64:d5:7f:41:ca:42:86:75:a7:cc:62:da:
e2:9f:58:20:e8:c3:d4:cf:ce:00:5c:c9:8f:4f:d9:
f2:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:88:3F:18:9E:1A:E9:A3:C8:39:20:FD:77:3E:50:BE:F2:5A:66:4B
X509v3 Authority Key Identifier:
keyid:6B:F0:F8:47:E1:A2:16:E7:54:3C:75:2A:63:50:C6:BE:23:C7:C6:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a_D4R-GiFudUPHUqY1DGviPHxtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/e0cd69-deff-4c21-a809-6999a99dcf1e/1/cIg_GJ4a6aPIOSD9dz5QvvJaZks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/e0cd69-deff-4c21-a809-6999a99dcf1e/1/a_D4R-GiFudUPHUqY1DGviPHxtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.248.176.0/20
Signature Algorithm: sha256WithRSAEncryption
36:23:6f:51:98:35:3e:dd:1a:fa:f5:f1:91:42:38:ff:23:8a:
30:eb:f9:34:d1:dc:f4:53:54:e8:f9:06:a3:46:47:4c:9b:4a:
3d:fe:d3:51:37:16:a7:47:df:fe:0d:41:ff:da:22:7e:81:2a:
db:86:ef:c4:c0:40:ff:41:cb:6a:87:d3:90:ff:6d:9b:8f:60:
d2:1c:6a:67:d0:79:58:a1:d4:5e:6c:75:ec:63:43:19:5c:86:
46:6d:f8:62:23:2b:eb:83:09:b9:a6:d7:ad:8f:be:f4:d1:b3:
50:2a:a2:d8:3c:7f:47:d4:2d:0c:39:9b:cb:62:b5:e6:94:c3:
6c:2e:81:59:54:4f:f2:50:68:b8:38:cd:38:b8:70:17:23:ef:
63:b2:90:c0:57:1b:52:10:30:6d:04:78:cf:99:74:f1:91:a0:
3e:07:0b:b0:74:69:16:68:12:09:4d:d7:e4:40:35:58:b7:e8:
7d:11:44:da:1e:04:ee:43:b4:9c:18:a6:59:36:35:b6:d8:40:
73:16:b0:fa:de:ab:e9:f8:72:d0:90:dc:d3:bd:cd:cb:1f:ba:
aa:ec:13:01:71:b1:82:cd:91:0b:d7:5f:90:84:5e:df:2d:70:
38:6a:b5:5b:84:c8:32:74:21:49:e4:34:8d:e6:b7:13:36:f3:
54:fa:ea:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:49 2024 by rpki-client on console-fra.rpki-client.org