Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/s3OI7GU-FSkWXrt3esT8urAjcbA.roa
File: s3OI7GU-FSkWXrt3esT8urAjcbA.roa (raw, json)
Hash identifier: VIC5dpwsR2Px/8zMzbcrjeuZDRQIeBALloGpyR2XWQQ=
Subject key identifier: B3:73:88:EC:65:3E:15:29:16:5E:BB:77:7A:C4:FC:BA:B0:23:71:B0
Certificate issuer: /CN=ca290db2f72905f0db626b005bacf08878d17bac
Certificate serial: 01856EA6AA528DC8FDFC9B3E213238F868AA
Authority key identifier: CA:29:0D:B2:F7:29:05:F0:DB:62:6B:00:5B:AC:F0:88:78:D1:7B:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/s3OI7GU-FSkWXrt3esT8urAjcbA.roa
Signing time: Sun 01 Jan 2023 18:44:54 +0000
ROA not before: Sun 01 Jan 2023 18:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 134926
IP address blocks: 89.47.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:aa:52:8d:c8:fd:fc:9b:3e:21:32:38:f8:68:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca290db2f72905f0db626b005bacf08878d17bac
Validity
Not Before: Jan 1 18:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b37388ec653e1529165ebb777ac4fcbab02371b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:d6:d8:d9:58:23:36:26:69:ea:0a:1c:71:f6:
79:2d:ac:6f:9a:90:15:3a:3b:4d:42:21:6c:b4:93:
2b:84:20:8d:44:54:ea:3a:a5:65:d2:f4:26:cc:85:
62:51:79:77:06:9d:a8:9b:16:ce:68:a0:b6:7d:06:
5e:0b:4c:79:3c:f7:95:a5:20:26:b8:39:52:d2:be:
f8:6a:08:6e:9a:c0:7c:0a:a7:96:7e:17:18:71:d8:
58:68:73:11:58:cb:64:da:6f:ca:a6:b9:e3:db:58:
55:98:50:ec:2b:5a:f8:01:a9:c6:f6:a6:b1:69:4d:
33:64:40:1d:10:73:41:e3:3e:e5:64:a4:03:84:37:
01:f5:5f:57:ca:86:f5:db:37:0b:5c:04:cb:39:61:
04:fb:81:2a:23:f7:e8:ef:73:f0:3f:e4:4f:55:d1:
e0:00:82:0a:13:1e:20:99:1e:c0:f3:23:ca:f7:15:
f6:3c:27:5d:41:e1:42:48:07:55:0c:d6:3b:80:01:
95:e5:bc:62:e9:67:7d:69:36:65:01:be:88:7c:22:
32:57:e5:29:c2:d0:f2:97:0e:07:25:df:6e:f1:8f:
16:23:cb:ab:63:9d:ee:31:e5:f5:d4:aa:40:98:e6:
2c:84:e8:cf:2d:2c:d9:44:44:70:0b:00:88:94:c8:
d6:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:73:88:EC:65:3E:15:29:16:5E:BB:77:7A:C4:FC:BA:B0:23:71:B0
X509v3 Authority Key Identifier:
keyid:CA:29:0D:B2:F7:29:05:F0:DB:62:6B:00:5B:AC:F0:88:78:D1:7B:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/s3OI7GU-FSkWXrt3esT8urAjcbA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.47.59.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:e9:16:31:ff:1b:4b:36:6d:84:96:6c:9a:02:53:e4:20:e0:
e0:b3:fa:e8:3b:6c:a4:72:32:b5:17:b3:63:4d:9e:54:41:3f:
55:7f:1c:f0:41:be:64:dc:eb:50:c3:55:8e:ac:54:06:14:e2:
dd:90:5c:b1:35:41:9e:32:51:8b:46:39:1b:d7:9b:61:9d:58:
c7:7f:0e:66:16:98:38:f3:cf:d6:d1:18:3a:c3:dd:60:6a:36:
3c:74:36:da:f1:dc:44:ea:76:cc:fa:3a:6e:a5:99:f0:db:76:
da:12:07:37:af:e6:cc:19:9f:d9:5c:9b:dd:f5:e0:dd:f8:cc:
d7:3c:6a:ac:da:70:2e:3c:25:42:d1:5d:31:c3:e9:23:b7:2b:
bb:f4:37:44:b4:e7:b6:4f:4c:a1:58:0d:81:39:bb:cc:65:cc:
cb:69:ec:ec:3a:9f:4c:33:5c:37:ea:56:7e:a5:ca:b1:02:30:
1a:16:a7:7c:06:96:ff:cc:f2:03:7d:4e:79:26:6a:9b:d6:b8:
f0:90:6b:a6:cf:5e:d7:5f:65:b4:6f:89:5d:80:d1:65:16:f6:
68:29:44:24:cc:0d:a4:8e:10:0e:91:ba:6a:5f:7a:84:52:7a:
2f:24:08:4e:71:2c:a1:e2:20:b8:0d:fe:02:09:bc:2f:ef:af:
6c:30:ad:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:01 2024 by rpki-client on console-fra.rpki-client.org