Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/ec1721-75c5-40f5-9345-c2fd0f958d4b/1/aVd4gQ8iNWSi9SSEf4dNoCMrZVQ.roa
File: aVd4gQ8iNWSi9SSEf4dNoCMrZVQ.roa (raw, json)
Hash identifier: CuOD7caiG8+KeD7AMXMnQOjR+lozFYmYC2w7mSym5wc=
Subject key identifier: 69:57:78:81:0F:22:35:64:A2:F5:24:84:7F:87:4D:A0:23:2B:65:54
Certificate issuer: /CN=4e5ebb9b051ad5ec7a36989fc3fcc94c1cabcc74
Certificate serial: 0185700B8DD371C67BAE775011EB5D9CB074
Authority key identifier: 4E:5E:BB:9B:05:1A:D5:EC:7A:36:98:9F:C3:FC:C9:4C:1C:AB:CC:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tl67mwUa1ex6Npifw_zJTByrzHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/ec1721-75c5-40f5-9345-c2fd0f958d4b/1/aVd4gQ8iNWSi9SSEf4dNoCMrZVQ.roa
Signing time: Mon 02 Jan 2023 01:14:43 +0000
ROA not before: Mon 02 Jan 2023 01:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41310
IP address blocks: 89.249.48.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:0b:8d:d3:71:c6:7b:ae:77:50:11:eb:5d:9c:b0:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e5ebb9b051ad5ec7a36989fc3fcc94c1cabcc74
Validity
Not Before: Jan 2 01:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=695778810f223564a2f524847f874da0232b6554
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:53:17:30:75:bc:77:2b:93:75:73:58:d6:fb:
8b:3a:d1:ad:93:1f:26:cc:02:b6:e3:b0:ca:6f:64:
d6:ee:90:5c:37:61:17:d6:68:a2:fb:ad:1e:99:00:
0f:9c:d8:0f:cf:d7:ab:04:1e:01:29:2b:9d:dd:c1:
d5:e1:c5:d2:13:80:ab:d0:34:70:ff:8f:fd:82:d0:
18:e1:de:1d:d0:b1:b5:c4:20:3a:c5:5a:58:5c:b4:
7f:b3:55:a1:05:d7:9c:95:54:fc:2e:e6:2b:13:60:
dd:21:4f:be:c1:e8:43:7c:6e:08:08:8e:21:16:29:
e2:37:6e:0e:6d:76:bc:1e:38:ed:1f:95:da:b1:96:
84:25:b1:26:fb:83:3c:2f:f0:61:c3:e6:53:a2:f4:
dd:dd:a7:f5:04:fc:40:3c:a8:2f:9e:51:76:52:db:
aa:f9:0b:3f:24:4f:9a:1a:27:de:be:34:bd:4f:c2:
7b:3e:b3:5a:58:03:f6:2a:d9:dd:8f:00:7b:ed:a0:
93:9d:87:91:7d:b5:0b:7f:fc:a0:98:0a:e6:e4:28:
52:1d:ac:80:b2:da:d9:7a:2d:9c:82:9f:44:b3:f8:
7d:dd:31:8c:47:57:02:9b:41:65:7b:c5:a5:2c:50:
a1:ee:3f:a1:30:c4:f4:7c:15:d1:7d:32:81:f4:a1:
dc:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:57:78:81:0F:22:35:64:A2:F5:24:84:7F:87:4D:A0:23:2B:65:54
X509v3 Authority Key Identifier:
keyid:4E:5E:BB:9B:05:1A:D5:EC:7A:36:98:9F:C3:FC:C9:4C:1C:AB:CC:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tl67mwUa1ex6Npifw_zJTByrzHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/ec1721-75c5-40f5-9345-c2fd0f958d4b/1/aVd4gQ8iNWSi9SSEf4dNoCMrZVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/ec1721-75c5-40f5-9345-c2fd0f958d4b/1/Tl67mwUa1ex6Npifw_zJTByrzHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.249.48.0/24
Signature Algorithm: sha256WithRSAEncryption
70:d5:73:85:e8:e2:01:b2:d1:17:68:cc:6a:9d:77:62:ca:7a:
77:73:18:80:be:b2:cb:58:67:22:f7:bd:e7:77:15:27:22:be:
7b:17:ca:c2:cc:94:f8:b6:dc:11:82:2f:95:50:3d:10:17:c9:
33:25:7b:77:96:0b:e6:74:4c:53:51:db:91:9d:39:2e:58:0a:
01:8a:8d:56:b6:33:a1:14:44:b7:7d:ee:52:e7:2a:0d:9e:c6:
69:db:ef:80:c1:3a:ef:1a:19:48:e1:d2:d5:40:c3:30:f7:09:
d0:63:52:cd:d9:48:86:2a:55:5f:f7:fb:de:da:02:61:7e:ea:
c9:5c:8b:62:2a:86:0a:1c:ac:5c:95:f4:64:87:83:c2:58:d0:
d7:05:e9:af:ce:a7:e6:cd:76:11:34:f7:d9:f1:d9:4f:53:c3:
07:51:b2:05:e5:00:7b:09:ee:37:d9:c1:4e:15:ee:b1:96:67:
1f:19:41:6d:0b:c5:60:df:a1:c5:4a:09:46:c3:80:df:99:c6:
de:ca:f5:61:2d:5d:b1:9c:c8:bf:e7:d5:96:ba:f3:a3:86:9c:
b2:b2:60:7b:93:a3:93:08:8c:9b:db:d0:f1:6a:55:5a:66:f2:
22:62:b5:22:0a:2d:e8:39:8f:48:66:bb:0b:88:8f:b9:f4:4d:
76:f2:ee:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:00 2024 by rpki-client on console-ams.rpki-client.org