Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/471aa5-c3f7-4afd-b122-9c8e59c2771c/1/0PmOAR0qwXv6frE8wtFZIdRRqFo.roa
File: 0PmOAR0qwXv6frE8wtFZIdRRqFo.roa (raw, json)
Hash identifier: ZgO2/79nhT/cyLsjNJ6Id7fZPZj3j9SqO6w+HbWNt6A=
Subject key identifier: D0:F9:8E:01:1D:2A:C1:7B:FA:7E:B1:3C:C2:D1:59:21:D4:51:A8:5A
Certificate issuer: /CN=dc86e3e928c7f0c9db69515ff3aa1f678cee43c0
Certificate serial: 01856E0AF10549B0A4FF1A5806E6CADA4627
Authority key identifier: DC:86:E3:E9:28:C7:F0:C9:DB:69:51:5F:F3:AA:1F:67:8C:EE:43:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Ibj6SjH8MnbaVFf86ofZ4zuQ8A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/471aa5-c3f7-4afd-b122-9c8e59c2771c/1/0PmOAR0qwXv6frE8wtFZIdRRqFo.roa
Signing time: Sun 01 Jan 2023 15:54:48 +0000
ROA not before: Sun 01 Jan 2023 15:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210560
IP address blocks: 89.169.96.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:0a:f1:05:49:b0:a4:ff:1a:58:06:e6:ca:da:46:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc86e3e928c7f0c9db69515ff3aa1f678cee43c0
Validity
Not Before: Jan 1 15:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d0f98e011d2ac17bfa7eb13cc2d15921d451a85a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:23:5b:87:ee:47:a3:cb:31:a1:3e:17:fa:fe:
3b:94:d8:12:e5:e4:6f:df:51:a1:ae:dc:8a:c6:39:
20:e2:1d:cc:36:15:67:01:ad:da:35:2f:5f:27:99:
51:5f:16:37:ab:1b:f5:9d:81:50:c5:fd:ce:f3:61:
46:63:29:6f:cb:f2:ee:11:42:0c:00:d0:49:a9:42:
a2:7a:8b:9b:f0:60:3f:7c:db:f8:1e:3b:d6:a9:e2:
b1:f2:73:0d:8a:94:d3:57:03:d0:83:d2:a7:b8:87:
1a:f0:f4:48:bf:5b:99:0f:b9:55:19:13:92:2c:b6:
b7:c5:a0:dd:90:89:5d:ae:67:a6:03:00:04:8f:d8:
dd:b2:90:f8:ba:a5:0c:31:4d:a7:71:c4:75:17:04:
af:dd:e2:58:3c:42:10:0d:60:6a:23:80:5c:91:c2:
a2:f3:4b:2f:f8:17:10:82:ed:02:a4:8b:14:a3:59:
8e:12:89:1f:39:6b:be:25:e5:5f:86:4b:5f:2d:a6:
a5:04:30:ea:e9:27:b1:bf:d5:10:f1:fb:ec:25:05:
4a:2f:67:f2:37:a1:14:13:f9:99:af:d5:89:19:05:
24:9f:e1:18:64:50:a9:04:2d:38:bc:c0:64:e0:4c:
1d:e4:27:d0:83:5f:0d:83:3e:a7:3b:91:4c:f0:43:
91:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:F9:8E:01:1D:2A:C1:7B:FA:7E:B1:3C:C2:D1:59:21:D4:51:A8:5A
X509v3 Authority Key Identifier:
keyid:DC:86:E3:E9:28:C7:F0:C9:DB:69:51:5F:F3:AA:1F:67:8C:EE:43:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Ibj6SjH8MnbaVFf86ofZ4zuQ8A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/471aa5-c3f7-4afd-b122-9c8e59c2771c/1/0PmOAR0qwXv6frE8wtFZIdRRqFo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/471aa5-c3f7-4afd-b122-9c8e59c2771c/1/3Ibj6SjH8MnbaVFf86ofZ4zuQ8A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.169.96.0/19
Signature Algorithm: sha256WithRSAEncryption
a0:3f:63:42:7d:e2:20:cf:2b:bf:b7:8f:5e:5a:45:60:90:4c:
c3:c5:a0:14:e1:9f:5d:c5:06:95:41:82:a0:75:9d:0a:1f:2f:
4e:c9:bd:f3:bb:bd:5b:28:4e:6f:1f:28:4f:61:79:ae:f1:78:
f0:b4:e3:5a:62:ea:ea:d2:83:23:f2:8d:be:d4:59:02:04:2c:
5b:0c:1d:f0:ae:79:bb:15:ee:6b:4d:e0:6c:df:e5:64:8e:a3:
39:8c:85:aa:3f:b1:09:e2:43:38:f3:78:b4:51:77:42:5c:ad:
1a:b4:d5:f0:f1:a1:50:fb:1b:5f:34:48:d4:d8:af:8f:14:53:
6c:72:e9:aa:0a:ab:0d:6e:0b:27:19:47:02:89:83:06:a0:73:
6b:80:7d:9d:7b:e9:6c:af:7a:42:37:0a:95:e3:94:95:dc:8c:
5c:35:b2:2d:eb:6b:4f:47:ea:c3:a7:93:b1:0c:42:09:f8:0c:
b7:ee:ff:16:62:85:cc:a0:d3:df:de:50:84:22:52:cf:de:e8:
7e:15:27:fe:3f:72:84:19:e5:ad:55:99:91:86:58:0b:80:58:
24:1e:47:a9:db:99:b3:67:df:2d:98:13:a5:82:fa:40:c1:0f:
2e:6e:50:33:43:1a:bf:48:80:a4:89:06:98:a5:67:e4:36:26:
38:05:7c:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:58 2024 by rpki-client on console-fra.rpki-client.org