Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/1XPXizoo3QovA0D_rYnm8sWuDzs.roa
File: 1XPXizoo3QovA0D_rYnm8sWuDzs.roa (raw, json)
Hash identifier: qwrz+qjuXqZ+isqHPDPKLpv0EX4Ks3xqfF4IN3BA/EA=
Subject key identifier: D5:73:D7:8B:3A:28:DD:0A:2F:03:40:FF:AD:89:E6:F2:C5:AE:0F:3B
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 018F84D248B527E7ABEF970D5FF8C39922C8
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/1XPXizoo3QovA0D_rYnm8sWuDzs.roa
Signing time: Fri 17 May 2024 04:32:04 +0000
ROA not before: Fri 17 May 2024 04:32:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59895
IP address blocks: 89.34.171.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 May 2024 06:26:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:84:d2:48:b5:27:e7:ab:ef:97:0d:5f:f8:c3:99:22:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: May 17 04:32:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d573d78b3a28dd0a2f0340ffad89e6f2c5ae0f3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:73:fc:db:63:e4:d1:3a:1a:8a:3c:06:6f:10:
17:33:f5:77:33:65:da:30:19:1e:64:71:a2:4e:c4:
72:fb:e5:60:90:29:e0:e5:93:e0:73:4f:a4:bb:94:
84:33:f9:71:56:5f:53:53:be:3e:ae:80:85:f1:37:
81:75:52:55:db:3c:cb:91:3c:f6:87:2e:8b:11:57:
8c:00:88:93:b7:76:3e:30:2b:9f:0c:59:02:d0:c0:
1b:71:97:de:d2:22:56:4f:bc:d5:7f:a1:f5:2a:19:
72:e2:f4:80:0e:db:8f:2a:54:6e:a8:1e:ab:e5:ae:
69:26:5c:5f:f8:90:f2:4c:77:a6:98:61:2b:62:a7:
55:34:5b:53:73:22:b7:c9:9c:c0:ff:f4:73:3a:a6:
2b:fa:d9:ef:3d:ff:c0:ae:a4:b7:09:bf:72:ad:73:
d4:c5:9f:4a:f1:68:51:05:2f:75:10:93:05:f4:73:
36:43:68:94:d6:8e:37:5a:8e:d6:05:fc:e1:00:0a:
52:d9:f5:21:c7:fb:cd:3e:a3:96:26:1b:5b:14:3c:
51:0f:87:51:a0:4d:35:47:b8:99:34:14:24:64:28:
5e:2e:cf:f3:78:ba:e3:65:f8:2e:ae:d7:6f:9c:96:
53:ff:f4:3a:a0:a9:ef:64:ce:8a:67:fc:f5:6e:e5:
8a:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:73:D7:8B:3A:28:DD:0A:2F:03:40:FF:AD:89:E6:F2:C5:AE:0F:3B
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/1XPXizoo3QovA0D_rYnm8sWuDzs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.171.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:6c:3e:d3:b2:bc:f2:74:15:07:4f:cc:bb:c9:a4:f1:a6:30:
f9:96:5b:93:20:99:96:82:ff:c8:78:92:7e:26:0c:92:66:18:
2e:a5:47:ec:a2:88:f7:93:00:d5:77:60:32:22:ca:77:12:1c:
a4:16:45:af:4a:0e:c8:f0:30:b4:6b:3e:1d:a3:e0:5a:6e:be:
08:1b:ce:4a:8b:ca:4f:56:d0:75:23:1b:c4:48:08:23:8b:4a:
23:31:5a:07:87:00:fd:48:2e:15:e0:27:f2:73:6e:42:53:60:
e4:ca:e1:e6:ac:72:0e:7a:b1:27:d9:64:f0:33:5b:14:9a:97:
e8:aa:81:68:56:78:b2:c6:f8:d2:a2:b8:d1:7b:3e:81:72:8a:
62:cd:cc:fa:29:84:ed:0b:e8:8c:f1:f8:9d:23:2d:21:96:f8:
cb:e0:95:de:aa:5d:8c:99:48:5f:a1:9e:a3:bc:70:18:c5:2a:
ec:89:93:47:48:d7:3e:7b:0d:2b:b0:d8:ed:53:3f:d5:5a:76:
1a:2a:3f:70:ec:23:d7:6f:62:0e:62:12:6c:c2:ce:07:63:4b:
f6:79:00:47:3d:7b:7b:31:81:57:e3:c4:78:1e:17:9c:4f:64:
0b:cd:28:1d:37:57:d7:91:7d:8a:1d:aa:b5:c2:34:d8:93:22:
0e:af:ba:21
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY+E0ki1J+er75cNX/jDmSLIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhMDBlOTgxOTUzMDYxOTcyYzg5NmJkNmQyNzczOGQwODNh
YWRiMGUwHhcNMjQwNTE3MDQzMjA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNTczZDc4YjNhMjhkZDBhMmYwMzQwZmZhZDg5ZTZmMmM1YWUwZjNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqXP822Pk0ToaijwGbxAXM/V3M2Xa
MBkeZHGiTsRy++VgkCng5ZPgc0+ku5SEM/lxVl9TU74+roCF8TeBdVJV2zzLkTz2
hy6LEVeMAIiTt3Y+MCufDFkC0MAbcZfe0iJWT7zVf6H1Khly4vSADtuPKlRuqB6r
5a5pJlxf+JDyTHemmGErYqdVNFtTcyK3yZzA//RzOqYr+tnvPf/ArqS3Cb9yrXPU
xZ9K8WhRBS91EJMF9HM2Q2iU1o43Wo7WBfzhAApS2fUhx/vNPqOWJhtbFDxRD4dR
oE01R7iZNBQkZCheLs/zeLrjZfgurtdvnJZT//Q6oKnvZM6KZ/z1buWK+wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNVz14s6KN0KLwNA/62J5vLFrg87MB8GA1UdIwQY
MBaAFNoA6YGVMGGXLIlr1tJ3ONCDqtsOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmdEcGdaVXdZWmNzaVd2VzBuYzQwSU9xMnc0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi84MmE3ZDYtOTJhOS00MjA0LTlhZTAt
OWE0OGVjZjllMTVlLzEvMVhQWGl6b28zUW92QTBEX3JZbm04c1d1RHpzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi84MmE3ZDYtOTJhOS00MjA0LTlhZTAtOWE0OGVjZjllMTVl
LzEvMmdEcGdaVXdZWmNzaVd2VzBuYzQwSU9xMnc0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWSKrMA0G
CSqGSIb3DQEBCwUAA4IBAQB7bD7TsrzydBUHT8y7yaTxpjD5lluTIJmWgv/IeJJ+
JgySZhgupUfsooj3kwDVd2AyIsp3EhykFkWvSg7I8DC0az4do+Babr4IG85Ki8pP
VtB1IxvESAgji0ojMVoHhwD9SC4V4Cfyc25CU2DkyuHmrHIOerEn2WTwM1sUmpfo
qoFoVniyxvjSorjRez6Bcopizcz6KYTtC+iM8fidIy0hlvjL4JXeql2MmUhfoZ6j
vHAYxSrsiZNHSNc+ew0rsNjtUz/VWnYaKj9w7CPXb2IOYhJsws4HY0v2eQBHPXt7
MYFX48R4HhecT2QLzSgdN1fXkX2KHaq1wjTYkyIOr7oh
-----END CERTIFICATE-----
Generated at Mon May 20 08:01:55 2024 by rpki-client on console-ams.rpki-client.org