Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/u2q7yfN9fTwc-iCKoKWJrp9se6I.roa
File: u2q7yfN9fTwc-iCKoKWJrp9se6I.roa (raw, json)
Hash identifier: 7wSYAVTXWKYS9QiKAolNUSspKz1RiMrT6zSViIlRJAs=
Subject key identifier: BB:6A:BB:C9:F3:7D:7D:3C:1C:FA:20:8A:A0:A5:89:AE:9F:6C:7B:A2
Certificate issuer: /CN=ebf42e80602aedf58a3c7a81883c1a34f69d2fb4
Certificate serial: 018571B0FA0E31657605E2D6D2EA905A4C1A
Authority key identifier: EB:F4:2E:80:60:2A:ED:F5:8A:3C:7A:81:88:3C:1A:34:F6:9D:2F:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6_QugGAq7fWKPHqBiDwaNPadL7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/u2q7yfN9fTwc-iCKoKWJrp9se6I.roa
Signing time: Mon 02 Jan 2023 08:55:01 +0000
ROA not before: Mon 02 Jan 2023 08:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47225
IP address blocks: 89.46.243.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b0:fa:0e:31:65:76:05:e2:d6:d2:ea:90:5a:4c:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebf42e80602aedf58a3c7a81883c1a34f69d2fb4
Validity
Not Before: Jan 2 08:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb6abbc9f37d7d3c1cfa208aa0a589ae9f6c7ba2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:66:e4:cc:ba:94:79:5f:a3:1c:d3:fa:b1:71:
fd:cf:58:7b:dc:bc:7b:00:5a:d1:ea:f0:44:a2:e2:
a7:05:26:e8:5a:76:c4:53:34:2a:5a:c9:8e:8e:9a:
ab:07:3e:44:3a:c9:c5:f0:db:a8:f5:f1:e0:7b:ee:
3f:f3:a3:ae:15:6d:9d:f6:c9:a6:b9:ca:80:56:5e:
54:d9:5c:e5:30:54:40:96:ff:77:19:96:71:90:56:
d9:a9:19:9e:54:39:0d:5b:70:28:79:b3:14:85:aa:
eb:6e:f4:14:03:b5:03:56:dd:89:ad:5e:65:c2:ee:
ae:7b:8f:68:11:a2:6e:85:a6:c7:68:5e:eb:75:b7:
12:7a:97:8f:6a:c6:1b:fb:b0:7e:97:ec:e8:a6:ff:
31:86:e7:c0:0a:a7:66:cf:8b:79:53:41:6d:74:39:
14:14:0e:cb:1d:f6:63:2b:16:1e:37:e2:90:e3:dd:
55:f8:60:44:fb:ed:10:b6:bb:99:18:75:ae:19:6a:
82:26:f9:fe:21:91:19:5c:15:d1:08:e2:ba:3b:27:
61:ff:f7:c3:bc:f4:2d:34:d5:be:e2:5f:2f:bf:04:
00:e6:bf:72:6f:02:b5:c6:6d:f5:70:e4:31:f9:86:
b9:e9:0c:4b:ca:94:98:b2:3b:48:62:c4:01:19:68:
bd:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:6A:BB:C9:F3:7D:7D:3C:1C:FA:20:8A:A0:A5:89:AE:9F:6C:7B:A2
X509v3 Authority Key Identifier:
keyid:EB:F4:2E:80:60:2A:ED:F5:8A:3C:7A:81:88:3C:1A:34:F6:9D:2F:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6_QugGAq7fWKPHqBiDwaNPadL7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/u2q7yfN9fTwc-iCKoKWJrp9se6I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/6_QugGAq7fWKPHqBiDwaNPadL7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.46.243.0/24
Signature Algorithm: sha256WithRSAEncryption
34:4b:2d:85:39:7d:45:03:35:8b:4f:f6:ca:53:20:7e:75:7a:
83:36:8d:ad:77:e5:87:35:ba:f9:b4:9d:43:87:a4:f8:58:fc:
67:68:93:c3:5a:4b:9c:8f:8e:ce:6c:00:d8:8f:bf:59:5b:5e:
4d:41:9c:81:fb:45:a2:42:41:49:27:48:00:08:cc:71:da:87:
f6:e2:e2:f6:19:51:57:4b:ba:52:cd:03:78:a6:68:d3:3c:24:
75:0d:11:09:1c:ce:5f:24:f7:59:04:38:cf:9d:1a:81:d7:ec:
eb:c6:c4:2d:de:7a:5f:92:16:8e:1b:c8:87:d4:b7:65:23:1e:
0c:88:3b:ed:fe:fd:5b:55:90:a5:d4:6c:77:2c:d7:86:a0:da:
90:e6:61:13:3e:e2:97:36:e5:62:7d:da:b2:e6:50:2f:ea:fa:
e4:5c:16:32:5a:8a:71:f1:f0:97:c1:08:b8:3d:4c:3d:8e:94:
9e:9c:46:ab:72:dd:f4:60:c3:f6:39:07:24:48:53:ab:f8:d3:
66:74:67:95:aa:9a:f9:86:6b:d2:ec:35:c3:88:cf:3b:f7:74:
dd:e4:04:ee:7f:e3:22:e9:08:a8:2c:bb:70:8c:d0:e4:ef:bd:
27:75:c8:e0:6f:ff:a2:5e:6e:4f:3b:97:80:c2:66:31:80:ba:
7a:1d:72:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:54 2024 by rpki-client on console-ams.rpki-client.org