Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/2XvsMxyIF7RAhqtknLvml9n3Uik.roa
File: 2XvsMxyIF7RAhqtknLvml9n3Uik.roa (raw, json)
Hash identifier: 6XOSEqyhdxj0gDoYiFaReLCIW1dyShpgLW2GftGIrYc=
Subject key identifier: D9:7B:EC:33:1C:88:17:B4:40:86:AB:64:9C:BB:E6:97:D9:F7:52:29
Certificate issuer: /CN=b9b350a0ae32e73e660c416c3f1406edd3615f82
Certificate serial: 01856D6F8CB13EAC6510D067F0D0A1757B33
Authority key identifier: B9:B3:50:A0:AE:32:E7:3E:66:0C:41:6C:3F:14:06:ED:D3:61:5F:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubNQoK4y5z5mDEFsPxQG7dNhX4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/2XvsMxyIF7RAhqtknLvml9n3Uik.roa
Signing time: Sun 01 Jan 2023 13:05:05 +0000
ROA not before: Sun 01 Jan 2023 13:05:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197889
IP address blocks: 89.107.254.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:6f:8c:b1:3e:ac:65:10:d0:67:f0:d0:a1:75:7b:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9b350a0ae32e73e660c416c3f1406edd3615f82
Validity
Not Before: Jan 1 13:05:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d97bec331c8817b44086ab649cbbe697d9f75229
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:be:a8:70:f1:1d:ec:62:e2:75:5a:a0:70:40:
44:23:ca:ee:2c:cf:bf:bf:5f:4e:b4:e9:ed:aa:5e:
a3:5d:0c:13:07:8b:2f:4d:e5:e1:64:d2:3b:5f:3c:
de:3d:1a:27:b9:0b:94:7a:2f:16:5b:ab:ea:2f:43:
34:d4:95:1e:90:7c:a5:87:b2:0e:4b:e8:da:dd:72:
28:d8:c4:f0:5f:36:41:f2:3b:4b:67:83:8d:d4:ca:
2c:f1:76:2f:be:4a:6c:00:16:a1:53:1f:f2:0d:39:
f2:97:60:46:2b:3b:a2:c2:24:29:c1:a0:29:f3:0f:
bf:ca:05:4c:83:7c:2b:c4:97:ad:85:af:59:d1:a6:
e2:ed:01:ed:d9:c5:31:e4:60:b8:03:25:d8:e7:0a:
39:0b:f3:d7:31:06:7f:9f:c1:08:dd:9b:37:91:90:
8b:0b:c1:61:b2:96:c2:6f:b5:24:88:1c:8c:05:48:
02:2a:50:a6:3e:06:95:6c:fc:d2:dc:73:51:e9:6b:
a1:d4:41:b6:81:03:5a:15:45:c0:44:88:a6:cd:68:
a2:60:11:27:78:fc:ac:8e:26:6f:85:5a:58:3b:b8:
c7:76:e8:5f:90:c3:f9:c2:91:db:19:db:ac:b5:53:
83:ce:e1:ae:b0:3c:6f:9a:d3:5f:9a:e8:95:eb:79:
19:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:7B:EC:33:1C:88:17:B4:40:86:AB:64:9C:BB:E6:97:D9:F7:52:29
X509v3 Authority Key Identifier:
keyid:B9:B3:50:A0:AE:32:E7:3E:66:0C:41:6C:3F:14:06:ED:D3:61:5F:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubNQoK4y5z5mDEFsPxQG7dNhX4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/2XvsMxyIF7RAhqtknLvml9n3Uik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.107.254.0/24
Signature Algorithm: sha256WithRSAEncryption
64:55:2d:9e:d7:a3:31:d1:4f:ec:0b:25:75:fa:49:4a:52:00:
62:a4:2c:20:23:36:fd:39:65:9b:01:bc:51:59:11:87:8d:82:
ac:ba:d7:25:fc:b0:3e:22:0b:48:de:3a:c7:a2:00:2e:02:e7:
38:a4:79:bc:a5:ce:6f:51:fd:c0:e6:e0:86:18:12:29:80:96:
2e:76:7d:d8:97:62:91:3d:89:cb:97:dc:93:cc:94:1a:e7:f7:
a5:0c:8e:d2:4a:d6:84:22:09:c2:99:3b:90:2d:1c:28:8d:5f:
0d:cd:97:8b:1d:9b:b9:c4:d4:e4:10:19:58:6a:ec:70:c0:b9:
cf:06:06:7f:a8:2c:e4:fa:a3:3e:20:8c:fe:51:31:43:70:3d:
f5:36:45:51:84:4f:df:05:49:77:e3:8c:98:03:d5:89:67:57:
d2:c0:72:99:8b:f0:44:52:cd:f4:51:6d:bf:2a:17:29:4a:43:
57:4e:4a:45:84:1b:fd:6e:b7:df:62:e7:11:4a:42:b2:1f:5d:
bb:a7:7c:62:2c:52:fe:35:11:ed:2a:03:d2:d0:e2:1c:98:4d:
c1:ee:de:92:78:e6:fc:3f:56:d5:7e:8e:1c:05:ec:d9:70:4c:
32:d9:cf:7a:6a:a0:18:80:53:89:36:bb:24:73:eb:3d:ee:a7:
45:b8:b0:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:57 2024 by rpki-client on console-ams.rpki-client.org