Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/Ythc4i2uVpGkJwVKTPuWPb1fzV8.roa
File: Ythc4i2uVpGkJwVKTPuWPb1fzV8.roa (raw, json)
Hash identifier: /DBPpJmZYY2PjtB05z35lIYgp8/wLFdgkysV+6YXDfM=
Subject key identifier: 62:D8:5C:E2:2D:AE:56:91:A4:27:05:4A:4C:FB:96:3D:BD:5F:CD:5F
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 01856FF96637AA24E3FCC6190D2395266809
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/Ythc4i2uVpGkJwVKTPuWPb1fzV8.roa
Signing time: Mon 02 Jan 2023 00:54:53 +0000
ROA not before: Mon 02 Jan 2023 00:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16045
IP address blocks: 89.215.213.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:66:37:aa:24:e3:fc:c6:19:0d:23:95:26:68:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Jan 2 00:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62d85ce22dae5691a427054a4cfb963dbd5fcd5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:ba:c1:a6:21:45:25:c5:6c:36:77:9d:7f:bc:
0d:4b:67:51:ce:dc:48:55:c3:d8:52:b7:de:5d:01:
d4:f1:77:51:b2:c2:3f:ab:1f:fe:48:5b:36:0e:b4:
0f:53:d7:5e:b1:5e:02:21:42:a6:be:ab:55:af:07:
cc:af:4c:a5:c4:2c:04:fb:9b:bf:e9:fd:be:ac:1b:
2d:eb:61:02:a3:cc:64:80:58:43:09:2b:a5:78:4d:
30:6a:85:90:9f:d3:b6:6e:2d:8b:09:3e:5d:a0:43:
8f:28:e7:9c:58:78:39:80:30:58:75:22:da:5e:ba:
3c:7f:22:91:2b:64:e9:eb:aa:cc:5d:bf:d0:d3:0e:
da:4e:4f:22:f0:b8:5b:82:81:82:05:0c:b4:cf:60:
c8:3c:e7:62:fa:01:bc:90:31:cc:37:6e:76:73:24:
c6:dc:55:6c:73:34:5e:a7:b5:e4:3b:2a:40:42:9d:
ff:a5:9d:94:df:1a:3c:60:74:f2:10:88:10:f5:f6:
f1:57:cd:17:57:36:e7:a3:d9:1d:9a:b5:6f:4f:51:
93:a0:23:d8:60:44:2f:22:f2:67:a4:02:f2:a6:67:
ea:9c:ec:3b:4f:ea:f9:9f:e5:b2:b0:47:70:76:34:
fa:b2:b3:b6:73:a3:eb:6a:59:d2:cf:d3:ae:e3:8b:
f9:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:D8:5C:E2:2D:AE:56:91:A4:27:05:4A:4C:FB:96:3D:BD:5F:CD:5F
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/Ythc4i2uVpGkJwVKTPuWPb1fzV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.215.213.0/24
Signature Algorithm: sha256WithRSAEncryption
48:0a:d8:91:9b:07:69:0e:9e:5d:be:55:34:49:05:a0:04:43:
05:bd:4e:b5:e9:ef:69:04:ba:32:2a:f7:4b:a0:d4:c6:0b:52:
bc:48:25:49:ba:7d:c8:81:7b:76:d9:50:d5:71:cb:18:75:c1:
5e:66:3b:f4:5c:66:d6:54:ed:f7:4d:4f:46:ea:e6:2c:be:c0:
8e:16:08:5a:69:be:bf:f5:a0:69:51:8f:af:58:26:07:cb:52:
b6:a2:ee:44:6a:9a:df:bd:c2:58:61:c8:85:10:ea:4e:b9:4b:
93:58:8b:17:fd:54:2e:a8:f2:8e:39:fe:91:f6:91:37:af:e1:
4d:97:a0:9d:a8:ab:61:86:b1:d2:23:6f:ed:2e:ea:b6:33:a7:
c1:fd:fb:77:5a:8c:98:17:37:ab:5a:88:f7:76:11:91:b1:a2:
c5:91:b4:2f:c9:10:e4:f0:b4:16:26:74:b1:68:7d:79:90:44:
9d:77:7e:40:99:56:4e:be:32:95:0e:36:d3:6e:ec:46:df:83:
10:66:fc:a4:86:ac:f6:ac:0e:78:60:3f:25:d1:98:57:45:07:
3c:ad:ff:73:40:ea:29:2b:4d:79:92:2d:72:1e:49:ce:58:96:
71:48:53:ea:23:d0:e5:25:b8:30:98:1e:a9:92:1a:c5:c8:3e:
90:48:58:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:01 2024 by rpki-client on console-fra.rpki-client.org