Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/0StDPEH1gK7lYIDL-EHWA-_WRBQ.roa
File: 0StDPEH1gK7lYIDL-EHWA-_WRBQ.roa (raw, json)
Hash identifier: c7xFghT4PCTX5QHZfywKi8tGV9RlM0Xax2AMqF8LyQ8=
Subject key identifier: D1:2B:43:3C:41:F5:80:AE:E5:60:80:CB:F8:41:D6:03:EF:D6:44:14
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 018827C31C84ADDC16F68E7B44E6C9E21CF5
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/0StDPEH1gK7lYIDL-EHWA-_WRBQ.roa
Signing time: Wed 17 May 2023 03:31:18 +0000
ROA not before: Wed 17 May 2023 03:31:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 109.122.44.0/24 maxlen: 24
89.251.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 May 2023 03:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:27:c3:1c:84:ad:dc:16:f6:8e:7b:44:e6:c9:e2:1c:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: May 17 03:31:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d12b433c41f580aee56080cbf841d603efd64414
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e0:fe:0a:81:eb:a9:7a:84:de:9c:be:32:2c:
37:cb:db:cd:88:72:32:11:38:df:65:a6:ce:27:33:
6e:88:7a:72:3a:e5:99:38:d1:d1:46:72:f8:54:48:
02:11:56:1b:61:e9:27:6a:01:bd:5b:6d:e8:16:cd:
8f:7e:f2:82:ae:44:18:4f:28:5e:02:96:7a:fd:57:
73:2a:59:14:48:1b:2f:5e:94:5b:a1:21:4e:6e:ce:
f6:3d:b4:be:ac:3d:0d:ed:12:38:03:91:33:58:6b:
67:30:e6:ea:81:06:c7:c4:29:34:ee:7f:04:2a:33:
bc:18:a6:a0:79:ab:6e:59:0a:38:84:f7:de:be:fe:
e7:83:7f:2f:4c:d1:71:26:3f:0c:85:bf:ec:81:c0:
c9:a1:4e:c7:0d:8a:d1:55:12:67:aa:01:93:bd:11:
66:26:0a:16:e8:da:97:f7:3e:12:8b:bc:b7:67:61:
d5:1f:0c:9e:46:fc:3d:00:26:57:8e:49:9b:ba:57:
97:f8:d0:82:1e:bd:a8:7b:b2:c4:a5:1d:65:e5:49:
b0:a7:f4:db:6b:a4:66:6d:b6:64:88:88:7d:49:5f:
32:34:b6:67:64:09:04:c4:18:f2:2c:e9:64:c6:a7:
d8:29:31:13:2b:ec:c7:cf:5e:00:19:dd:ca:88:32:
02:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:2B:43:3C:41:F5:80:AE:E5:60:80:CB:F8:41:D6:03:EF:D6:44:14
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/0StDPEH1gK7lYIDL-EHWA-_WRBQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.251.20.0/24
109.122.44.0/24
Signature Algorithm: sha256WithRSAEncryption
48:f8:de:45:03:4b:14:18:e4:84:76:5e:c9:be:24:2c:71:89:
c3:33:db:5f:ef:ab:a7:b8:87:2d:4d:c4:09:d5:06:8d:6d:42:
04:d0:ff:eb:ec:49:d1:cd:11:cd:ae:bc:12:9f:fe:4b:dd:97:
7a:18:f2:a8:d9:39:46:c6:18:e8:eb:91:fe:b7:9d:0f:7a:d0:
be:3d:3a:5e:9e:8b:16:f4:e3:ad:d3:c4:ea:bd:fc:7d:e4:a5:
0e:89:78:e7:9b:7e:d9:e1:94:9e:10:02:1f:19:09:8f:a5:c4:
12:c7:6f:ed:ae:4d:3d:0d:69:01:5c:ea:5a:cd:59:42:7b:75:
4b:c9:ff:cd:c7:64:ea:46:72:30:4b:f2:9f:7b:33:b6:73:da:
96:3c:8a:c2:79:55:87:1f:12:9b:eb:ba:77:6e:73:70:e6:d3:
71:77:c0:47:da:41:d3:86:44:da:b6:75:e1:37:82:47:20:bb:
b6:31:c6:d5:00:65:0c:b4:3d:ae:0b:bd:76:f0:f4:87:9f:93:
f4:ed:d4:16:6e:d0:86:4c:82:61:66:4b:0a:fe:fd:2c:fb:96:
bf:05:38:f3:c4:49:0a:bd:e7:93:08:16:b3:cd:ef:72:30:fb:
97:d9:a1:61:4d:a6:ff:fe:df:c9:2a:36:73:be:5c:22:6e:28:
4b:4b:8c:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:36 2024 by rpki-client on console-fra.rpki-client.org