Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/471xxNRSPdmPBVSuFZg4kYfh6ec.roa
File: 471xxNRSPdmPBVSuFZg4kYfh6ec.roa (raw, json)
Hash identifier: K9BuA4U/rKgUio0n73iGsIkLe3SVxPiK0B7oGlyvnlE=
Subject key identifier: E3:BD:71:C4:D4:52:3D:D9:8F:05:54:AE:15:98:38:91:87:E1:E9:E7
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 018738C78D9DFDE303B599BA0C76EEB91E67
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/471xxNRSPdmPBVSuFZg4kYfh6ec.roa
Signing time: Fri 31 Mar 2023 17:46:54 +0000
ROA not before: Fri 31 Mar 2023 17:46:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207279
IP address blocks: 89.251.27.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Apr 2023 11:21:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:38:c7:8d:9d:fd:e3:03:b5:99:ba:0c:76:ee:b9:1e:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Mar 31 17:46:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3bd71c4d4523dd98f0554ae1598389187e1e9e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:8c:13:56:54:42:e1:96:84:67:ec:18:2a:ca:
6a:8c:da:7e:96:24:12:88:87:5a:60:f8:9d:c8:b4:
b5:80:f1:ef:73:b4:e1:e3:0b:0d:02:3f:63:57:19:
fa:dc:dd:21:94:d3:35:3f:47:df:47:5d:5d:63:ed:
ce:58:59:7b:9b:71:0b:53:bb:ff:a5:6e:6a:82:fe:
8e:97:c4:48:74:6b:7c:ca:40:41:12:a8:86:41:a2:
bf:6d:71:e3:8d:44:f3:ab:3b:e7:be:c5:a5:76:d3:
6c:87:88:79:dc:1d:0b:3f:d0:4b:f5:e0:c8:ae:95:
4e:d8:a0:47:5f:4e:85:0b:77:65:de:86:3c:94:ac:
09:a2:06:b1:ed:9f:4f:01:1a:96:c4:53:89:93:80:
a1:63:f0:de:07:7c:8d:66:96:f0:d0:f0:ec:63:f0:
14:33:c5:1a:1e:89:7e:67:1b:3a:36:d3:85:86:4c:
3b:2a:ef:c5:a1:f1:b4:73:c1:f4:7f:27:27:a2:43:
ea:16:76:71:04:46:93:07:d1:d9:d1:57:ed:f8:4b:
02:9b:71:94:7f:58:9c:81:16:d3:e4:a5:65:a6:29:
e0:40:82:9f:ab:02:78:a0:d0:68:8e:11:69:e9:3c:
61:81:4a:6a:a8:80:aa:31:e1:69:ac:c1:32:db:0c:
e0:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:BD:71:C4:D4:52:3D:D9:8F:05:54:AE:15:98:38:91:87:E1:E9:E7
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/471xxNRSPdmPBVSuFZg4kYfh6ec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.251.27.0/24
Signature Algorithm: sha256WithRSAEncryption
97:87:be:5c:86:fa:11:47:e1:72:a3:89:86:86:09:bc:5a:9c:
66:f3:ed:e9:37:66:a2:1a:72:e4:3d:83:2c:68:aa:6f:bb:61:
b0:18:fb:1c:cc:12:a0:d9:bc:b8:1c:62:87:3c:b0:83:5a:8c:
e3:8e:96:28:d8:18:16:c5:66:31:6c:92:5b:fd:10:9f:16:0e:
ca:24:68:2a:f8:2c:37:f5:8c:dd:27:c0:8c:c7:b5:da:81:3d:
4b:92:ec:ac:fe:3b:29:70:53:e5:9d:33:00:4e:d3:d0:2d:f9:
9e:df:6c:16:82:81:e9:e0:84:4a:85:54:45:d5:0a:f3:23:e6:
83:f4:6f:77:b0:93:24:5e:2e:73:d3:36:ff:3d:22:8e:eb:55:
9a:4c:75:93:3a:f2:5b:70:29:5e:94:af:48:62:11:0a:86:0b:
72:3f:c4:a4:b7:ad:51:62:18:52:88:1a:ae:06:4b:99:c3:c3:
be:fa:16:21:45:d9:23:23:e3:9f:d3:54:dd:d9:19:b7:13:c8:
20:9d:c4:ee:e8:72:ad:c3:5a:98:f2:8f:6b:46:ed:ef:77:9b:
9b:33:b6:87:77:a7:c6:b8:4a:2e:15:60:9c:1a:da:47:4f:90:
f3:db:0e:bd:9a:99:0a:c7:d8:8f:77:6d:44:d6:e4:a3:84:0d:
1a:72:d1:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:06 2024 by rpki-client on console-ams.rpki-client.org