Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/AWkdtkjS1qXSgq4LPyYxTmcAssA.roa
File: AWkdtkjS1qXSgq4LPyYxTmcAssA.roa (raw, json)
Hash identifier: KYgbVRr1F7KzXIB9PcQP66Ark46vaNtZqinTvTUBkME=
Subject key identifier: 01:69:1D:B6:48:D2:D6:A5:D2:82:AE:0B:3F:26:31:4E:67:00:B2:C0
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 018B5E168655D7ABBA0A440FF943A9D0300E
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/AWkdtkjS1qXSgq4LPyYxTmcAssA.roa
Signing time: Mon 23 Oct 2023 19:50:16 +0000
ROA not before: Mon 23 Oct 2023 19:50:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60949
IP address blocks: 89.251.27.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 28 Nov 2023 18:20:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:5e:16:86:55:d7:ab:ba:0a:44:0f:f9:43:a9:d0:30:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Oct 23 19:50:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=01691db648d2d6a5d282ae0b3f26314e6700b2c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:74:49:30:e4:27:d8:98:77:d4:65:af:3e:5e:
89:8c:f8:0c:c7:c4:2b:a1:c5:5d:4d:c6:d1:b1:3d:
9e:18:e3:1f:45:5d:b8:af:97:43:c5:a0:74:c7:a5:
5b:f5:b8:ab:77:2d:a3:34:d2:6d:83:24:a4:ef:28:
dd:a8:e7:39:e0:22:99:a2:31:ad:ea:e4:3c:92:e9:
e0:e0:3e:b7:42:59:26:ed:30:ee:38:fb:b5:9d:ed:
de:20:90:9b:3d:12:5e:04:e1:29:10:f7:39:71:3f:
09:5f:86:c4:80:e9:4d:32:d1:25:47:eb:3f:26:ec:
59:57:11:a5:dd:e0:9f:9f:44:4d:68:b8:95:dd:56:
2f:be:74:d6:6c:e9:d6:3d:e7:e8:a3:d1:e5:ac:54:
d1:7e:1c:0f:55:27:19:d3:e9:e4:a8:0a:29:1d:ea:
96:79:3c:2f:ba:35:31:55:04:34:a8:a3:05:ac:14:
28:f7:da:d5:44:cb:5f:ab:f5:8d:12:07:a6:ad:72:
a4:f4:9d:15:f0:2d:a4:f3:13:b5:b4:e4:c3:3b:24:
30:fb:70:cf:31:c3:de:b7:2d:45:27:51:06:24:0d:
86:c9:e5:c2:5f:c6:31:07:3a:08:e2:f4:c1:33:78:
f4:73:96:6a:af:c1:c1:fe:ae:3c:76:87:2b:9d:26:
91:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:69:1D:B6:48:D2:D6:A5:D2:82:AE:0B:3F:26:31:4E:67:00:B2:C0
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/AWkdtkjS1qXSgq4LPyYxTmcAssA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.251.27.0/24
Signature Algorithm: sha256WithRSAEncryption
59:a6:7b:cd:08:a0:f3:b5:2f:d6:0e:89:df:e3:4e:2b:0f:c1:
08:2d:e9:aa:bb:45:d6:1a:1f:2e:4c:33:26:2b:af:46:2b:64:
00:09:81:f7:b7:d1:79:bc:84:df:5b:60:5c:81:93:e8:42:af:
38:a4:38:44:4c:c1:6d:c5:1d:33:cf:f9:53:24:e6:48:e5:df:
d3:61:ac:d5:76:e0:23:24:e3:9c:a4:cb:d0:53:9f:3c:e1:4f:
7f:ba:1f:c3:95:bd:54:ed:83:0a:b0:6d:a5:8f:00:fc:9e:01:
49:8b:1e:bc:50:38:15:14:ac:36:d9:33:cf:c9:29:52:d7:07:
26:e6:fe:1c:59:76:cf:32:e0:3f:b0:0d:40:ab:da:9c:84:cd:
f8:e0:bb:3a:8b:91:20:ad:9c:29:e4:25:c3:ad:fb:02:d5:d9:
ae:47:51:6b:1e:96:22:aa:a9:b7:2e:07:89:53:de:cc:66:57:
41:fe:90:3b:6d:8e:3f:1c:15:e3:07:ac:37:83:30:cd:1a:8c:
3c:8e:9b:bd:a9:a5:c5:91:10:d6:b7:a5:d0:bd:6c:d4:95:16:
35:ca:1b:01:e4:07:dd:4d:79:f9:a1:37:59:a6:cf:7b:c1:44:
8d:6a:87:8f:ec:0e:c7:40:09:63:a2:9b:21:b0:60:89:2d:28:
59:2b:b0:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:36 2024 by rpki-client on console-fra.rpki-client.org