Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/VHw6XDLM0iqduK7Wwca4i4K0-mk.roa
File: VHw6XDLM0iqduK7Wwca4i4K0-mk.roa (raw, json)
Hash identifier: mYuDC/igWL1QtRkJS06Mo1cobU84XSqEmshVHonyA3w=
Subject key identifier: 54:7C:3A:5C:32:CC:D2:2A:9D:B8:AE:D6:C1:C6:B8:8B:82:B4:FA:69
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 0187341660A977EFF97E2A9E7AAF9A3B8702
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/VHw6XDLM0iqduK7Wwca4i4K0-mk.roa
Signing time: Thu 30 Mar 2023 19:54:54 +0000
ROA not before: Thu 30 Mar 2023 19:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 18811
IP address blocks: 89.251.24.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 08 Apr 2023 04:49:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:34:16:60:a9:77:ef:f9:7e:2a:9e:7a:af:9a:3b:87:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Mar 30 19:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=547c3a5c32ccd22a9db8aed6c1c6b88b82b4fa69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:0d:16:f3:49:d6:0d:1b:04:2b:09:05:1c:a3:
ce:b8:c9:18:69:82:e9:b1:a4:25:0a:6a:a4:b2:76:
88:f4:34:90:0f:f5:c8:aa:11:41:e9:b2:48:6e:7d:
2e:bd:a8:da:6c:01:9a:8a:ad:41:6a:2c:dc:05:e6:
4c:87:f0:30:cf:20:59:fe:0d:45:11:c8:38:da:b1:
ec:5b:8d:ac:19:5e:e7:89:1d:08:13:6f:c8:dc:14:
f6:06:ac:7f:c1:48:21:98:60:31:66:67:04:c5:0a:
2c:7e:ba:fb:28:ca:2d:d3:0e:6e:8d:c3:6e:3b:c9:
9f:fe:4f:13:26:dc:cd:b5:c0:26:58:4b:d9:6a:07:
cd:d7:41:fe:87:f7:9e:2f:ac:dd:a2:b0:b7:c8:c9:
67:88:05:39:5a:9d:21:88:3a:2f:40:fd:33:73:75:
ee:e8:57:3c:7e:7f:58:e8:63:02:b6:61:18:ca:82:
95:e2:b1:a5:17:4a:90:2e:cb:5c:4a:63:8a:0f:d4:
08:ce:12:b7:d4:79:cc:88:89:a9:f6:78:26:3d:3f:
3b:81:53:5d:65:94:8d:50:8e:b3:00:6d:05:b0:ee:
e7:e7:3f:f6:5d:8d:46:6a:2f:6a:f7:d5:fe:fe:4f:
60:58:3d:ee:e4:68:32:11:ff:2b:09:b9:f9:de:2f:
27:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:7C:3A:5C:32:CC:D2:2A:9D:B8:AE:D6:C1:C6:B8:8B:82:B4:FA:69
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/VHw6XDLM0iqduK7Wwca4i4K0-mk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.251.24.0/24
Signature Algorithm: sha256WithRSAEncryption
42:d0:a5:3b:69:cb:7c:b0:bb:f1:5a:27:63:27:e2:eb:12:e3:
c0:e6:a1:dc:8b:91:75:06:6f:cd:b9:c6:72:a6:4f:eb:3d:e7:
bd:a9:7e:38:33:f8:cc:f8:2f:70:70:28:25:94:06:9c:bd:44:
0b:fe:c6:0e:9b:ac:fe:2f:90:bd:6a:6c:b2:de:2a:b1:a7:eb:
35:25:9f:14:0e:90:20:a9:7f:a9:a1:eb:23:50:b5:d8:ad:77:
35:98:f7:0b:e5:f4:7f:e6:45:9c:c0:23:42:80:ba:08:46:f1:
92:a9:b8:b5:f8:09:03:80:b2:29:e1:b0:ba:83:4f:ed:d7:b7:
4d:36:a1:d4:da:22:7a:c7:46:36:5e:36:98:e2:b4:cd:0c:29:
2c:02:5c:bd:04:06:81:f8:6e:4a:f5:2f:07:1c:72:4e:f1:bc:
0c:08:70:72:6f:4d:5e:9c:4a:bb:97:b6:c8:0f:37:e8:d7:d5:
2a:70:d4:3c:42:85:59:b0:6c:98:e5:7e:33:8c:f4:d7:d6:18:
f1:ce:d0:1f:ed:fa:7c:98:c1:6a:a3:25:44:c4:7d:f1:d8:59:
46:2c:28:76:dd:64:3f:b0:ac:84:01:b3:72:12:f9:8d:29:52:
f4:32:64:a0:13:4c:84:be:e3:b9:a5:66:cd:fe:1e:34:de:d8:
20:20:e2:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:06 2024 by rpki-client on console-ams.rpki-client.org