Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/VreVYd-eyVlZBuOPfc0y_96Mdi4.roa
File: VreVYd-eyVlZBuOPfc0y_96Mdi4.roa (raw, json)
Hash identifier: +r8iR/RqjqHcuzkVwtN3/eOPDTva/lAY5kmzwnkEhY8=
Subject key identifier: 56:B7:95:61:DF:9E:C9:59:59:06:E3:8F:7D:CD:32:FF:DE:8C:76:2E
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 0186C594DEB074221BF710BFB313A5FD493D
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/VreVYd-eyVlZBuOPfc0y_96Mdi4.roa
Signing time: Thu 09 Mar 2023 08:55:13 +0000
ROA not before: Thu 09 Mar 2023 08:55:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 138997
IP address blocks: 89.251.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c5:94:de:b0:74:22:1b:f7:10:bf:b3:13:a5:fd:49:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Mar 9 08:55:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=56b79561df9ec9595906e38f7dcd32ffde8c762e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:1c:3f:be:f6:88:80:91:4d:a0:48:b1:e0:3c:
a3:1a:d7:2f:b9:20:a7:33:f6:02:7f:a9:73:de:c9:
92:85:f4:61:73:d0:fe:e5:ef:e9:1a:7e:dd:b2:b2:
35:24:b8:d6:f6:ef:4d:77:4f:86:17:43:e9:f0:0f:
31:a5:f3:f1:e8:fb:78:42:55:05:9b:d6:56:ca:b1:
a2:f5:d4:62:77:cd:65:c8:e9:8c:33:a7:d7:60:c9:
12:e0:83:7c:49:13:0a:b9:4c:e2:64:43:d0:b0:80:
bf:c2:16:ac:20:6a:84:19:55:2b:5e:4f:7c:0d:b4:
40:7a:09:1f:2b:10:f1:ac:0e:b0:f7:14:24:a9:5a:
cc:bd:c6:85:2b:72:54:b7:a3:b3:3f:1d:a8:eb:98:
d7:00:a0:74:78:9c:ea:e1:81:af:4e:5e:84:71:c5:
a7:3d:ec:32:ac:f5:ce:96:3e:e1:ed:1c:ef:45:f3:
99:36:bf:ec:82:39:10:3c:c2:e6:63:d8:b1:b2:94:
31:68:b4:c0:3f:6e:21:fa:5b:59:93:d5:15:5d:c0:
96:9b:20:96:33:db:1c:b1:88:9e:4e:49:ee:bc:77:
f7:68:38:db:54:c9:2e:52:03:f7:16:e0:d4:33:4c:
42:00:ba:ef:7d:84:39:61:8e:61:8b:f5:2c:b9:04:
96:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:B7:95:61:DF:9E:C9:59:59:06:E3:8F:7D:CD:32:FF:DE:8C:76:2E
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/VreVYd-eyVlZBuOPfc0y_96Mdi4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.251.26.0/24
Signature Algorithm: sha256WithRSAEncryption
58:24:d8:62:8a:aa:fe:f0:4a:56:31:20:21:27:02:89:ff:e2:
58:71:d7:a8:b4:54:8e:3c:37:20:e8:40:ea:9d:df:45:18:8f:
d3:e4:1c:7f:f6:f3:7e:4b:be:35:41:15:62:a9:7b:e7:72:c7:
3a:8f:fb:24:e8:6f:ea:e8:d2:83:20:fe:8c:a8:1c:86:99:1d:
4e:95:e1:25:1d:9e:ba:44:12:51:39:8c:00:99:c8:16:3e:ae:
67:9f:b4:b7:a8:a8:37:3d:4f:0a:e0:57:bf:cc:ca:a9:57:3c:
06:92:2d:ee:ea:92:1b:bb:ef:1d:e9:6f:07:c1:6d:a0:eb:8a:
3e:06:b2:c6:27:93:b9:f9:1a:6c:19:4c:fa:e1:17:33:70:0c:
8f:29:17:17:57:e7:cb:70:16:73:d6:c3:2e:5a:f6:cd:c4:95:
63:a3:67:a8:1b:c1:70:e9:63:c5:55:3a:5b:b2:6f:53:4f:ab:
9c:6e:ef:27:bd:43:69:bc:19:8f:9e:c0:5a:84:13:fc:ce:d5:
07:6e:c0:e4:e6:85:d5:05:27:39:29:9b:5e:b8:7b:6a:8d:62:
d5:21:91:13:6d:af:49:5a:b8:a7:4c:ad:c1:6e:4f:43:ce:7c:
1a:63:2f:6a:50:8d:fb:12:22:fa:87:87:5b:a1:f6:12:32:9d:
b2:b8:ed:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:06 2024 by rpki-client on console-ams.rpki-client.org