Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/eZL2I-heSDToU7tI4XlGWDf5UC8.roa
File: eZL2I-heSDToU7tI4XlGWDf5UC8.roa (raw, json)
Hash identifier: +WoYA+qc/0OLBS1abu2H9QA08j2M7In8WqOJJFinB9w=
Subject key identifier: 79:92:F6:23:E8:5E:48:34:E8:53:BB:48:E1:79:46:58:37:F9:50:2F
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 0188233DC00734B46CE6C20A91D000B013EE
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/eZL2I-heSDToU7tI4XlGWDf5UC8.roa
Signing time: Tue 16 May 2023 06:27:09 +0000
ROA not before: Tue 16 May 2023 06:27:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 89.251.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 May 2023 03:31:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:23:3d:c0:07:34:b4:6c:e6:c2:0a:91:d0:00:b0:13:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: May 16 06:27:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7992f623e85e4834e853bb48e179465837f9502f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a9:06:fa:6d:b8:74:85:68:5b:ca:2d:74:0f:
d7:64:65:e3:af:35:6a:89:33:cb:43:a4:4a:b6:3e:
86:46:53:20:5c:94:51:85:a7:67:97:f2:65:5f:1e:
cb:60:4e:02:c0:0d:77:45:9f:ba:32:88:f0:61:5f:
bd:31:69:08:0a:fb:6b:3e:0d:1e:f3:72:7b:27:18:
d8:b6:87:b6:05:19:39:89:ee:e2:a2:4d:84:fd:4d:
24:9d:8f:09:0c:4b:11:90:b0:b3:e0:78:30:3c:8a:
2e:c5:68:61:c7:8a:ac:e1:70:f5:2b:e2:36:9c:3a:
d1:c6:cf:32:72:44:ca:65:e3:b2:14:b4:7f:25:52:
b0:d2:8d:c3:cb:6f:24:31:6f:a9:a6:39:dc:a7:f1:
70:b0:1f:3e:eb:b6:9d:3b:c7:ba:6e:e7:f4:f3:80:
41:24:d8:08:a1:00:77:c6:ec:78:9d:d5:7f:e3:df:
36:5c:66:86:45:9a:21:af:21:c9:0a:cf:0c:1e:a2:
1b:03:9c:d2:d5:5a:4c:ec:a2:f0:10:8d:2f:12:8b:
ff:44:d9:85:8c:fc:f3:7b:1c:1c:f9:6b:30:ab:e0:
87:0d:90:da:21:6e:a2:a3:13:55:1e:1c:93:e1:78:
44:cf:b0:e2:2e:df:2d:d0:8e:99:8a:88:55:4d:f6:
18:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:92:F6:23:E8:5E:48:34:E8:53:BB:48:E1:79:46:58:37:F9:50:2F
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/eZL2I-heSDToU7tI4XlGWDf5UC8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.251.20.0/24
Signature Algorithm: sha256WithRSAEncryption
18:8e:ea:5f:80:20:db:1e:a7:a9:24:64:df:9f:e2:ab:b2:42:
74:f8:b1:8f:f2:00:c6:9d:19:59:75:aa:68:12:3a:2a:82:54:
9c:42:bb:c6:a4:04:79:aa:d6:a7:40:b3:d1:c6:eb:92:75:c4:
48:7b:d6:10:1c:7f:d4:a0:35:d4:59:71:d3:d1:bf:70:c5:b9:
e7:14:09:47:ec:43:2b:a5:88:79:cb:b7:bf:8c:f9:ae:cf:36:
bb:f0:df:26:ab:46:3e:39:7e:aa:3a:35:d4:68:6f:c7:c0:f1:
6f:7f:12:f4:48:50:30:17:49:99:ad:e5:cf:c7:73:71:d7:7c:
4e:a2:28:9e:8d:78:f5:49:c9:c2:65:bc:b1:2c:71:f6:45:3e:
ab:05:1e:f4:9a:04:00:cf:16:42:bb:56:80:03:0f:3f:9e:7a:
5f:a4:1c:64:2a:c6:d2:47:61:ca:bb:77:71:dd:a9:ad:66:c2:
e8:15:47:4e:4d:75:80:9d:95:8e:42:24:ec:d4:2b:07:49:16:
3a:38:b1:ef:cb:90:f0:12:48:7c:26:b9:8e:fe:24:e9:3f:a6:
d6:6d:16:cc:65:e0:32:9a:7a:51:4b:72:9c:01:50:3a:02:fb:
77:c4:75:bc:50:85:1c:f6:e5:f0:de:70:32:29:e7:fc:0e:c9:
e4:fd:a5:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:06 2024 by rpki-client on console-ams.rpki-client.org