Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/hXtiNFZNIoUNhBh8kbkP55ijYEc.roa
File: hXtiNFZNIoUNhBh8kbkP55ijYEc.roa (raw, json)
Hash identifier: LOS1fefmsy78QaPkiHRz1qXlX6/7CpV29im8j5vMmkg=
Subject key identifier: 85:7B:62:34:56:4D:22:85:0D:84:18:7C:91:B9:0F:E7:98:A3:60:47
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 0186C5F6D51C2DCAD08E8DF4932708735721
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/hXtiNFZNIoUNhBh8kbkP55ijYEc.roa
Signing time: Thu 09 Mar 2023 10:42:13 +0000
ROA not before: Thu 09 Mar 2023 10:42:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 139660
IP address blocks: 89.251.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Apr 2023 08:33:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c5:f6:d5:1c:2d:ca:d0:8e:8d:f4:93:27:08:73:57:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Mar 9 10:42:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=857b6234564d22850d84187c91b90fe798a36047
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:08:00:67:48:08:1a:f4:10:e2:fd:a1:8f:53:
73:66:04:88:c1:90:85:03:c7:74:54:c3:ae:eb:e8:
cf:83:62:c7:39:8c:a1:c1:c6:3d:49:a2:f2:4e:07:
ea:57:47:f9:31:7b:8e:15:8a:25:b6:2f:9f:99:30:
7d:0a:89:e2:f1:22:95:07:1b:2c:1c:3b:14:f1:6c:
d1:24:77:0f:6a:bd:ea:11:d8:76:c0:29:6d:1b:8a:
39:53:25:cb:1b:f8:3e:e0:7f:86:74:c7:a2:18:93:
cb:57:de:ac:24:0a:83:e2:e4:ac:3a:e0:4b:50:aa:
21:6b:69:88:a7:47:ae:4d:da:fa:09:49:4c:ca:67:
02:20:39:5a:e3:5a:38:e0:19:5e:80:ba:8a:57:91:
83:05:57:6c:bf:ba:fb:fc:b1:c9:c3:57:77:c1:65:
8e:a3:c2:4a:d8:97:be:da:29:22:42:5b:84:41:aa:
ce:7e:27:eb:98:c6:1e:4b:e0:d0:cc:e4:9b:43:b1:
ca:71:08:d1:83:30:21:c8:fc:d4:84:73:11:c8:88:
eb:8f:e8:2a:c9:c4:e6:42:eb:6b:2d:44:1d:55:44:
7b:3d:23:51:34:d8:90:8e:3a:c5:3a:9d:15:b4:0e:
e9:f0:6d:aa:93:57:18:ea:a7:8f:2f:d8:a3:d2:d0:
c3:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:7B:62:34:56:4D:22:85:0D:84:18:7C:91:B9:0F:E7:98:A3:60:47
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/hXtiNFZNIoUNhBh8kbkP55ijYEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.251.22.0/24
Signature Algorithm: sha256WithRSAEncryption
48:75:21:ba:16:f5:97:a8:46:c4:50:e4:00:87:96:8f:6d:62:
7e:2d:6c:8c:8e:2c:e4:2c:c1:bc:a6:69:48:2c:63:c8:99:8d:
26:7c:b1:7c:20:88:84:65:20:4e:f9:3f:53:33:2e:45:70:e1:
c0:c9:35:e7:cb:fe:e2:ee:86:cc:1c:2b:0f:e9:a7:a7:30:24:
e4:b8:1a:d0:32:f3:63:69:c4:2f:81:d5:95:fd:8a:d1:25:67:
f7:33:68:dc:65:59:36:34:ae:71:8d:ae:ef:50:bd:9f:4d:74:
cb:f2:46:52:2a:02:db:ec:ec:5a:05:e6:4f:b0:b8:9e:f2:7a:
d0:84:3a:29:d7:ad:9d:87:7d:1a:5f:71:74:85:ef:2e:50:20:
cc:25:09:32:fd:bb:e5:3e:04:12:d1:12:c9:fa:4d:20:3d:9b:
f3:17:d0:72:88:9a:ad:77:de:a6:5c:31:77:8b:c7:bd:0c:0c:
fc:be:8e:ff:4f:ad:08:0c:4b:1e:00:c4:cc:c0:2a:4f:18:8b:
70:2d:08:4f:0b:70:31:db:f3:ad:5a:82:62:56:29:d5:3a:1b:
0b:2d:6e:d8:ba:1f:11:2b:dc:dc:4c:1e:61:45:18:2f:82:95:
27:2a:ee:5d:6e:23:89:dc:71:1d:49:f4:25:11:f2:14:29:f2:
3e:55:53:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:37 2024 by rpki-client on console-fra.rpki-client.org