Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/iBsw2mi0hqWPT1EsnxKni1boTvw.roa
File: iBsw2mi0hqWPT1EsnxKni1boTvw.roa (raw, json)
Hash identifier: kk8vWiZtlR47nYLwSHhOdm2xiwzzP3Pi3Iys98KeuWc=
Subject key identifier: 88:1B:30:DA:68:B4:86:A5:8F:4F:51:2C:9F:12:A7:8B:56:E8:4E:FC
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 018B496AC6CD8AE9DE91A339D8F94A2F1831
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/iBsw2mi0hqWPT1EsnxKni1boTvw.roa
Signing time: Thu 19 Oct 2023 19:30:16 +0000
ROA not before: Thu 19 Oct 2023 19:30:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12912
IP address blocks: 89.251.30.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 19 Nov 2023 22:31:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:49:6a:c6:cd:8a:e9:de:91:a3:39:d8:f9:4a:2f:18:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Oct 19 19:30:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=881b30da68b486a58f4f512c9f12a78b56e84efc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:f1:97:68:49:8d:90:bf:e6:e4:a8:5c:ef:e2:
50:72:7f:cb:0d:d6:41:6b:54:f0:9f:a3:c3:e3:59:
25:59:46:f8:36:c0:fb:3f:3d:be:a4:58:08:06:9a:
5e:09:f9:c6:de:60:a0:45:fe:48:e4:5c:6c:c4:3e:
d8:b1:0a:a3:6e:f6:75:d1:76:53:98:d5:7d:b7:c6:
89:cf:be:3a:69:71:07:4c:8b:6f:20:28:5e:ae:1c:
fd:95:fe:4d:68:03:18:89:5a:72:80:ce:d2:dc:56:
31:2a:97:2f:51:0e:98:0a:e7:84:c6:11:93:ee:54:
72:fc:8c:61:b0:75:42:f8:d9:a7:b7:fa:b4:39:b3:
ec:ea:b2:bf:d7:0c:37:ab:28:65:42:35:d4:b0:03:
f4:b0:76:93:81:e3:20:ce:ef:81:dc:60:b4:ae:1a:
f0:e8:9f:c1:a5:1d:78:4b:0d:3b:67:65:5e:e2:45:
bd:93:98:16:33:6d:4c:fb:cc:45:22:13:e6:01:4b:
e7:7f:6b:b0:1f:57:b0:96:0e:40:af:46:11:51:25:
60:c8:f3:74:d7:8d:6b:3b:6f:33:3a:58:bd:50:a1:
14:95:4b:2b:1b:a0:9a:94:08:b7:23:f0:8b:9c:5d:
89:77:d8:35:dc:84:4e:f7:1c:70:f7:eb:bc:13:a9:
0a:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:1B:30:DA:68:B4:86:A5:8F:4F:51:2C:9F:12:A7:8B:56:E8:4E:FC
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/iBsw2mi0hqWPT1EsnxKni1boTvw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.251.30.0/24
Signature Algorithm: sha256WithRSAEncryption
37:62:8a:e2:74:98:61:5f:dc:3c:fe:92:8e:27:41:58:c6:32:
fd:a3:b9:7f:db:6e:fa:77:3d:b3:dd:ed:df:35:fe:62:a6:04:
5c:53:b8:9f:9e:86:91:fb:30:9d:51:d7:61:09:05:23:89:53:
20:9b:79:21:43:a5:98:c6:fc:46:4c:26:65:a0:1b:c1:53:58:
35:91:9c:34:ad:00:7e:6d:f4:4a:92:82:e6:77:47:d7:14:46:
c1:11:ae:7a:f1:83:00:ae:1f:f4:24:24:7e:28:d7:63:3c:0f:
f8:f8:cb:90:96:d5:ac:91:34:e4:24:bb:9c:97:45:f7:5e:c7:
46:8b:56:e1:7c:4d:43:fe:a4:e9:bc:1a:91:2e:63:2e:b0:38:
11:20:85:19:fc:f3:1c:fb:6c:a5:97:8a:0c:6c:c7:d3:52:e6:
b8:19:2b:b0:41:aa:3d:f3:8b:de:b2:ef:e5:b5:f9:c0:e3:39:
ad:87:d7:d7:2a:03:27:33:5b:5b:25:57:7f:b9:70:19:c6:97:
fa:fc:25:d2:00:79:30:55:35:3f:89:bd:33:cc:ce:cc:0c:bd:
d3:fb:5a:0b:b0:83:50:8d:df:f3:37:01:d2:48:ec:00:1b:88:
ec:c4:0f:61:39:e3:c3:bf:1a:03:5a:4a:d5:fb:bb:4e:68:99:
9e:b0:70:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:37 2024 by rpki-client on console-fra.rpki-client.org