Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/q5un-wKhz7fh7n08RUn6TBOlbgw.roa
File: q5un-wKhz7fh7n08RUn6TBOlbgw.roa (raw, json)
Hash identifier: A65SjladElqBEiYaAMeHUc2lc5h09T2RnUSTKXfnJrI=
Subject key identifier: AB:9B:A7:FB:02:A1:CF:B7:E1:EE:7D:3C:45:49:FA:4C:13:A5:6E:0C
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 019208E3F03997C1AA66EA694D65E8700D24
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/q5un-wKhz7fh7n08RUn6TBOlbgw.roa
Signing time: Thu 19 Sep 2024 06:06:48 +0000
ROA not before: Thu 19 Sep 2024 06:06:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29802
IP address blocks: 89.21.86.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Sep 2024 10:39:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:08:e3:f0:39:97:c1:aa:66:ea:69:4d:65:e8:70:0d:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Sep 19 06:06:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ab9ba7fb02a1cfb7e1ee7d3c4549fa4c13a56e0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f2:f1:86:f5:ee:22:87:20:7e:a4:0e:d5:5b:
61:a0:3a:c1:40:76:fb:ae:0d:b0:e5:62:67:a8:7d:
38:0e:28:e5:18:e4:3d:7d:e6:43:4c:1b:d2:a2:66:
a5:cc:17:01:dc:9a:2d:b5:93:72:ac:bf:34:8a:d1:
ed:74:f9:d4:05:b8:5a:a9:f8:db:91:ce:db:af:92:
ba:35:c1:03:a5:05:e2:cd:c0:ef:81:f7:f7:41:cc:
ac:da:97:68:91:2b:cd:b5:8d:a3:70:93:84:10:83:
93:04:c7:13:68:83:51:7c:6e:2f:e9:fe:03:fe:a4:
5c:55:ff:83:81:0a:3a:00:66:1f:46:c6:0d:74:d9:
08:96:0a:d3:2d:eb:7f:ba:3c:c4:db:23:f0:56:30:
b9:f8:c7:fc:16:f1:d7:2a:44:c9:15:20:7b:08:3b:
17:6b:be:1c:2e:ff:3d:25:f8:ba:ff:de:be:35:92:
04:de:05:f9:a6:e1:35:6b:fb:15:06:0e:26:0d:77:
63:fb:9b:d2:90:44:8f:e3:d7:ff:41:9f:ef:c8:38:
3e:83:e1:db:63:5f:58:42:90:f8:10:32:2e:2c:68:
03:7e:68:37:cf:89:62:9c:b2:be:3c:fc:8a:55:fc:
43:b4:7a:83:f0:67:23:17:ce:2f:e5:9b:e0:d7:99:
1c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:9B:A7:FB:02:A1:CF:B7:E1:EE:7D:3C:45:49:FA:4C:13:A5:6E:0C
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/q5un-wKhz7fh7n08RUn6TBOlbgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.21.86.0/24
Signature Algorithm: sha256WithRSAEncryption
39:6b:78:e8:90:37:c8:43:58:8b:fa:4a:a8:2a:cf:51:f2:72:
10:72:8e:6e:ba:79:cd:b5:c0:d3:e7:46:2e:2c:64:b6:7b:5c:
6c:cd:4d:2e:86:ca:b7:41:3e:41:f3:8c:9d:e4:fb:df:b9:e9:
1e:d3:5e:40:4b:d6:a0:3a:c7:bf:ec:d6:bb:1d:2b:80:7b:0f:
21:13:4f:5a:2a:51:7d:8d:7a:1f:a6:eb:14:30:cb:08:b2:9a:
77:b1:5b:63:43:e3:36:84:39:a3:ee:07:21:02:b8:97:05:b1:
bd:cb:0a:b3:56:13:16:86:1d:d9:f5:32:7d:28:8d:5d:c2:47:
76:f6:4b:87:3e:3c:c0:c1:ed:22:5d:2b:34:3e:2b:8a:d7:2f:
52:a9:25:e3:9f:28:7d:44:a9:86:aa:f2:42:8b:5c:3b:72:bc:
03:5e:2c:d5:f0:78:db:7e:8e:39:70:f2:d2:31:37:17:a6:f6:
0e:a1:51:5f:5d:c7:1e:13:0e:da:1b:ac:fb:0b:3e:6c:78:9c:
99:96:81:1c:3b:b2:ef:b3:40:a7:a7:25:b6:e9:e9:c9:69:8b:
c4:c4:77:aa:80:b5:f1:64:e7:e9:6b:00:49:21:30:ea:49:4d:
d3:38:a3:61:91:79:bf:d5:e7:10:ca:37:21:71:f4:43:ed:5f:
84:35:b1:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 27 14:05:18 2024 by rpki-client on console-ams.rpki-client.org