Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/seMOo_Wqh63dZ-j9MaN6ent4g74.roa
File: seMOo_Wqh63dZ-j9MaN6ent4g74.roa (raw, json)
Hash identifier: xwQohmgNUi6YFFGABfkXJYZ/m6CKSgobSG+gjiR5VME=
Subject key identifier: B1:E3:0E:A3:F5:AA:87:AD:DD:67:E8:FD:31:A3:7A:7A:7B:78:83:BE
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 0189A178A9F764A4CD502203AD60CC688536
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/seMOo_Wqh63dZ-j9MaN6ent4g74.roa
Signing time: Sat 29 Jul 2023 11:46:26 +0000
ROA not before: Sat 29 Jul 2023 11:46:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19437
IP address blocks: 89.251.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:a1:78:a9:f7:64:a4:cd:50:22:03:ad:60:cc:68:85:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Jul 29 11:46:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1e30ea3f5aa87addd67e8fd31a37a7a7b7883be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:82:82:b4:0c:57:2b:75:f1:9f:8a:5b:f5:9a:
86:ad:01:e1:a1:4d:b4:d1:38:a8:19:6f:8b:16:9f:
8c:8f:4b:5e:11:dc:62:92:95:d7:10:20:be:3e:11:
14:6a:4a:27:1a:0c:20:96:45:5a:25:ec:77:1e:78:
2f:c4:b3:59:62:7f:0b:5a:93:12:97:6c:90:7f:f8:
f0:76:24:3a:31:0f:0e:85:3c:04:0c:f5:97:c2:70:
cf:c4:9f:21:f5:0c:15:f3:34:c9:a3:ca:37:1c:4f:
5d:1d:22:8b:2c:e1:10:6f:b9:cf:83:3e:eb:93:0e:
9b:65:5a:87:12:51:fb:4a:2f:18:9b:13:f2:1a:03:
f3:4c:b3:9b:9c:27:36:23:75:17:a6:cd:ae:31:52:
cf:4b:28:42:b0:41:0b:92:91:b3:46:d7:da:12:5b:
a7:a0:b5:f0:da:de:06:63:dd:c0:ee:d4:35:4c:ee:
e1:3f:88:db:77:27:2b:6d:ef:c8:77:d3:07:d2:db:
34:88:2c:ca:af:34:64:10:67:aa:39:ab:c1:56:f2:
64:e3:7a:f7:e7:1e:59:9e:10:23:ab:ab:a6:a0:9c:
45:b6:8e:67:da:13:55:9c:f1:dd:20:0f:ba:c2:b6:
cc:eb:b4:0d:9b:a9:56:d4:af:7c:9a:55:68:a4:2e:
66:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:E3:0E:A3:F5:AA:87:AD:DD:67:E8:FD:31:A3:7A:7A:7B:78:83:BE
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/seMOo_Wqh63dZ-j9MaN6ent4g74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.251.21.0/24
Signature Algorithm: sha256WithRSAEncryption
95:e7:ec:53:63:f4:d8:05:8a:78:27:68:fd:fe:ab:51:f8:7e:
bf:2c:1b:ff:9e:f2:48:35:20:22:44:00:e6:bc:df:71:db:82:
4e:78:30:ae:b9:13:7e:81:46:22:57:4c:5f:22:2b:8f:f9:01:
c7:fc:b5:17:8d:0c:a7:33:8b:21:51:38:04:d4:a2:c1:95:61:
ef:61:db:e8:e4:89:0c:e8:57:d3:a8:26:b9:18:b5:c1:0d:71:
30:3b:31:52:8f:70:a0:83:73:1b:b6:0c:e1:e7:25:e6:ef:3d:
0d:a6:48:ad:d1:14:b0:85:78:e8:a3:37:50:60:cb:76:55:d3:
3b:02:e6:89:c5:4a:bb:94:39:9b:ec:5f:0b:9b:52:9f:ec:1c:
c9:ee:47:97:dc:2e:35:73:e2:9f:c7:1e:6d:03:06:9f:23:16:
dc:86:91:7b:cf:e1:18:85:bd:0f:b2:46:fb:13:b7:e1:43:31:
aa:da:73:10:fe:a7:0b:11:9d:b4:a3:0f:50:0d:21:33:ae:b9:
df:3a:4a:b9:84:4c:7b:81:9a:a4:b6:13:be:b1:c3:5b:5f:25:
c9:ee:7f:b5:ce:81:3f:3a:9d:4a:be:3f:ea:68:5e:4a:4b:db:
01:d2:59:86:65:7f:47:12:d1:d8:e4:c1:01:b4:45:c7:a7:aa:
d6:43:47:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:37 2024 by rpki-client on console-fra.rpki-client.org