Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/RxfmvrgeKzy0pfwiRTDwYPfKK3o.roa
File: RxfmvrgeKzy0pfwiRTDwYPfKK3o.roa (raw, json)
Hash identifier: V2uNAGxZtmXi1i2v4wRCNtWgNIoaII4Yr9oGUGxqTfw=
Subject key identifier: 47:17:E6:BE:B8:1E:2B:3C:B4:A5:FC:22:45:30:F0:60:F7:CA:2B:7A
Certificate issuer: /CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e
Certificate serial: 01857139AEB9A0DDCD019DEB6AECA2CC74B4
Authority key identifier: 2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/RxfmvrgeKzy0pfwiRTDwYPfKK3o.roa
Signing time: Mon 02 Jan 2023 06:44:43 +0000
ROA not before: Mon 02 Jan 2023 06:44:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203363
IP address blocks: 152.89.171.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:ae:b9:a0:dd:cd:01:9d:eb:6a:ec:a2:cc:74:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e
Validity
Not Before: Jan 2 06:44:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4717e6beb81e2b3cb4a5fc224530f060f7ca2b7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:26:4e:68:0a:dd:70:d6:a6:77:75:54:c2:b5:
6a:c3:16:ab:fb:4c:c1:b1:0e:3a:a2:02:8b:bd:25:
e4:4e:da:8d:aa:ec:6b:b6:db:93:d8:fb:eb:70:60:
85:6b:51:b3:3c:f0:da:98:68:36:85:39:7d:1e:5b:
5a:d5:2c:64:05:1a:df:31:7e:91:87:78:4d:ee:83:
06:d1:f2:9e:66:ff:6c:01:b5:ba:94:ea:eb:e6:37:
87:bb:54:df:a4:ab:f2:08:21:af:b9:8e:e9:1a:15:
62:e1:d5:9a:b0:8a:96:39:f6:9c:e9:18:8a:ce:32:
54:b0:77:17:73:b6:13:07:45:4f:5c:a1:7b:94:f4:
cd:fc:14:f5:6f:a5:98:7e:47:93:e3:d0:f8:9c:1e:
48:2d:27:fc:8b:26:da:e4:c4:5b:08:79:d5:ea:72:
a7:81:da:08:c6:ce:d5:88:56:db:b0:fe:6f:0a:e4:
f2:15:94:6b:43:2e:57:d6:27:17:36:46:d8:f6:88:
c4:36:4e:18:d3:37:cb:c1:cf:10:f3:b2:f1:c0:23:
05:79:7c:18:c5:9e:90:dc:cf:9e:39:bc:aa:9e:e0:
64:9c:ce:6c:81:fa:20:7b:be:78:e5:a5:96:8c:47:
41:a8:80:da:29:bd:df:f0:3f:2d:56:b5:ab:a3:1c:
a2:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:17:E6:BE:B8:1E:2B:3C:B4:A5:FC:22:45:30:F0:60:F7:CA:2B:7A
X509v3 Authority Key Identifier:
keyid:2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/RxfmvrgeKzy0pfwiRTDwYPfKK3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.89.171.0/24
Signature Algorithm: sha256WithRSAEncryption
93:59:24:71:d8:0e:8e:e1:9b:16:91:6e:2c:55:34:96:d8:e5:
96:fb:f0:c4:ac:66:23:cb:56:80:41:bc:4a:9b:54:da:7d:88:
c9:98:be:42:4b:b3:72:2d:b3:7c:d7:85:83:c9:b4:46:a1:f6:
f3:8b:de:40:85:e3:e6:c1:8b:67:39:7d:42:d0:ec:01:11:ea:
94:49:11:07:a0:87:e8:86:a2:9b:43:4f:85:85:6a:12:f5:9f:
3c:a2:ce:f9:d3:4e:98:7d:31:7a:3c:e1:98:2c:d3:0f:39:8b:
7e:11:4e:7e:1e:cf:d5:6a:90:b7:d9:c3:ce:e2:2c:87:6f:50:
d3:44:9d:98:65:b5:e1:bd:90:ec:cd:46:ce:14:80:48:6c:38:
3a:6d:48:73:d2:ff:7d:6e:32:31:6e:9f:e1:fa:bf:ef:b2:5a:
40:37:43:15:99:11:89:9e:04:fd:d5:79:cd:b6:6e:95:39:d1:
a7:7d:75:b7:e0:d0:39:0d:48:e7:d6:32:2b:21:0e:79:68:d2:
4c:2c:a7:da:af:a6:fd:9b:aa:28:09:34:28:47:65:d9:60:2c:
ad:b4:05:43:c1:97:a3:4f:c8:3c:dd:3f:85:42:4c:48:c4:93:
98:09:f7:08:65:f5:f2:87:dd:12:80:db:d1:75:f4:72:f3:6e:
98:7a:15:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:25 2024 by rpki-client on console-ams.rpki-client.org