Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/0V4d-C_yv5nyjvTgoaGp7yBHCoI.roa
File: 0V4d-C_yv5nyjvTgoaGp7yBHCoI.roa (raw, json)
Hash identifier: DWnOMEPMHYEtkglFnXt5QsozJdF9AE8ZmMr7ffpQTmU=
Subject key identifier: D1:5E:1D:F8:2F:F2:BF:99:F2:8E:F4:E0:A1:A1:A9:EF:20:47:0A:82
Certificate issuer: /CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Certificate serial: 018CC424927A34A0B7D4309BABA1AD178D81
Authority key identifier: E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/0V4d-C_yv5nyjvTgoaGp7yBHCoI.roa
Signing time: Mon 01 Jan 2024 08:29:40 +0000
ROA not before: Mon 01 Jan 2024 08:29:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199545
IP address blocks: 89.23.86.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 Apr 2024 08:07:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:92:7a:34:a0:b7:d4:30:9b:ab:a1:ad:17:8d:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Validity
Not Before: Jan 1 08:29:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d15e1df82ff2bf99f28ef4e0a1a1a9ef20470a82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:f7:71:5d:74:55:9c:e9:db:fc:58:38:bf:80:
31:fc:ab:f5:b4:b2:4a:f6:03:a2:c3:d9:97:a3:3c:
f1:4d:87:03:5a:70:63:dd:23:84:f7:d3:ea:7b:b7:
01:8c:77:92:e6:de:60:ba:7c:ad:75:d0:c9:a3:a2:
fe:b5:f1:e6:14:a7:cd:cb:1a:2d:60:90:40:2e:70:
d7:29:b4:d2:a4:9d:53:84:fe:92:4f:c6:27:78:d4:
a5:7a:23:49:6a:34:71:5a:5f:1c:c3:c5:c6:f9:90:
a5:62:54:4d:09:d4:c9:6e:2f:c6:d9:bc:fe:bf:bb:
6b:5c:fb:1b:66:8b:8f:9c:9a:e6:7b:2f:29:d3:7a:
fc:57:73:5b:0e:7d:a7:07:bb:5b:ab:1f:93:43:64:
41:6b:68:b7:4e:9e:bd:52:62:6f:02:16:8b:bc:80:
e9:92:84:1e:d3:0e:a1:f3:10:48:40:bf:d0:10:c1:
78:31:13:c5:69:ae:06:a8:b4:2c:17:80:8b:e7:5a:
30:0b:39:82:ff:fd:01:66:3f:8c:c2:7a:ca:1e:14:
29:92:97:38:84:3b:c2:c2:1d:8f:9f:ae:5b:fc:74:
f5:68:c5:5e:59:3c:4e:7a:c7:b0:2e:35:22:bb:a8:
da:17:4d:ec:a9:69:38:fa:af:36:58:14:7b:61:52:
2a:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:5E:1D:F8:2F:F2:BF:99:F2:8E:F4:E0:A1:A1:A9:EF:20:47:0A:82
X509v3 Authority Key Identifier:
keyid:E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/0V4d-C_yv5nyjvTgoaGp7yBHCoI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.86.0/24
Signature Algorithm: sha256WithRSAEncryption
20:56:97:00:d0:40:58:09:43:9b:88:a4:07:0e:f3:53:52:9b:
0f:58:fa:50:71:a1:0f:01:f3:e8:b7:80:d7:b1:e2:92:80:42:
00:65:71:e4:f7:c8:75:46:7d:5f:af:0c:08:1d:67:8c:8a:11:
40:d6:ec:2e:56:56:c3:ea:68:64:98:94:fe:58:5a:f5:1a:a6:
03:3f:71:b5:ea:17:4f:5c:21:fd:b2:ca:ca:1e:9a:fa:ba:6c:
6e:b1:d4:56:7e:83:74:da:bc:e2:71:9f:b3:68:ad:ae:21:e0:
8b:e2:d3:05:26:67:af:ee:08:89:a8:85:46:d7:e8:a9:b8:14:
ef:cc:9a:5e:1c:3f:99:07:d0:eb:48:19:b4:31:dc:a8:d0:4f:
0c:ca:f8:ff:1b:a3:41:c9:50:30:8e:6a:2a:df:63:2c:81:59:
e2:a8:83:c5:44:9d:be:32:70:51:fb:62:f9:6a:9e:04:0e:a3:
6e:9e:72:e1:45:15:24:1d:df:91:0c:ba:df:c6:00:48:fd:cc:
f7:40:64:0c:d0:43:4c:26:d6:fd:73:ed:95:78:95:c0:65:3e:
e2:20:ed:7b:97:51:14:07:2f:72:5a:3b:0b:57:7c:15:7c:42:
fa:87:a2:d1:c6:a2:fe:d7:87:c1:42:30:15:c0:02:4a:81:3c:
dc:39:f2:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:41 2024 by rpki-client on console-ams.rpki-client.org