Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/1-phn-f2kPlqymZhclK9ung5sRc8.roa
File: 1-phn-f2kPlqymZhclK9ung5sRc8.roa (raw, json)
Hash identifier: 53cFdcwvptPOWrENAZhnPMz4p/wIIzaJcUi60dDkKgc=
Subject key identifier: FA:98:67:F9:FD:A4:3E:5A:B2:99:98:5C:94:AF:6E:9E:0E:6C:45:CF
Certificate issuer: /CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Certificate serial: 018D82A7409C73E2AB7BE9C9FE9D8CF2763A
Authority key identifier: E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/1-phn-f2kPlqymZhclK9ung5sRc8.roa
Signing time: Wed 07 Feb 2024 08:20:15 +0000
ROA not before: Wed 07 Feb 2024 08:20:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 89.23.83.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Feb 2024 09:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:82:a7:40:9c:73:e2:ab:7b:e9:c9:fe:9d:8c:f2:76:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Validity
Not Before: Feb 7 08:20:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fa9867f9fda43e5ab299985c94af6e9e0e6c45cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:00:0f:e1:9a:45:95:bc:52:f6:b8:be:33:28:
fd:25:d0:12:f0:2a:68:bd:08:55:49:08:69:26:2a:
a0:43:d3:f3:28:01:1c:79:64:39:c2:fe:82:bd:92:
09:34:44:ad:7f:b1:70:89:dc:7c:62:50:c2:ae:0b:
9b:b3:91:43:8e:e8:2a:bc:b3:b1:79:73:0a:ac:a9:
34:89:e7:5f:a3:97:2d:8a:ab:8f:32:43:2b:49:ef:
ce:ed:11:bf:02:7c:45:de:27:dc:a6:9a:cf:d6:e2:
7b:f4:b7:af:e5:f8:84:c2:80:d4:7a:5d:5f:64:3c:
19:78:ce:be:dd:47:34:dc:62:2a:54:82:b0:d7:53:
b6:6f:09:ef:28:6f:2b:be:13:ec:23:cc:91:96:4c:
e6:d9:4a:23:45:58:0c:48:ae:4b:0d:f3:2d:56:0f:
dc:4f:ae:33:6a:33:3c:b8:03:f0:4f:b3:35:06:f7:
da:0f:03:21:ac:1f:d2:20:32:05:99:76:9e:6e:00:
fb:39:77:16:ae:49:6a:b3:d4:73:5c:a6:b1:ca:3e:
a1:6f:04:d8:55:53:af:98:05:f5:26:24:33:3e:2f:
9d:4c:16:e4:4b:ed:91:db:1b:da:72:5e:80:c6:30:
8a:a1:d2:d8:c8:e0:da:7f:a3:b2:e3:3d:80:ef:87:
35:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:98:67:F9:FD:A4:3E:5A:B2:99:98:5C:94:AF:6E:9E:0E:6C:45:CF
X509v3 Authority Key Identifier:
keyid:E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/1-phn-f2kPlqymZhclK9ung5sRc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.83.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:ed:e4:e2:e8:00:ad:3d:86:1b:19:c0:06:a9:57:71:65:51:
6e:93:43:18:35:25:cd:c7:f5:f1:dd:ab:c7:11:60:f3:d9:15:
71:bb:d9:5d:6f:24:2d:da:1c:93:f3:eb:77:57:5f:b1:e9:87:
18:20:05:5a:46:a7:59:63:d9:6f:ff:b3:e1:8b:0f:63:bb:16:
8a:66:38:d7:eb:8c:97:9e:d6:0f:f1:e7:be:9d:99:bb:38:b5:
53:f7:2e:33:e2:7b:39:8c:01:05:e6:b1:fa:dc:62:2e:9a:e4:
74:c4:2a:f0:bc:7d:4f:e4:4a:22:fe:30:c5:52:06:02:65:21:
c1:29:d5:bb:02:44:f6:a0:d7:5d:de:4f:7d:53:fb:68:5a:5f:
cd:87:46:f8:3d:d6:0a:82:6b:cc:6b:d6:34:7d:31:a8:4a:45:
bc:09:84:f0:6b:24:26:ac:d5:6b:2f:6f:9a:bb:43:64:f1:61:
57:60:9b:af:48:26:db:cd:85:f8:1c:f9:c4:9d:67:5b:f6:bb:
b4:ef:fb:6c:87:7b:82:1c:85:d1:39:c1:49:d2:65:8d:67:cf:
aa:8a:2b:95:e8:b2:31:08:68:35:65:d3:df:cf:63:4c:a5:0a:
d0:eb:2b:25:e6:f3:c4:e4:4d:19:e9:a0:eb:65:7f:a7:bc:2d:
97:68:b6:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:45 2024 by rpki-client on console-fra.rpki-client.org