Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/9EbnZOPc36nbEsF5nqYyEhvu9Fw.roa
File: 9EbnZOPc36nbEsF5nqYyEhvu9Fw.roa (raw, json)
Hash identifier: QpdkJKeTxMVNPz2N6PCA2OrMjf8bubunmDPI3toT9eE=
Subject key identifier: F4:46:E7:64:E3:DC:DF:A9:DB:12:C1:79:9E:A6:32:12:1B:EE:F4:5C
Certificate issuer: /CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Certificate serial: 0188959D46C545FF85CBBF1679095BB89F46
Authority key identifier: E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/9EbnZOPc36nbEsF5nqYyEhvu9Fw.roa
Signing time: Wed 07 Jun 2023 11:28:12 +0000
ROA not before: Wed 07 Jun 2023 11:28:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50868
IP address blocks: 89.23.89.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:95:9d:46:c5:45:ff:85:cb:bf:16:79:09:5b:b8:9f:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Validity
Not Before: Jun 7 11:28:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f446e764e3dcdfa9db12c1799ea632121beef45c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6b:52:c6:b2:fa:0e:a6:fb:39:7d:50:d3:d4:
8b:9d:c9:dd:ef:3e:cb:88:4f:b2:e0:20:73:8f:d2:
2c:76:3e:56:0a:56:94:8b:5c:4b:02:64:54:52:fb:
97:57:56:13:51:fc:4c:a3:7b:1e:c7:1c:59:1b:bb:
40:23:7e:e6:8d:08:09:3f:e3:41:fd:ac:f5:e2:7f:
76:82:ff:97:b8:34:4e:e3:c6:ba:9b:20:72:c1:e5:
ef:8b:74:6e:a7:9a:60:7b:ee:0e:83:30:8c:34:24:
9c:cd:48:6e:71:a6:4d:2a:13:6d:cc:c1:42:e1:68:
ae:53:d3:b3:a3:4c:1c:0e:17:2d:cc:a6:bf:12:c2:
ab:2a:6c:54:52:3c:a1:ce:68:00:00:1d:f5:78:bb:
60:6f:c5:b8:7d:46:25:8b:e1:83:fd:1c:3a:1a:08:
0d:b7:29:65:82:bd:11:f6:03:02:e4:fa:e5:6e:59:
f0:bf:ce:72:84:2a:36:16:51:cd:31:e2:3c:b3:65:
fc:1f:31:42:7e:28:e3:04:0a:5f:28:88:03:3e:ed:
a8:59:08:c8:02:64:c6:19:08:10:f9:de:2b:56:b3:
05:58:f1:9a:02:d3:ec:4e:2d:9b:52:a6:cb:5e:ae:
24:8b:d2:72:ee:6f:f2:83:af:5c:2e:78:aa:f3:2b:
88:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:46:E7:64:E3:DC:DF:A9:DB:12:C1:79:9E:A6:32:12:1B:EE:F4:5C
X509v3 Authority Key Identifier:
keyid:E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/9EbnZOPc36nbEsF5nqYyEhvu9Fw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.89.0/24
Signature Algorithm: sha256WithRSAEncryption
17:f0:9a:ea:cc:9e:c5:3a:73:6c:4e:0a:9b:e1:d1:b5:19:0a:
27:f2:66:73:30:a3:3e:34:ac:fe:e3:a1:50:51:9e:13:4a:91:
79:37:e3:a6:48:69:f1:cd:10:76:fc:d0:bd:da:bc:37:9d:37:
aa:b8:30:bc:2f:7f:cd:12:08:9c:9f:27:c2:b7:0f:6a:b7:85:
94:bd:a6:30:80:88:54:dc:d1:23:8e:fa:e0:1a:3d:3f:7b:d8:
b2:7d:55:3d:73:0e:95:31:b3:dc:6d:ee:1d:ed:60:a7:38:8a:
dc:28:89:03:70:0e:8d:80:9a:a3:cc:c6:8c:b7:57:d8:96:4e:
d7:03:d4:0b:3c:e9:57:63:fc:56:95:68:04:1e:9d:cd:50:59:
4d:a3:22:4b:c7:f5:bd:99:3e:85:42:32:16:03:54:b3:21:ab:
ad:a2:e9:bd:71:e9:c5:de:69:f3:c3:b0:cc:08:43:21:db:14:
b9:9f:74:76:30:bc:c4:d7:e8:06:d3:f0:b8:3f:d8:cb:49:23:
ba:d4:2a:56:3d:f4:b4:60:92:cb:9b:eb:d4:cd:2b:f7:6f:78:
d8:bd:de:6d:84:f9:a6:0b:fd:ce:cc:e0:77:1e:9a:37:db:38:
bd:9c:96:af:6c:df:84:af:c6:48:1a:21:85:28:a9:4f:51:cf:
42:43:c3:76
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYiVnUbFRf+Fy78WeQlbuJ9GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU5NzEzZWYyNTI3N2UxM2RkNzNmNDQxOTZmZGE1Y2VjMGZk
OWNlMTYwHhcNMjMwNjA3MTEyODEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNDQ2ZTc2NGUzZGNkZmE5ZGIxMmMxNzk5ZWE2MzIxMjFiZWVmNDVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs2tSxrL6Dqb7OX1Q09SLncnd7z7L
iE+y4CBzj9Isdj5WClaUi1xLAmRUUvuXV1YTUfxMo3sexxxZG7tAI37mjQgJP+NB
/az14n92gv+XuDRO48a6myByweXvi3Rup5pge+4OgzCMNCSczUhucaZNKhNtzMFC
4WiuU9Ozo0wcDhctzKa/EsKrKmxUUjyhzmgAAB31eLtgb8W4fUYli+GD/Rw6GggN
tyllgr0R9gMC5Prlblnwv85yhCo2FlHNMeI8s2X8HzFCfijjBApfKIgDPu2oWQjI
AmTGGQgQ+d4rVrMFWPGaAtPsTi2bUqbLXq4ki9Jy7m/yg69cLniq8yuIAQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPRG52Tj3N+p2xLBeZ6mMhIb7vRcMB8GA1UdIwQY
MBaAFOlxPvJSd+E91z9EGW/aXOwP2c4WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNlhFLThsSjM0VDNYUDBRWmI5cGM3QV9aemhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9lMTc2ZWItNTZmMi00ODA3LWIxMDEt
MGY2NmMxODg3OTE2LzEvOUViblpPUGMzNm5iRXNGNW5xWXlFaHZ1OUZ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS9lMTc2ZWItNTZmMi00ODA3LWIxMDEtMGY2NmMxODg3OTE2
LzEvNlhFLThsSjM0VDNYUDBRWmI5cGM3QV9aemhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWRdZMA0G
CSqGSIb3DQEBCwUAA4IBAQAX8JrqzJ7FOnNsTgqb4dG1GQon8mZzMKM+NKz+46FQ
UZ4TSpF5N+OmSGnxzRB2/NC92rw3nTequDC8L3/NEgicnyfCtw9qt4WUvaYwgIhU
3NEjjvrgGj0/e9iyfVU9cw6VMbPcbe4d7WCnOIrcKIkDcA6NgJqjzMaMt1fYlk7X
A9QLPOlXY/xWlWgEHp3NUFlNoyJLx/W9mT6FQjIWA1SzIautoum9cenF3mnzw7DM
CEMh2xS5n3R2MLzE1+gG0/C4P9jLSSO61CpWPfS0YJLLm+vUzSv3b3jYvd5thPmm
C/3OzOB3Hpo32zi9nJavbN+Er8ZIGiGFKKlPUc9CQ8N2
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:45 2024 by rpki-client on console-fra.rpki-client.org