Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/Q-YTyebBVOhZiQTDuqO3M0Ar5Kk.roa
File: Q-YTyebBVOhZiQTDuqO3M0Ar5Kk.roa (raw, json)
Hash identifier: rxhe259NavqLv8x7eGI0VBCG+oCFBi/t/SUEbhRQbaA=
Subject key identifier: 43:E6:13:C9:E6:C1:54:E8:59:89:04:C3:BA:A3:B7:33:40:2B:E4:A9
Certificate issuer: /CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Certificate serial: 0190C0A7B39877E47E7C9E381D30E64245D5
Authority key identifier: E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/Q-YTyebBVOhZiQTDuqO3M0Ar5Kk.roa
Signing time: Wed 17 Jul 2024 12:25:34 +0000
ROA not before: Wed 17 Jul 2024 12:25:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 89.23.88.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Jul 2024 09:40:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:c0:a7:b3:98:77:e4:7e:7c:9e:38:1d:30:e6:42:45:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Validity
Not Before: Jul 17 12:25:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=43e613c9e6c154e8598904c3baa3b733402be4a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:b9:9a:51:cc:60:20:5e:09:36:03:c0:25:9d:
a1:c8:0a:3d:a9:2e:35:14:91:1e:28:37:e8:80:ab:
bc:49:73:c0:71:36:c5:a1:59:f4:f9:7f:02:ce:cb:
1e:22:40:eb:a9:7e:e8:16:d6:f2:5f:86:32:96:4b:
2f:a6:71:64:a0:22:68:82:b5:37:11:10:c9:a8:7e:
5c:3a:32:b4:c8:ee:67:6c:4b:4e:55:6c:3c:7c:9e:
27:bd:60:f6:70:38:0c:51:7f:76:1c:e8:9c:c9:8a:
f5:03:2e:98:ff:8c:6b:e2:82:7c:c3:af:76:48:d1:
1d:f7:2d:d1:f1:38:a1:13:ab:3c:a7:83:0b:8c:1f:
b6:98:5e:74:f4:0e:39:34:0f:0b:fb:e1:41:35:24:
97:17:dd:94:c7:7e:7c:e9:96:bb:03:08:ad:6f:fb:
4e:2e:26:52:36:dc:0d:f7:56:12:f4:76:05:10:f7:
c2:15:da:b8:9f:3c:b7:e2:44:78:80:c8:99:2e:37:
ab:27:f8:c3:84:29:fd:f3:bc:5b:4e:8a:9e:9b:c1:
4e:f2:61:22:9a:79:16:b2:b7:33:61:d9:85:66:d5:
4a:b7:14:f4:26:fb:38:d5:ab:77:26:b0:19:80:7d:
22:6b:66:45:5d:d2:12:df:4d:b3:bd:3d:d0:0c:39:
0a:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:E6:13:C9:E6:C1:54:E8:59:89:04:C3:BA:A3:B7:33:40:2B:E4:A9
X509v3 Authority Key Identifier:
keyid:E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/Q-YTyebBVOhZiQTDuqO3M0Ar5Kk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.88.0/24
Signature Algorithm: sha256WithRSAEncryption
86:02:43:5d:c7:3d:0d:6a:72:b4:93:ab:4c:ee:70:83:4f:8f:
71:d2:fc:61:f8:4f:d6:3a:d9:a5:1c:4e:0e:ec:74:13:ed:03:
39:20:9b:7e:35:b3:fc:a9:af:0a:fc:a4:c2:3a:f7:45:b3:d0:
91:f3:d3:ef:bf:6c:93:c1:91:f0:3e:61:ef:ad:7e:74:c5:a9:
72:64:eb:d8:06:59:03:10:b0:a9:91:aa:82:e0:f2:d1:76:1b:
dc:c1:80:c5:cf:c1:38:3e:c1:fb:8e:49:84:e3:3c:c7:8c:57:
98:cd:13:d2:3e:08:65:0e:3e:63:e3:98:1e:72:86:dd:99:9c:
16:b7:8d:29:f1:e7:04:ea:8f:c6:57:c3:ed:19:f8:bc:e6:de:
57:94:2f:d0:73:e5:59:fb:c0:14:0a:b5:02:47:15:47:d5:56:
48:97:b9:de:68:19:0e:7b:dd:d1:b4:e3:74:df:c5:48:1e:e7:
c9:2c:58:ba:8f:31:ff:05:d1:6a:64:d7:72:a0:0d:ce:ec:68:
62:ab:0a:77:72:d7:07:c6:b5:7e:70:85:bc:0d:9f:4f:27:fd:
0d:14:8e:44:1e:0a:d7:43:3b:ad:ff:87:c0:7d:ed:18:66:77:
cf:61:ae:0a:66:18:8e:1e:b1:c1:2a:8d:5d:29:20:33:a6:ad:
0d:5c:50:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 18 12:56:39 2024 by rpki-client on console-ams.rpki-client.org