Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/h5Z84X7pcanwiyYLvD93dg2zqTY.roa
File: h5Z84X7pcanwiyYLvD93dg2zqTY.roa (raw, json)
Hash identifier: 7Nk+aNa4RWBlT7PgG/YTDd/9xGGgDcB3s9AGn8q3OuI=
Subject key identifier: 87:96:7C:E1:7E:E9:71:A9:F0:8B:26:0B:BC:3F:77:76:0D:B3:A9:36
Certificate issuer: /CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Certificate serial: 018CE423EAA799FF8ED5DAE58A1B2472CACC
Authority key identifier: E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/h5Z84X7pcanwiyYLvD93dg2zqTY.roa
Signing time: Sun 07 Jan 2024 13:36:48 +0000
ROA not before: Sun 07 Jan 2024 13:36:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 89.23.78.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Jan 2024 08:21:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:e4:23:ea:a7:99:ff:8e:d5:da:e5:8a:1b:24:72:ca:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Validity
Not Before: Jan 7 13:36:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=87967ce17ee971a9f08b260bbc3f77760db3a936
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:9e:58:89:52:92:28:a0:c1:a5:a0:e3:0d:58:
c6:09:ef:7f:4e:93:7b:18:14:04:97:e4:73:9f:e1:
c0:55:d8:2b:ca:c1:7b:2b:12:02:d2:b5:ef:43:63:
84:79:c6:d3:be:d2:2a:c7:48:ce:1b:65:da:2a:a2:
75:e2:1f:84:5d:7b:7c:40:f0:5d:36:13:a7:bf:ea:
94:e6:4e:49:90:17:89:85:c3:6d:6b:ee:b2:64:98:
fc:32:49:93:a3:55:18:da:c1:24:ae:d5:7a:70:f8:
4b:4b:64:b3:26:ea:42:77:08:a1:3c:ec:a5:98:fe:
a2:19:cf:30:b8:29:fa:0a:28:5a:5f:cd:96:ee:7d:
97:d8:9d:0b:fd:e1:0f:d3:72:bf:7e:91:19:a3:40:
65:9d:c3:51:8d:43:13:10:38:68:3c:34:35:7c:7a:
30:8e:c9:3d:f5:77:4a:b5:16:99:d5:e1:c8:52:91:
54:eb:bb:cc:a0:08:17:b2:bd:54:9e:25:01:f5:c3:
f8:95:eb:68:c4:1c:06:bc:42:f4:a5:69:32:00:46:
c3:04:dc:6b:f9:18:66:f9:93:ed:55:d6:36:f1:2e:
8f:84:99:59:be:7f:2b:8b:14:a1:78:9f:6e:ec:c2:
57:a7:25:cd:f3:2d:db:90:ee:28:06:0c:1c:56:12:
91:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:96:7C:E1:7E:E9:71:A9:F0:8B:26:0B:BC:3F:77:76:0D:B3:A9:36
X509v3 Authority Key Identifier:
keyid:E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/h5Z84X7pcanwiyYLvD93dg2zqTY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.78.0/24
Signature Algorithm: sha256WithRSAEncryption
64:be:f8:df:69:f1:41:06:88:f7:06:98:ae:ea:01:c6:15:56:
b0:f3:63:d6:60:3f:8c:a5:2d:4e:45:b7:87:a1:a2:1f:46:61:
db:be:44:26:18:ed:20:c3:fe:e7:70:33:23:44:a0:19:b1:0b:
06:a6:db:bc:af:ce:95:9f:8f:0a:2b:02:b0:21:56:c1:c5:86:
cb:30:38:54:3e:93:08:35:b5:d3:96:33:3f:69:a3:ce:f8:38:
e2:4f:b7:b0:d3:b2:2c:e6:99:97:b1:fc:6a:24:b3:5a:32:80:
3b:1e:75:de:ba:1c:d9:a0:5a:fa:57:d9:07:d0:07:c8:cf:95:
e9:51:2f:8b:a5:08:d3:30:fd:71:4a:50:dc:c5:cd:d1:9f:b5:
fe:4f:21:b7:88:56:60:84:c5:0f:a8:c9:c9:cf:bc:f6:4d:6d:
76:6d:2f:83:1a:2f:34:1b:48:09:bf:89:43:7d:02:ea:e5:64:
5f:5a:47:97:29:e9:fd:bd:f0:27:df:af:1e:3a:24:ae:b8:29:
b5:ae:3f:a2:75:31:a8:48:e2:b9:26:3a:0e:96:91:35:29:3d:
d3:ba:f5:1e:6f:60:13:14:14:0f:39:8a:a0:8b:ec:bd:cf:eb:
5e:d2:38:89:61:66:3f:69:a5:98:f5:95:68:40:d2:17:ae:c3:
4b:c2:06:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:45 2024 by rpki-client on console-fra.rpki-client.org