Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/s4LJwGaN1eaeCQ4PabVBYzmdPjU.roa
File: s4LJwGaN1eaeCQ4PabVBYzmdPjU.roa (raw, json)
Hash identifier: uFh8Y91TovzU8bujD+t1hB5rumH60kccjmQMazIQw9E=
Subject key identifier: B3:82:C9:C0:66:8D:D5:E6:9E:09:0E:0F:69:B5:41:63:39:9D:3E:35
Certificate issuer: /CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Certificate serial: 018CC4248F655165E7188D8DCEEC006D0A25
Authority key identifier: E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/s4LJwGaN1eaeCQ4PabVBYzmdPjU.roa
Signing time: Mon 01 Jan 2024 08:29:39 +0000
ROA not before: Mon 01 Jan 2024 08:29:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15731
IP address blocks: 89.23.78.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 07 Jan 2024 13:36:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:8f:65:51:65:e7:18:8d:8d:ce:ec:00:6d:0a:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Validity
Not Before: Jan 1 08:29:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b382c9c0668dd5e69e090e0f69b54163399d3e35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9b:05:20:1f:87:63:f9:19:63:8d:a2:0e:44:
1e:50:13:e6:7f:0a:5b:35:db:57:68:83:81:31:2a:
68:4e:ae:66:e3:d8:0e:ad:50:70:b9:ff:bb:ac:87:
22:0f:1f:16:6e:8f:8d:ef:af:47:49:77:b8:ef:c8:
c9:6c:b8:70:da:08:9f:26:2d:99:53:71:73:74:80:
41:bf:6a:f4:04:0a:53:1f:a6:c9:3e:3d:bc:39:61:
34:76:35:e9:52:98:e7:ef:d4:df:b6:c9:4d:f7:09:
d3:46:25:6f:2f:8f:49:0d:36:88:1b:fa:74:ce:fa:
0d:2f:f1:31:3d:a5:de:57:f1:85:b2:af:81:83:85:
00:2f:51:5b:59:25:c6:50:53:b4:bd:a9:5c:cf:31:
11:89:df:fb:80:8e:98:6e:ea:c8:7c:c1:27:ed:2d:
0a:3f:ec:fb:2e:c2:6a:7b:cc:27:f7:f0:78:1e:b0:
72:d2:82:54:3f:20:5e:c9:44:58:9a:7b:53:c2:62:
f5:46:c4:ed:5b:56:52:9a:a4:9b:3a:b8:ee:e5:28:
d0:ac:03:a1:c6:55:22:76:be:78:da:1b:61:a3:12:
9c:df:eb:5b:1c:d5:af:90:b0:af:b4:b5:11:f4:21:
7f:11:53:32:58:33:9e:2d:ce:39:9d:b6:ee:8d:3d:
4e:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:82:C9:C0:66:8D:D5:E6:9E:09:0E:0F:69:B5:41:63:39:9D:3E:35
X509v3 Authority Key Identifier:
keyid:E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/s4LJwGaN1eaeCQ4PabVBYzmdPjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.78.0/24
Signature Algorithm: sha256WithRSAEncryption
69:56:b7:d6:2a:4b:f5:07:ed:63:d8:ec:d4:b4:ed:98:93:4d:
9e:b2:f7:22:aa:b4:d9:82:17:27:57:6f:de:33:51:4b:fd:6a:
c7:cd:37:3e:ac:6e:91:3e:59:83:31:25:20:b4:08:21:fb:7c:
b8:d7:68:5e:da:62:a5:fe:0f:2b:a7:29:be:ec:a4:98:ea:2e:
0e:68:97:e8:32:5f:86:00:51:ea:ea:36:a8:a2:a6:4b:03:13:
16:49:03:18:66:d4:39:f7:e9:0f:1c:bb:5a:cd:8a:a3:80:e5:
12:8a:cc:d4:fb:f5:ec:b4:c9:b5:b8:e3:d3:79:9d:91:40:ef:
02:c7:71:a5:94:84:a5:49:b0:b7:5f:4e:6a:30:d0:73:81:11:
4d:1c:41:84:6a:16:bb:cd:2d:85:0b:68:fb:b6:9a:42:d5:5b:
6e:d5:46:0a:fe:9f:86:41:dd:d8:ff:e8:64:3a:56:4c:ac:cf:
0a:51:c5:39:18:52:53:4e:c3:64:ea:59:45:80:c4:7d:bf:f0:
8b:fa:01:b2:29:f9:4e:f5:3d:76:14:de:4d:73:a2:53:a9:87:
0f:9c:8b:fa:d1:1f:f5:cb:d8:3c:be:e4:c6:3d:e0:bb:9f:e6:
78:c8:4c:b5:13:bd:84:79:7d:86:1d:22:f7:ee:42:96:eb:27:
d1:ff:f4:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:45 2024 by rpki-client on console-fra.rpki-client.org