Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/cc8f4a-4c02-404b-8d93-2cde65f3112a/1/yB1CrO2aJKoy5pCtNaW6JyJJsNI.roa
File: yB1CrO2aJKoy5pCtNaW6JyJJsNI.roa (raw, json)
Hash identifier: 7ibrddTXHW9IySAlxRKoPinoyFL4OJmxg8dG726GbqQ=
Subject key identifier: C8:1D:42:AC:ED:9A:24:AA:32:E6:90:AD:35:A5:BA:27:22:49:B0:D2
Certificate issuer: /CN=87be093097097c4457ff5aa3e5893c8c15432612
Certificate serial: 01856E2FB0C3C8EAE92296DF2ECAD9400B3C
Authority key identifier: 87:BE:09:30:97:09:7C:44:57:FF:5A:A3:E5:89:3C:8C:15:43:26:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h74JMJcJfERX_1qj5Yk8jBVDJhI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/cc8f4a-4c02-404b-8d93-2cde65f3112a/1/yB1CrO2aJKoy5pCtNaW6JyJJsNI.roa
Signing time: Sun 01 Jan 2023 16:34:57 +0000
ROA not before: Sun 01 Jan 2023 16:34:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210856
IP address blocks: 89.35.49.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:2f:b0:c3:c8:ea:e9:22:96:df:2e:ca:d9:40:0b:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87be093097097c4457ff5aa3e5893c8c15432612
Validity
Not Before: Jan 1 16:34:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c81d42aced9a24aa32e690ad35a5ba272249b0d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:1e:dc:cc:6f:45:dd:2c:da:19:02:0c:14:3d:
25:b2:e8:b4:76:d3:41:b5:31:43:1a:ad:31:2c:20:
f0:24:70:38:6c:2a:76:0e:26:c2:a0:82:93:23:87:
a2:2c:22:78:18:20:fb:2c:ac:06:35:a1:6d:cc:a8:
71:8e:0b:95:5c:bc:d8:20:00:9b:92:c4:47:02:3a:
e7:7b:44:64:70:14:b2:82:32:b5:13:ae:6f:eb:f8:
ca:5a:a4:a9:7b:f9:54:b4:db:61:bc:c8:91:8e:9f:
f8:5b:ce:1b:c2:53:99:a2:13:f2:be:6f:ba:61:f1:
62:de:0c:e5:81:61:92:04:8a:e8:76:90:7b:ef:3c:
07:1b:b5:40:58:b4:c1:85:cf:90:dc:8a:cf:a9:48:
1e:08:e8:65:ce:6b:8e:37:38:2a:3b:de:fd:79:8f:
3a:c2:e7:00:a3:ed:77:5b:aa:9b:80:90:82:84:87:
49:95:98:3c:06:9f:6a:ad:26:9c:f6:c6:ae:d4:5a:
1b:96:71:e0:5c:f5:4b:7f:d7:f1:10:12:0e:dc:dd:
f7:80:65:66:26:82:8e:da:19:64:77:15:a2:50:fb:
86:2e:82:30:dd:d3:e3:55:10:d7:1d:11:80:e3:be:
9b:ae:00:6b:5a:ba:93:85:77:b2:64:6d:2e:41:1d:
12:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:1D:42:AC:ED:9A:24:AA:32:E6:90:AD:35:A5:BA:27:22:49:B0:D2
X509v3 Authority Key Identifier:
keyid:87:BE:09:30:97:09:7C:44:57:FF:5A:A3:E5:89:3C:8C:15:43:26:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h74JMJcJfERX_1qj5Yk8jBVDJhI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/cc8f4a-4c02-404b-8d93-2cde65f3112a/1/yB1CrO2aJKoy5pCtNaW6JyJJsNI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/cc8f4a-4c02-404b-8d93-2cde65f3112a/1/h74JMJcJfERX_1qj5Yk8jBVDJhI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.35.49.0/24
Signature Algorithm: sha256WithRSAEncryption
59:df:74:b1:5c:77:ae:69:3e:13:0b:bd:0b:b9:e4:35:c3:94:
56:79:86:69:b5:b7:83:38:19:c9:af:5e:d9:0b:2d:38:04:ef:
c5:97:35:04:b2:18:4b:a1:d5:74:30:d0:36:a4:82:5f:ac:7b:
04:5a:f3:5f:7a:4f:fc:c9:56:24:db:1f:d6:d6:96:fd:ad:75:
6d:95:a5:da:b9:b1:46:59:4e:27:c4:e3:37:9a:60:59:55:b5:
9b:1d:22:43:04:bc:c9:5e:74:b4:11:14:f1:24:e5:40:50:a4:
58:d0:10:4a:8a:d2:9b:20:62:80:e4:01:7d:30:80:92:a0:27:
2d:73:c1:0d:1a:8a:45:4b:aa:03:4e:f9:dc:21:bf:b2:00:4a:
4a:48:b8:be:32:6a:74:b1:0e:1c:4a:9f:22:0b:08:51:9a:b2:
3c:7b:44:1c:ab:e8:17:1f:3b:30:e4:7b:43:d6:e3:f5:f8:ca:
40:fb:46:48:d3:64:98:54:66:2a:0c:94:7d:50:a5:ee:a4:0d:
b7:c9:25:a0:99:25:a9:58:b0:c8:5c:95:66:49:78:48:be:92:
d3:a4:d6:bb:2b:c8:f6:31:7e:b8:bb:0e:99:be:30:ad:1e:2c:
64:97:7e:ac:e9:dc:17:bc:fa:1c:96:39:49:72:85:2e:fa:31:
2e:c4:e6:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:45 2024 by rpki-client on console-ams.rpki-client.org