Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/9c6e07-693f-46ce-8646-d7abcd0ef64a/1/98nI4BDNMgenObWs7PA6gDXx-oE.roa
File: 98nI4BDNMgenObWs7PA6gDXx-oE.roa (raw, json)
Hash identifier: JhJ8qFDpEIlYI5JI0UNVUUb4PpmteWR0lbGT1zttBSY=
Subject key identifier: F7:C9:C8:E0:10:CD:32:07:A7:39:B5:AC:EC:F0:3A:80:35:F1:FA:81
Certificate issuer: /CN=8a5a3417fbe25c2e467c18485c181a7776f96ff4
Certificate serial: 018EB8410ABC4A84E9024FA4A32E421202DA
Authority key identifier: 8A:5A:34:17:FB:E2:5C:2E:46:7C:18:48:5C:18:1A:77:76:F9:6F:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ilo0F_viXC5GfBhIXBgad3b5b_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/9c6e07-693f-46ce-8646-d7abcd0ef64a/1/98nI4BDNMgenObWs7PA6gDXx-oE.roa
Signing time: Sun 07 Apr 2024 11:10:54 +0000
ROA not before: Sun 07 Apr 2024 11:10:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199707
IP address blocks: 89.28.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 07 Jun 2024 10:34:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:b8:41:0a:bc:4a:84:e9:02:4f:a4:a3:2e:42:12:02:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a5a3417fbe25c2e467c18485c181a7776f96ff4
Validity
Not Before: Apr 7 11:10:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f7c9c8e010cd3207a739b5acecf03a8035f1fa81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:81:3e:6d:81:de:46:32:f4:39:85:55:62:8d:
c9:05:75:d6:9f:14:50:81:b5:d3:f3:61:c1:47:8c:
e3:9f:81:26:85:a2:d2:84:57:b4:57:e2:ec:46:fc:
4a:02:1c:ec:99:1e:ee:0f:d8:e3:d2:4d:ad:76:74:
dc:19:56:fb:89:33:27:83:45:c4:35:7d:eb:a2:2a:
92:29:ce:af:0d:06:8c:94:ff:22:ec:2d:dc:79:86:
b0:45:da:6d:0a:12:90:17:90:e5:ce:3b:0a:0d:c3:
25:d1:45:b2:37:13:1e:f0:d3:1a:3f:85:51:69:65:
6a:f4:f5:9f:a0:99:c3:df:dc:d1:66:27:72:11:01:
bd:e7:b1:da:38:93:61:86:70:63:31:d2:13:84:6d:
db:30:60:43:84:41:49:60:1e:0d:83:15:90:b1:0a:
ab:30:1a:27:1c:33:13:7c:5a:47:09:73:79:b8:f1:
f3:20:c9:f2:7b:be:a4:ac:b8:e1:63:47:3f:64:d8:
a6:5a:f3:48:43:df:44:88:31:09:cf:5e:dd:d4:8c:
12:1d:ff:5d:44:e4:25:77:59:7e:32:17:f6:f6:aa:
1f:6a:bd:60:3b:90:1a:bc:f0:7d:35:66:03:98:1d:
72:36:77:c5:20:ce:b8:bd:8e:9d:b4:7b:db:c4:87:
84:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:C9:C8:E0:10:CD:32:07:A7:39:B5:AC:EC:F0:3A:80:35:F1:FA:81
X509v3 Authority Key Identifier:
keyid:8A:5A:34:17:FB:E2:5C:2E:46:7C:18:48:5C:18:1A:77:76:F9:6F:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ilo0F_viXC5GfBhIXBgad3b5b_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/9c6e07-693f-46ce-8646-d7abcd0ef64a/1/98nI4BDNMgenObWs7PA6gDXx-oE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/9c6e07-693f-46ce-8646-d7abcd0ef64a/1/ilo0F_viXC5GfBhIXBgad3b5b_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.28.239.0/24
Signature Algorithm: sha256WithRSAEncryption
10:65:fd:a3:e2:b5:f4:c9:f4:11:c4:36:45:1b:7d:54:94:2a:
1c:77:56:08:70:06:d1:6b:c7:33:e6:49:f4:5e:96:0c:ea:b6:
6c:62:0d:44:ff:55:6e:4a:a4:2f:90:eb:90:2c:4f:f5:34:1f:
d5:39:4e:c7:c4:92:f5:34:a2:5a:a1:71:53:4e:f6:0b:71:0f:
10:a5:a7:ae:51:b5:82:8c:dc:7c:12:f7:11:c0:63:19:2b:69:
2b:2d:1d:19:0e:b8:5f:97:ea:3a:8b:98:56:cc:72:e8:68:36:
14:5f:34:1b:47:39:d0:9a:82:4f:c1:24:39:fc:c9:85:32:fb:
83:e5:cb:ae:86:8d:b2:ee:04:14:2f:fd:50:b2:cf:f3:4c:2c:
18:ba:60:2a:eb:cd:18:1b:76:63:f2:8b:ea:05:00:a4:1d:25:
72:36:15:8a:8b:84:5b:2c:bb:c1:9e:3a:48:9b:6b:3b:df:f4:
ef:de:d3:18:fc:d6:96:90:ad:d6:9c:59:db:4f:4a:12:42:be:
05:bb:fb:2b:67:25:14:0c:89:17:89:72:a9:ac:46:44:49:36:
e8:7f:90:e7:d8:a4:fe:a8:88:e6:87:bc:75:b0:51:56:dd:5a:
6c:47:07:ea:82:9e:e5:e0:dc:ca:8f:44:9c:42:35:04:16:ea:
7e:3e:39:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 14:48:47 2024 by rpki-client on console-ams.rpki-client.org