Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/9c6e07-693f-46ce-8646-d7abcd0ef64a/1/AdwKjhhGcQRGIBglTcRvNSi0y3w.roa
File: AdwKjhhGcQRGIBglTcRvNSi0y3w.roa (raw, json)
Hash identifier: JTgeiE5YG7w1H4jQkDx1VNmtxpzMbmJcPM7YZTYt2WA=
Subject key identifier: 01:DC:0A:8E:18:46:71:04:46:20:18:25:4D:C4:6F:35:28:B4:CB:7C
Certificate issuer: /CN=8a5a3417fbe25c2e467c18485c181a7776f96ff4
Certificate serial: 018F0F1CAD94D6FF738CD9DB15AE89E7B51D
Authority key identifier: 8A:5A:34:17:FB:E2:5C:2E:46:7C:18:48:5C:18:1A:77:76:F9:6F:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ilo0F_viXC5GfBhIXBgad3b5b_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/9c6e07-693f-46ce-8646-d7abcd0ef64a/1/AdwKjhhGcQRGIBglTcRvNSi0y3w.roa
Signing time: Wed 24 Apr 2024 07:58:08 +0000
ROA not before: Wed 24 Apr 2024 07:58:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 89.28.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 Apr 2024 11:15:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:0f:1c:ad:94:d6:ff:73:8c:d9:db:15:ae:89:e7:b5:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a5a3417fbe25c2e467c18485c181a7776f96ff4
Validity
Not Before: Apr 24 07:58:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=01dc0a8e18467104462018254dc46f3528b4cb7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:7e:4c:9c:71:90:6a:ba:b6:b4:d7:58:e9:02:
15:9c:31:66:c6:36:33:09:03:d1:ae:79:26:b7:af:
08:26:1d:b1:10:e2:8f:38:00:63:89:0f:b2:82:d3:
07:97:49:e5:67:f7:54:32:af:42:21:71:f9:cd:4d:
0d:3b:cf:63:e8:e9:fe:36:72:41:a4:59:15:f1:0d:
e4:c2:80:6d:04:2c:5a:b6:35:b4:4d:8e:48:bd:a3:
5c:9d:88:a7:75:45:5d:f7:76:15:19:ae:97:46:8b:
7a:5a:e8:7d:d8:eb:8b:2f:9f:b3:d0:0d:6e:8d:ba:
3c:c8:96:ff:8d:4f:3b:6b:57:9a:05:4d:3d:11:16:
0c:0d:ce:62:0f:88:af:a0:77:d9:4f:db:7c:28:85:
1b:c4:6f:1a:a7:7e:6b:cd:ba:cd:10:de:c8:d1:26:
fd:f4:14:90:f3:59:5d:22:56:9b:e0:95:71:0d:6e:
ca:3d:1e:df:06:ea:53:e5:ef:e4:2c:22:38:1c:f4:
5d:d3:e2:9e:e8:9a:bc:ea:a7:a6:30:82:f9:e6:a8:
76:93:6f:d2:72:8d:9e:bc:90:73:1b:e0:1e:93:77:
26:50:24:e8:c1:3e:22:a8:c4:35:e3:54:9c:93:cc:
ef:30:6b:77:3a:b1:59:96:47:cb:62:ca:3c:4e:8c:
4c:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:DC:0A:8E:18:46:71:04:46:20:18:25:4D:C4:6F:35:28:B4:CB:7C
X509v3 Authority Key Identifier:
keyid:8A:5A:34:17:FB:E2:5C:2E:46:7C:18:48:5C:18:1A:77:76:F9:6F:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ilo0F_viXC5GfBhIXBgad3b5b_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/9c6e07-693f-46ce-8646-d7abcd0ef64a/1/AdwKjhhGcQRGIBglTcRvNSi0y3w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/9c6e07-693f-46ce-8646-d7abcd0ef64a/1/ilo0F_viXC5GfBhIXBgad3b5b_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.28.237.0/24
Signature Algorithm: sha256WithRSAEncryption
72:7f:ea:46:dd:66:5e:9e:1e:bf:c2:0a:52:6d:56:0b:b0:8a:
8a:6a:49:a9:ef:c5:d8:3e:3a:72:a8:05:c5:12:49:79:94:fe:
85:c8:a2:f9:d3:7f:e2:15:6a:64:e8:a6:3d:18:e5:29:f9:cb:
e0:d3:f2:10:21:62:e0:b6:96:58:c7:20:c9:b0:d5:8a:4a:fd:
0f:b6:29:52:f8:38:26:8a:ac:18:7f:f6:46:e3:fd:65:6a:1e:
2e:61:e4:eb:65:9e:82:84:c7:89:41:55:1c:71:82:9f:c4:6f:
d7:e4:dc:4d:4f:8d:3c:b9:47:fc:b9:7a:54:de:a3:2b:13:d0:
b1:ec:fe:96:d6:fb:eb:45:bf:a7:74:02:48:4f:5f:b1:20:24:
d8:72:a8:41:50:52:93:c6:2c:8a:7a:18:bb:f8:31:c1:1d:cd:
d5:13:b2:67:86:c3:64:14:f7:70:40:c1:3b:4c:9b:d7:16:02:
7b:9b:69:bc:98:1a:3a:48:ee:6b:50:73:e3:08:d2:f7:3e:0e:
ea:ab:34:24:43:e7:5a:3c:ad:9a:d7:17:59:ec:e0:57:0f:a0:
99:32:ec:69:da:5f:8a:5c:b5:6c:ba:8e:6d:1f:c6:ff:4e:db:
79:fa:5c:62:60:37:7c:8a:88:f0:49:6c:fe:94:8d:e3:ff:0b:
a1:c4:f9:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 14:49:15 2024 by rpki-client on console-ams.rpki-client.org