Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/9c6e07-693f-46ce-8646-d7abcd0ef64a/1/o6ZtGErpAR2ieC3OkuQd8ml8-VU.roa
File: o6ZtGErpAR2ieC3OkuQd8ml8-VU.roa (raw, json)
Hash identifier: no+vTRMThqQfBz77QsjALknMQj81aVprw31si8AOHM4=
Subject key identifier: A3:A6:6D:18:4A:E9:01:1D:A2:78:2D:CE:92:E4:1D:F2:69:7C:F9:55
Certificate issuer: /CN=8a5a3417fbe25c2e467c18485c181a7776f96ff4
Certificate serial: 018F0FD10AAAEEF2B4019988DDBECA7CA032
Authority key identifier: 8A:5A:34:17:FB:E2:5C:2E:46:7C:18:48:5C:18:1A:77:76:F9:6F:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ilo0F_viXC5GfBhIXBgad3b5b_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/9c6e07-693f-46ce-8646-d7abcd0ef64a/1/o6ZtGErpAR2ieC3OkuQd8ml8-VU.roa
Signing time: Wed 24 Apr 2024 11:15:08 +0000
ROA not before: Wed 24 Apr 2024 11:15:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215459
IP address blocks: 89.28.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 26 May 2024 07:25:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:0f:d1:0a:aa:ee:f2:b4:01:99:88:dd:be:ca:7c:a0:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a5a3417fbe25c2e467c18485c181a7776f96ff4
Validity
Not Before: Apr 24 11:15:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a3a66d184ae9011da2782dce92e41df2697cf955
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:95:12:12:a0:aa:8b:d3:f1:d4:e6:3b:aa:1b:
c3:fd:c2:2c:e9:14:bb:65:b1:e9:ac:88:a1:fc:51:
0b:09:d3:26:df:1a:25:e1:7f:62:0e:9c:33:6f:44:
67:26:7d:cf:36:3e:c8:85:a9:b4:cc:e5:97:87:47:
87:27:66:1c:f1:1e:8b:94:b4:d4:9c:54:f2:3d:c8:
03:fb:ef:10:a2:ce:77:02:a7:0c:0d:66:12:97:1b:
cd:5f:c3:2c:e8:f2:3f:10:b8:54:21:9e:9c:fc:88:
06:16:6c:fb:55:ae:57:0d:64:4f:d1:57:5f:6e:93:
0b:0e:4a:8e:4e:27:da:a1:bc:95:34:7e:67:30:00:
28:bf:1f:23:f9:35:9d:9c:4f:bf:a4:4c:2b:78:32:
80:24:5e:bd:d8:5a:7f:9d:24:b3:a6:d1:ba:b5:78:
15:66:ee:09:bf:aa:2d:43:cf:43:e8:8a:81:24:23:
9d:1c:a8:cf:ad:ae:a1:33:49:2b:80:be:e0:e7:2e:
ea:94:cb:0a:d8:92:de:16:01:f8:00:7b:00:cb:c7:
2b:fe:57:91:ba:d6:46:9d:70:1e:8d:4e:93:80:01:
68:91:1e:ea:27:9b:94:37:3a:77:e2:4c:85:05:ab:
85:f2:f9:77:ed:ff:c8:98:7b:c5:24:e6:f6:34:bb:
0b:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:A6:6D:18:4A:E9:01:1D:A2:78:2D:CE:92:E4:1D:F2:69:7C:F9:55
X509v3 Authority Key Identifier:
keyid:8A:5A:34:17:FB:E2:5C:2E:46:7C:18:48:5C:18:1A:77:76:F9:6F:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ilo0F_viXC5GfBhIXBgad3b5b_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/9c6e07-693f-46ce-8646-d7abcd0ef64a/1/o6ZtGErpAR2ieC3OkuQd8ml8-VU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/9c6e07-693f-46ce-8646-d7abcd0ef64a/1/ilo0F_viXC5GfBhIXBgad3b5b_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.28.237.0/24
Signature Algorithm: sha256WithRSAEncryption
35:60:6a:c3:09:8a:e6:10:e7:fc:3c:94:40:b9:41:31:1a:ca:
81:ef:a4:40:a6:9e:df:7f:46:26:ba:0c:d1:91:f2:c6:66:e7:
fd:5a:bc:4a:1f:6b:f3:33:d9:b2:2f:7d:73:db:40:4c:74:71:
fe:ab:e6:7e:a3:41:95:23:a1:a3:33:e0:bf:e1:89:e4:b1:ac:
4e:c5:a3:9f:57:b6:b2:3b:ce:f0:50:4c:26:8d:44:80:7e:1a:
36:78:f2:6f:31:b7:0c:11:bd:21:4e:aa:03:1b:b7:b2:dd:bd:
47:0f:e6:b3:81:2b:d3:80:19:d5:2d:e2:ab:e3:1a:ac:ca:2b:
2f:f7:3c:4f:c8:01:3d:0f:cf:6b:1a:c7:c2:13:83:8f:c8:15:
15:58:42:e6:10:11:1c:88:2e:b3:9b:4b:32:cc:a2:9d:22:55:
97:cc:7c:fb:90:13:43:ce:a2:d2:ef:7c:b6:b5:c4:75:2b:c0:
0a:9e:ad:21:58:3e:e4:0b:3a:8c:5d:e1:8e:70:2b:57:65:5d:
69:db:55:73:6a:e3:3a:d0:f4:2d:ea:26:13:78:32:47:ac:50:
1c:04:5b:0a:39:33:aa:46:9b:15:2a:d9:e5:93:de:e4:79:da:
5d:fe:fe:ab:84:c5:fe:b9:57:bb:2b:82:12:5c:f8:4d:bd:4c:
ac:dd:15:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:28 2024 by rpki-client on console-fra.rpki-client.org