Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/A14LWkYM7LCkGy09wT3oueSAytU.roa
File: A14LWkYM7LCkGy09wT3oueSAytU.roa (raw, json)
Hash identifier: wJwFuBloU6see3yATRkq+80PLTDU0PbC87L9CVMk+RA=
Subject key identifier: 03:5E:0B:5A:46:0C:EC:B0:A4:1B:2D:3D:C1:3D:E8:B9:E4:80:CA:D5
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 01856EA6BB935AA754D299B86E135F3E1A6F
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/A14LWkYM7LCkGy09wT3oueSAytU.roa
Signing time: Sun 01 Jan 2023 18:44:58 +0000
ROA not before: Sun 01 Jan 2023 18:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41151
IP address blocks: 89.43.16.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:bb:93:5a:a7:54:d2:99:b8:6e:13:5f:3e:1a:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Jan 1 18:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=035e0b5a460cecb0a41b2d3dc13de8b9e480cad5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:47:1c:a6:9f:ea:5a:b1:49:2e:98:51:4a:65:
9f:11:a8:6f:17:3b:a1:17:07:1a:26:f3:e0:dc:81:
41:02:14:28:2c:d1:1c:08:aa:b4:ba:64:67:38:b1:
f5:a2:a6:f5:fa:c0:39:72:2f:be:91:b5:6d:4d:56:
c1:53:8b:4b:5a:31:e2:1e:7c:74:62:fd:57:17:18:
d6:13:77:26:67:e7:32:1b:1c:a2:e3:3a:6f:b6:7b:
35:08:ef:51:42:05:53:0c:40:20:4c:41:0d:c0:fc:
ee:65:16:9e:bf:7a:e3:26:88:ab:38:7e:7f:e2:ab:
02:e0:32:c7:c2:8a:31:88:13:ef:b7:d2:01:3e:41:
d0:ec:07:9d:2b:30:c9:30:a6:dd:d4:db:6d:ad:f7:
c0:86:28:62:6a:f4:6d:3e:b6:24:ef:8c:0c:79:c7:
d5:df:b6:5c:82:0c:8c:10:57:1f:4d:c0:88:83:86:
73:79:a2:f5:9b:24:93:6f:56:af:8e:7a:87:4f:44:
fe:ff:a1:e2:33:60:bb:1e:de:a7:b1:31:f1:25:8b:
91:84:74:5d:0d:31:64:87:0a:61:e0:81:fc:ef:a4:
b5:1b:97:dd:fb:5b:29:35:e5:bd:e7:22:f3:a4:d0:
6f:d8:cf:31:26:b4:6c:46:f8:c6:52:6d:63:b3:c4:
17:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:5E:0B:5A:46:0C:EC:B0:A4:1B:2D:3D:C1:3D:E8:B9:E4:80:CA:D5
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/A14LWkYM7LCkGy09wT3oueSAytU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.43.16.0/22
Signature Algorithm: sha256WithRSAEncryption
d2:a6:41:90:03:cf:df:11:9c:32:18:9b:15:e7:eb:47:40:d1:
ce:ca:86:94:c1:bd:e7:9d:3c:14:f8:24:0c:38:0a:e4:bb:3a:
22:40:76:ad:ab:a0:3f:7c:7a:87:d4:6e:10:23:b8:4e:1b:35:
f2:dd:d4:0b:e8:01:24:09:be:e7:d6:60:79:5a:14:67:e1:8d:
c3:9b:c7:90:7e:85:9e:09:ef:03:fd:e6:bd:f0:ae:0b:7b:57:
20:78:de:14:58:49:51:2b:d9:bd:a6:e8:2b:60:26:cd:39:cd:
ad:c2:75:ea:31:52:8c:ee:5b:11:22:92:d0:8b:94:cd:55:29:
cb:b0:f1:9c:ee:5f:da:04:ca:71:f8:65:a4:3d:b9:c2:a4:0e:
fe:34:53:f6:32:4d:ab:14:3d:bc:f0:f1:d2:d3:69:65:5d:60:
a1:20:c2:5c:55:0d:3b:a5:a2:fb:69:f6:d6:30:0e:42:66:b2:
bd:d3:83:c4:45:a5:18:3a:26:df:cd:6a:55:3a:d6:32:4d:99:
be:91:00:19:78:5c:7c:fc:c2:45:30:6b:57:89:70:f5:c1:82:
5f:c2:1f:4c:f3:5b:c1:47:a0:f4:07:09:e9:26:1e:2e:be:3a:
e3:20:67:3d:fc:77:db:a1:b9:3c:13:f2:4c:d0:39:66:96:87:
61:d8:50:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:29 2024 by rpki-client on console-fra.rpki-client.org