Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/FgEkEiPEnaG5haaDpp4-dEutKTw.roa
File: FgEkEiPEnaG5haaDpp4-dEutKTw.roa (raw, json)
Hash identifier: v3lSKAz1IXQdhPIPCYsz8Rj/8ywYEZoj5dHQKKZk0ys=
Subject key identifier: 16:01:24:12:23:C4:9D:A1:B9:85:A6:83:A6:9E:3E:74:4B:AD:29:3C
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 019053D08BFA9AE60E43A46882B7601CC357
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/FgEkEiPEnaG5haaDpp4-dEutKTw.roa
Signing time: Wed 26 Jun 2024 09:11:34 +0000
ROA not before: Wed 26 Jun 2024 09:11:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214637
IP address blocks: 89.43.73.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Jul 2024 11:31:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:53:d0:8b:fa:9a:e6:0e:43:a4:68:82:b7:60:1c:c3:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Jun 26 09:11:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1601241223c49da1b985a683a69e3e744bad293c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:4f:97:ca:ca:a9:18:64:b1:df:27:b5:24:b5:
a3:04:3e:bf:80:8d:d9:2b:b9:f9:a6:20:72:45:f4:
eb:14:a2:0c:e7:b6:62:46:43:1a:ca:ee:a7:35:75:
f6:d0:78:66:db:c3:4e:55:42:6e:bc:52:dd:38:79:
fb:91:1f:9f:48:dd:2b:fa:45:8c:cc:18:86:30:89:
42:9c:68:0e:d7:11:e9:50:cd:f1:71:2c:aa:e7:62:
36:72:b5:0a:3f:91:25:2b:97:24:9c:51:31:b4:28:
00:3c:cf:de:6e:56:ca:ce:3d:85:ee:1b:0d:44:0c:
ca:d9:95:91:22:02:9e:f7:7b:1a:12:a1:5a:36:5f:
55:2d:79:48:b2:a7:30:ea:ca:6a:a3:ac:2d:f7:48:
8c:b9:e7:4c:b8:7b:50:43:00:82:28:91:9a:55:70:
47:75:18:e1:a1:1d:db:58:44:f3:0f:b1:f5:24:30:
c8:d3:c9:2c:69:bc:2d:c2:9a:99:91:fd:b0:f2:01:
52:e8:5d:b0:59:e5:ad:b7:08:04:71:be:64:99:20:
a2:7f:0a:f1:0d:2d:f9:01:dc:47:2b:60:d4:3a:b7:
62:d9:02:91:de:ce:62:f3:45:f1:bd:db:b9:6e:b7:
c4:52:4e:29:b4:11:98:5a:13:b4:5b:1b:eb:d3:23:
92:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:01:24:12:23:C4:9D:A1:B9:85:A6:83:A6:9E:3E:74:4B:AD:29:3C
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/FgEkEiPEnaG5haaDpp4-dEutKTw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.43.73.0/24
Signature Algorithm: sha256WithRSAEncryption
d3:0b:c4:ab:79:90:0e:58:4b:d9:4c:1a:6c:58:ad:9d:72:83:
6e:41:c5:fb:a8:0e:e1:aa:32:33:ea:f0:69:bc:d7:6d:39:14:
fc:fc:fb:c9:58:5a:8d:20:0e:45:f0:bb:82:af:4b:f1:fe:b9:
8c:80:8c:8d:4b:12:98:1c:39:08:d8:53:24:54:b7:b6:de:72:
f8:6f:44:08:1c:08:5b:ea:49:71:bb:56:6f:d0:fc:56:6f:0d:
ac:6a:6d:96:70:55:ea:a1:fa:65:e0:b7:d9:5c:ac:8c:66:05:
36:d7:d2:6d:a4:17:05:22:b6:7e:23:f0:2f:14:c2:fb:a4:30:
89:51:b7:c8:4c:65:0a:1d:64:9a:ff:ed:74:ab:a7:52:e0:0a:
5e:4d:81:b0:7f:81:ec:d9:b4:c5:9e:84:a5:3d:a1:9c:8a:22:
75:43:bc:ab:1a:e8:77:c5:45:cb:2f:8d:0c:bf:f8:43:f6:d0:
06:73:f6:72:e8:cd:ce:2d:70:0a:ee:aa:d5:63:cc:4d:a7:ba:
92:e4:3c:44:8e:b7:ee:4d:b9:25:8e:d0:8d:f2:de:89:49:6d:
d3:07:44:b0:b3:71:0a:d9:dd:1c:36:59:38:d9:e9:bb:01:72:
ed:1d:04:ad:84:dd:f3:eb:bf:92:b0:37:ae:91:69:ce:ff:fa:
e2:75:1b:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 16 15:47:46 2024 by rpki-client on console-fra.rpki-client.org