Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/eGSsb8w0tbWasV9Ihnln2I45STs.roa
File: eGSsb8w0tbWasV9Ihnln2I45STs.roa (raw, json)
Hash identifier: 9c0CQ3rFPSGYoiZUb9eRdgh7uvqXEpmVCGX917DpUeY=
Subject key identifier: 78:64:AC:6F:CC:34:B5:B5:9A:B1:5F:48:86:79:67:D8:8E:39:49:3B
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 0186C66FAF5642EF4CB3872F4599AD972961
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/eGSsb8w0tbWasV9Ihnln2I45STs.roa
Signing time: Thu 09 Mar 2023 12:54:13 +0000
ROA not before: Thu 09 Mar 2023 12:54:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 89.43.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 May 2023 18:55:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c6:6f:af:56:42:ef:4c:b3:87:2f:45:99:ad:97:29:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Mar 9 12:54:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7864ac6fcc34b5b59ab15f48867967d88e39493b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:94:a6:eb:c9:f0:cb:4c:95:9e:e7:9a:1e:e7:
df:7e:72:16:b9:cc:2e:0c:ff:31:a0:5f:82:a3:2a:
55:36:db:0e:15:09:82:70:8d:17:06:63:66:ca:d8:
f0:6f:2b:69:63:5a:db:bc:ce:17:df:eb:61:2a:fa:
b1:25:d9:16:ae:73:af:6c:6d:95:19:71:7d:d2:b8:
7c:31:6b:ad:5f:27:6c:7c:10:bb:38:5b:3f:35:d5:
e7:c3:1b:43:4b:84:de:03:fa:9f:96:18:aa:17:b5:
55:0a:90:27:a6:c8:f6:33:da:1f:22:44:62:81:7c:
c7:8a:62:00:c1:c7:a4:bf:9d:fd:9f:11:e0:00:f7:
b6:73:28:34:7e:fc:63:fe:61:53:37:99:90:ab:0b:
8d:8c:56:41:3b:fd:e7:cf:a7:37:58:27:3a:51:e1:
ca:53:1d:00:25:2b:63:f1:0b:1b:ba:3f:6a:f9:bf:
df:05:26:67:48:38:71:4e:5a:1b:ea:64:d2:8f:19:
e3:e2:3a:ed:9a:2f:0a:8d:e3:8d:00:5f:2d:d2:b9:
99:70:81:07:30:b0:7c:5e:99:72:73:10:3c:bc:d9:
e4:64:48:21:6a:7f:8d:6e:80:f2:67:09:87:b4:40:
7b:0c:b0:29:08:2b:f7:1f:ed:71:fd:d9:46:b7:69:
69:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:64:AC:6F:CC:34:B5:B5:9A:B1:5F:48:86:79:67:D8:8E:39:49:3B
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/eGSsb8w0tbWasV9Ihnln2I45STs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.43.45.0/24
Signature Algorithm: sha256WithRSAEncryption
98:59:36:07:05:22:74:8a:db:9a:5c:b1:0a:9f:23:d1:53:5f:
83:64:49:ff:c8:8e:f7:0a:f0:cf:ea:5c:7d:66:bf:b7:13:e0:
f8:19:55:13:20:dd:8d:1a:ee:38:c8:8f:0f:13:3e:98:2f:69:
8a:13:b8:7b:b4:ba:d8:a2:dc:a0:db:f2:d9:d1:64:17:22:7a:
3d:29:bd:e2:d3:74:68:d5:a5:96:56:b2:ff:4b:e7:83:b7:ab:
df:e6:7b:88:ac:51:c3:c2:15:2f:8b:b8:63:ae:54:fd:d3:18:
f1:2e:6f:68:d8:3b:3b:3f:93:d8:48:3b:58:f8:e6:3b:46:1a:
28:53:b8:c0:fe:06:20:1d:f0:92:f6:74:cf:ab:19:26:20:11:
31:bd:13:2b:af:6d:98:28:08:26:89:e6:68:a4:62:a2:90:91:
f3:25:89:5d:01:21:40:e4:b3:bd:2f:b0:ab:0e:53:51:c5:13:
6d:f0:8b:69:3e:b9:6c:9f:a0:36:7f:4e:8a:63:46:35:e5:84:
f1:4d:7d:d6:38:9a:a5:9a:b7:f4:b9:61:f3:5e:90:89:f0:26:
bb:50:e0:d1:4f:b8:54:0f:3d:2d:38:b3:31:92:c1:4a:0f:6a:
1e:6f:3c:78:25:6f:43:4f:ef:6c:c4:e6:ef:3f:a7:ea:0e:ec:
d0:f0:b6:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:38 2024 by rpki-client on console-ams.rpki-client.org