Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/oUNCpMW0P-jDxxxUi8rumbm9d5o.roa
File: oUNCpMW0P-jDxxxUi8rumbm9d5o.roa (raw, json)
Hash identifier: sYv5wH9+bGXGoYw1De2rCU7Rn3bBDbm6IisAIotikQw=
Subject key identifier: A1:43:42:A4:C5:B4:3F:E8:C3:C7:1C:54:8B:CA:EE:99:B9:BD:77:9A
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 01888B1B74621D62B64068354191BB0635D9
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/oUNCpMW0P-jDxxxUi8rumbm9d5o.roa
Signing time: Mon 05 Jun 2023 10:30:12 +0000
ROA not before: Mon 05 Jun 2023 10:30:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 89.37.136.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:8b:1b:74:62:1d:62:b6:40:68:35:41:91:bb:06:35:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Jun 5 10:30:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a14342a4c5b43fe8c3c71c548bcaee99b9bd779a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:e8:1d:d9:b9:15:72:09:69:70:11:41:6c:29:
d7:5e:07:fc:66:13:91:70:ed:99:36:b3:d5:d1:53:
74:58:bc:a6:6e:58:da:4b:fd:dd:f9:f0:8e:04:9e:
6b:b1:57:cb:45:24:81:9f:4c:60:bb:21:c0:cb:34:
c1:14:96:0b:32:b7:5c:c8:f3:de:e3:81:03:01:2f:
54:e2:d3:fd:cf:fc:8b:aa:62:c6:74:96:8a:90:20:
33:40:98:95:af:7d:fc:e1:c9:a5:cc:c4:91:5d:85:
29:b1:79:61:0e:0d:e1:40:23:74:c8:43:b1:ae:1d:
08:49:6e:41:17:fd:46:d3:8c:cf:d7:19:96:3b:43:
58:89:35:50:c2:d4:9d:53:11:fb:16:4c:9c:47:88:
b8:eb:b5:8b:c4:57:0a:16:c2:11:da:1f:d6:90:b6:
d0:50:a8:e4:e0:65:f4:1d:1b:36:8e:a1:68:09:f1:
f2:b4:a2:95:38:0f:90:f6:fa:4f:18:d7:52:9e:80:
d4:79:44:c8:5b:54:f7:5e:03:99:07:a9:0c:f7:a8:
67:2f:9a:88:b1:bc:11:2a:62:28:fc:15:16:98:d4:
af:95:af:32:69:20:d5:fd:08:d0:86:8e:2a:8d:c7:
27:12:17:2e:40:9c:e8:ea:cc:1e:64:2f:a1:05:2d:
98:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:43:42:A4:C5:B4:3F:E8:C3:C7:1C:54:8B:CA:EE:99:B9:BD:77:9A
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/oUNCpMW0P-jDxxxUi8rumbm9d5o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.37.136.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:08:ad:bc:d3:bf:92:2a:30:b3:9e:5e:1f:54:b4:3a:c1:6b:
42:7d:7a:1f:a0:17:b9:eb:95:1f:1b:b9:95:99:5a:ea:86:a3:
92:7f:f8:4c:d7:ef:3e:be:e8:74:33:07:90:63:7c:79:55:ea:
ae:f8:4d:00:0d:66:5d:06:3b:93:54:05:e7:6c:1f:e2:1a:a3:
88:3e:28:52:6a:3c:b6:b0:5a:42:23:dc:79:be:95:5a:96:18:
96:56:7b:ab:df:c1:ac:88:be:65:bf:55:a9:6e:21:38:f8:40:
e1:fa:4d:36:77:b4:7b:b4:0e:a3:a9:ce:a4:76:1b:c6:b4:7b:
f6:0e:7f:1a:95:6d:11:0d:00:a9:9a:3a:e7:7f:c9:26:f2:d1:
f4:09:fc:ce:81:e8:3a:db:a8:d2:84:c8:51:6f:2b:64:76:d0:
1d:4d:39:1e:18:80:67:89:4d:23:55:c6:d6:fa:2c:a4:8d:7d:
83:05:c4:12:60:69:21:13:82:6a:c8:bf:94:5a:67:41:58:1a:
fd:c5:1e:f9:51:18:71:63:d6:f5:34:7d:c3:4b:54:bb:9a:2f:
6d:3f:ef:97:7f:64:ab:a0:fe:06:fa:79:3b:93:e5:ec:69:57:
bb:1e:04:db:22:cd:11:b5:86:9d:01:9e:1c:4f:9f:e3:2e:d2:
21:96:00:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:54 2023 by rpki-client on console-ams.rpki-client.org