Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/N0gaheyyfXbZsKmgjJHB95oBxG8.roa
File: N0gaheyyfXbZsKmgjJHB95oBxG8.roa (raw, json)
Hash identifier: jRzEWq1GDO8x0dr2WLH7yrnV1bbCEZ8MQTNn2XbtxhM=
Subject key identifier: 37:48:1A:85:EC:B2:7D:76:D9:B0:A9:A0:8C:91:C1:F7:9A:01:C4:6F
Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Certificate serial: 018B13636A95132CD1D2A0C669C8143DE66E
Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/N0gaheyyfXbZsKmgjJHB95oBxG8.roa
Signing time: Mon 09 Oct 2023 07:42:44 +0000
ROA not before: Mon 09 Oct 2023 07:42:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212027
IP address blocks: 89.46.11.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:13:63:6a:95:13:2c:d1:d2:a0:c6:69:c8:14:3d:e6:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Validity
Not Before: Oct 9 07:42:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37481a85ecb27d76d9b0a9a08c91c1f79a01c46f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:43:69:b4:96:01:3a:25:4d:08:5b:58:0b:f1:
5a:4d:4c:b7:5d:54:2f:49:0a:75:d7:9b:c4:a7:35:
61:05:a9:d7:75:2b:d2:fe:f0:6e:96:ca:20:0c:b1:
a2:c3:0d:e5:89:2e:8d:cc:07:c2:5b:00:1b:90:69:
4d:95:81:fc:06:ce:80:79:4a:f2:8e:38:d0:87:ca:
f6:15:5c:f7:08:e2:51:17:3a:13:98:42:2e:94:ba:
a9:9b:14:48:89:d3:2a:15:67:e3:fd:69:ef:5a:0d:
c1:6a:8b:3b:05:76:cc:e1:f9:20:c0:65:db:b8:ad:
77:be:70:2d:d1:0e:9e:04:5a:3a:fc:0a:39:01:5c:
51:b3:58:db:e0:35:19:7e:e5:58:ac:09:e9:d5:09:
da:0b:27:c2:2f:f1:ce:e0:74:21:23:46:01:85:7c:
d9:22:ea:2f:2e:73:c4:7d:11:f7:b1:47:8d:7a:14:
5d:5e:4b:40:9f:a4:a2:c9:33:cc:56:3d:30:95:ff:
f8:c6:aa:a2:d6:e9:2c:b6:6e:53:4a:08:e3:46:65:
c0:b5:69:53:ae:4a:c1:d5:2b:58:6d:c2:9e:46:9d:
3b:ed:6f:58:9b:bf:4a:16:f6:9d:c2:88:b6:aa:1a:
02:4a:e6:f2:15:6e:cf:d0:5f:e1:2a:ce:92:35:5f:
5d:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:48:1A:85:EC:B2:7D:76:D9:B0:A9:A0:8C:91:C1:F7:9A:01:C4:6F
X509v3 Authority Key Identifier:
keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/N0gaheyyfXbZsKmgjJHB95oBxG8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.46.11.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:ea:e4:2c:52:23:27:ee:c1:63:dd:b5:cd:8b:96:af:b9:14:
1d:d4:27:9b:06:e4:c4:7c:f3:6e:ae:f3:5a:65:9a:b5:9a:5c:
41:97:13:11:d1:cb:e1:91:01:b6:d2:98:97:3c:27:aa:93:d9:
b9:01:1b:75:91:42:99:4a:b2:1c:e5:de:9d:0c:da:d6:07:b5:
7f:0a:bd:9e:99:8d:c7:b9:1a:a9:53:97:5e:3e:6c:45:81:17:
b6:bf:34:e2:0c:00:c9:c7:41:1d:a0:a4:64:e5:7a:16:6a:a8:
2f:25:c6:3c:fb:42:16:1a:c4:ad:02:b6:a2:b3:64:01:a9:90:
1c:40:00:d5:98:d1:05:ba:7a:e3:16:40:a6:27:bc:e6:cb:62:
49:9d:6e:f3:b3:78:b5:f8:e1:ea:eb:7c:4b:68:b3:ba:e4:f5:
f9:fc:ae:97:ed:bf:d5:06:2f:63:fb:39:3b:c9:53:49:d1:3b:
2a:87:30:8d:e4:f7:da:0a:bf:86:42:e9:c2:95:79:d8:31:6a:
52:e9:79:45:b7:64:22:c4:da:f5:b3:3c:05:80:51:8c:ea:59:
a5:cb:41:b5:9d:66:15:29:65:16:79:0d:2f:63:a3:0a:7a:80:
8a:10:7f:34:82:0a:b7:76:6a:84:03:e1:ee:ae:5d:46:94:32:
b3:07:05:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 16 15:16:04 2023 by rpki-client on console-ams.rpki-client.org