Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/6QTA9Pj4AtVNwsablRwYbU6FYTM.roa
File: 6QTA9Pj4AtVNwsablRwYbU6FYTM.roa (raw, json)
Hash identifier: RCHoiDnV+BqvyaCU8X24iBZWtGAPyoNGHoalBy7SqnM=
Subject key identifier: E9:04:C0:F4:F8:F8:02:D5:4D:C2:C6:9B:95:1C:18:6D:4E:85:61:33
Certificate issuer: /CN=0d722e4513a39678d8ab23b2d649775340518cb9
Certificate serial: 018CC8DE33BE7FE2ED639A143C2BDEB37E73
Authority key identifier: 0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/6QTA9Pj4AtVNwsablRwYbU6FYTM.roa
Signing time: Tue 02 Jan 2024 06:30:54 +0000
ROA not before: Tue 02 Jan 2024 06:30:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7029
IP address blocks: 89.249.204.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 May 2024 11:24:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:33:be:7f:e2:ed:63:9a:14:3c:2b:de:b3:7e:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d722e4513a39678d8ab23b2d649775340518cb9
Validity
Not Before: Jan 2 06:30:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e904c0f4f8f802d54dc2c69b951c186d4e856133
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:1c:c3:21:e9:c2:44:71:4e:80:f0:a8:14:a1:
58:21:0a:ff:d6:d9:b4:de:0e:4b:33:7b:83:5f:de:
6c:6e:69:c0:92:a4:2f:1a:4e:8b:05:2b:71:38:4b:
d1:0c:31:24:40:9e:fb:05:09:ea:2d:41:01:a6:7d:
c0:22:bd:b8:cb:f7:20:2e:6f:9f:fd:3f:92:24:b5:
84:b1:98:fe:7f:d0:f9:b9:d7:59:ca:ef:5d:c5:20:
9e:25:a8:62:64:9d:d2:5e:cc:32:0d:7b:a9:95:7f:
05:7c:00:1c:8e:bf:5d:21:d9:55:43:b5:ba:a1:70:
98:8e:72:c9:55:8a:5a:92:8f:be:c7:35:c9:be:4d:
ab:94:87:a7:80:31:74:8d:2f:ce:33:ce:a4:46:71:
d7:cb:44:00:c1:86:39:9f:aa:cc:77:b5:8d:70:21:
26:3c:1d:74:ab:fc:a1:dc:71:84:be:61:b3:a3:be:
72:5b:01:ad:a5:53:64:6a:09:ca:c9:c9:6b:dd:b0:
e4:ac:30:88:1d:f2:9b:f0:f4:59:ea:31:72:d6:a5:
c5:13:b5:42:ca:4d:a5:cf:21:04:ff:ec:37:f7:48:
ce:77:f4:33:eb:b1:84:60:4e:48:00:db:ad:1c:dd:
46:27:dc:1f:89:c6:0e:36:f5:16:ed:c0:41:c6:60:
49:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:04:C0:F4:F8:F8:02:D5:4D:C2:C6:9B:95:1C:18:6D:4E:85:61:33
X509v3 Authority Key Identifier:
keyid:0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/6QTA9Pj4AtVNwsablRwYbU6FYTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/DXIuRROjlnjYqyOy1kl3U0BRjLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.249.204.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:14:2e:f7:a4:bb:b7:9d:90:5b:d5:63:1c:03:e8:00:da:96:
94:45:82:63:4d:d9:e7:b8:13:c9:19:f2:b3:85:8b:f8:e8:0b:
ea:7d:fd:14:86:74:b7:64:b6:cb:e0:16:d2:d7:0f:eb:1c:b7:
9f:be:08:02:a9:c9:4a:cf:c0:c1:2e:e6:9e:1d:e4:4c:de:3d:
b3:11:9d:0d:b3:b2:a3:84:a7:6a:97:6b:42:de:e9:a5:74:e5:
62:e9:1c:c6:a8:48:42:2e:d9:8d:56:3c:90:61:8a:a4:96:69:
db:6d:50:36:ca:7c:e8:06:d0:69:9d:a7:f5:29:82:94:61:54:
b0:e7:1d:c5:4d:20:5c:98:fc:08:10:59:7a:09:86:54:47:32:
c4:38:38:8e:00:ee:30:b2:2d:cb:ea:f5:d0:65:c8:2d:03:69:
8f:e1:b0:6e:4d:aa:c0:30:5e:87:2b:87:25:cf:3c:cf:cd:45:
37:74:06:b8:4f:11:d5:c7:22:91:a7:e7:85:b4:cc:10:a4:c6:
57:83:0c:6d:45:cd:bd:6f:4f:2d:2b:57:89:7d:cd:6b:07:04:
c6:14:eb:ef:45:f6:64:97:a5:90:19:6d:73:bf:5e:58:2c:dd:
df:7c:3f:75:43:6c:ba:9a:46:f7:50:14:4a:93:d7:9c:6e:a8:
bb:f9:64:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 24 15:03:46 2024 by rpki-client on console-fra.rpki-client.org