Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/e1171c-5270-49cd-9379-b95b08a23ae1/1/uD_Xb4bVpiM5PDESZpwTeB9oxYY.roa
File: uD_Xb4bVpiM5PDESZpwTeB9oxYY.roa (raw, json)
Hash identifier: iEMyllulUSP0NVvtzhSWEPWeFNXUMmtS3xET0ZP6fPA=
Subject key identifier: B8:3F:D7:6F:86:D5:A6:23:39:3C:31:12:66:9C:13:78:1F:68:C5:86
Certificate issuer: /CN=408af485b4fd0f03717cd4a709ef11c61d3ef46e
Certificate serial: 0185727119E01E682421AC75F57DC24C6619
Authority key identifier: 40:8A:F4:85:B4:FD:0F:03:71:7C:D4:A7:09:EF:11:C6:1D:3E:F4:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QIr0hbT9DwNxfNSnCe8Rxh0-9G4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/e1171c-5270-49cd-9379-b95b08a23ae1/1/uD_Xb4bVpiM5PDESZpwTeB9oxYY.roa
Signing time: Mon 02 Jan 2023 12:24:52 +0000
ROA not before: Mon 02 Jan 2023 12:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57034
IP address blocks: 89.36.131.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:71:19:e0:1e:68:24:21:ac:75:f5:7d:c2:4c:66:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=408af485b4fd0f03717cd4a709ef11c61d3ef46e
Validity
Not Before: Jan 2 12:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b83fd76f86d5a623393c3112669c13781f68c586
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ba:62:e9:20:14:80:85:aa:86:ba:2e:03:ea:
82:4e:50:04:69:ab:e5:02:34:1f:ae:95:83:40:3e:
6e:3f:4e:1f:c2:b3:e7:91:4b:f3:bf:68:a1:42:6a:
1e:96:35:76:3d:cf:07:cb:d7:07:60:2f:a9:14:04:
b8:4e:10:7a:66:f1:ba:25:7d:d6:61:29:cc:44:c5:
e9:c6:87:e1:aa:9e:06:71:d7:17:7c:5f:06:11:a0:
98:bb:2e:31:dd:7d:cb:07:25:ab:a3:a6:e6:7e:a6:
40:be:73:0d:8f:23:a9:49:0c:ff:86:37:ea:97:d1:
7c:0a:97:2b:57:4d:54:0b:9c:9b:11:d4:b4:da:cc:
bd:fc:ae:15:f5:dc:24:99:23:44:a2:0c:f8:8b:a5:
7e:a8:de:56:68:01:ae:10:6a:c9:29:33:50:aa:fe:
2f:67:0c:28:26:84:b9:2f:ea:3c:f8:83:ab:b9:7e:
57:0c:f5:a6:e8:89:4f:ac:dd:13:1a:74:88:cd:d5:
76:50:a7:d1:31:84:75:73:59:15:72:b0:81:d7:b9:
4c:6b:64:fe:29:ea:27:6e:3a:60:37:74:dc:a2:dd:
11:f2:f9:d5:2f:12:c3:e8:e5:64:e6:21:8d:d8:f7:
62:df:77:da:a1:8b:7c:d7:93:4e:3b:b5:7c:f0:4a:
85:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:3F:D7:6F:86:D5:A6:23:39:3C:31:12:66:9C:13:78:1F:68:C5:86
X509v3 Authority Key Identifier:
keyid:40:8A:F4:85:B4:FD:0F:03:71:7C:D4:A7:09:EF:11:C6:1D:3E:F4:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QIr0hbT9DwNxfNSnCe8Rxh0-9G4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/e1171c-5270-49cd-9379-b95b08a23ae1/1/uD_Xb4bVpiM5PDESZpwTeB9oxYY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/e1171c-5270-49cd-9379-b95b08a23ae1/1/QIr0hbT9DwNxfNSnCe8Rxh0-9G4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.36.131.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:7d:07:55:c2:58:5d:30:a6:cb:3b:e7:2a:5d:fd:1c:b7:12:
6c:21:38:8e:06:e4:79:76:0c:22:b9:aa:e3:ff:95:39:d9:9d:
56:57:c2:25:ba:b4:bc:7e:2f:fd:6c:fb:ff:6c:c9:f3:8e:1e:
c3:8b:f5:3d:a5:60:26:ac:8e:03:a9:a5:0c:2e:2c:97:87:97:
22:39:ec:4c:b4:64:d6:36:f8:b6:20:67:87:1d:db:34:df:2b:
4e:a2:e8:46:b2:20:99:40:24:ab:d3:d7:ce:28:e8:7e:2f:ee:
0a:ea:ab:af:d0:5a:17:53:f6:84:41:9a:a5:20:f9:0b:5c:a3:
b4:69:00:dc:21:5d:a5:f5:36:8b:b8:0b:48:4d:1b:9c:02:13:
d9:6d:34:7a:b4:0b:fd:10:db:26:8a:11:76:c8:58:94:4c:7c:
e0:3e:76:fe:02:79:bc:92:62:23:09:ac:7b:8c:87:7f:fc:11:
58:60:0b:10:a4:b3:1c:17:75:4c:4d:71:0a:a1:8c:77:a1:52:
4c:b4:01:cc:69:0b:c0:40:9d:df:ad:3b:57:ef:2d:92:ac:fe:
cd:b5:03:b7:8e:bb:78:c8:d1:9e:74:f3:e5:d1:09:89:9a:bd:
55:44:54:b0:2e:50:30:e9:f8:97:84:8a:10:73:c4:9c:5d:9e:
cd:0d:a6:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:09 2024 by rpki-client on console-ams.rpki-client.org