Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/b5ba29-b29f-4065-98fb-b529b0cf5411/1/dalf50RljHNjfaGXzQhr9CJ0e08.roa
File: dalf50RljHNjfaGXzQhr9CJ0e08.roa (raw, json)
Hash identifier: 13EBND14kX0+tKBTeCt9LU1N/+L+OqRkpJ/2FPdriaY=
Subject key identifier: 75:A9:5F:E7:44:65:8C:73:63:7D:A1:97:CD:08:6B:F4:22:74:7B:4F
Certificate issuer: /CN=2cc57499546c4efd730ff871df3bd1afbf3b9f01
Certificate serial: 018A5F5DE896AD96B427822F2C8BBD51E3D8
Authority key identifier: 2C:C5:74:99:54:6C:4E:FD:73:0F:F8:71:DF:3B:D1:AF:BF:3B:9F:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LMV0mVRsTv1zD_hx3zvRr787nwE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/b5ba29-b29f-4065-98fb-b529b0cf5411/1/dalf50RljHNjfaGXzQhr9CJ0e08.roa
Signing time: Mon 04 Sep 2023 08:45:04 +0000
ROA not before: Mon 04 Sep 2023 08:45:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 89.106.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Sep 2023 08:56:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5f:5d:e8:96:ad:96:b4:27:82:2f:2c:8b:bd:51:e3:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cc57499546c4efd730ff871df3bd1afbf3b9f01
Validity
Not Before: Sep 4 08:45:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=75a95fe744658c73637da197cd086bf422747b4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:91:5d:ff:15:1f:75:42:a5:4c:b6:55:07:a2:
bb:ca:0b:f7:12:db:7c:75:11:5e:e6:78:84:1e:6f:
21:b4:3b:e2:a3:08:62:52:eb:80:ef:fd:0f:1e:dd:
ae:e1:06:df:fe:48:6b:3a:a9:26:af:e8:2b:0d:3b:
7c:cc:d5:38:7d:a3:0d:5d:d9:e3:55:18:0a:20:b7:
ca:9b:0e:df:95:88:02:6a:9b:4d:04:98:ea:7e:f9:
7b:e4:62:0b:93:8a:53:7e:67:d7:81:c4:a9:f3:a9:
1c:01:d2:98:45:08:0a:76:a2:e6:9b:3e:fc:d8:49:
5e:28:f2:15:54:46:3b:ef:3f:9e:ad:1d:e8:b6:01:
d9:6d:a1:69:63:79:34:0c:e3:76:9b:66:a0:2e:c3:
6b:8c:83:b8:7d:4e:a3:8a:f8:c9:19:bb:f6:c4:20:
8a:d8:21:14:26:41:2b:70:87:0d:73:1a:d8:51:c3:
0e:64:da:97:ef:21:80:c3:0c:f5:26:09:c2:1c:6b:
b2:8c:a3:f4:bb:f0:b9:9d:68:27:68:eb:e7:60:40:
72:ed:06:fb:47:e9:4f:67:d5:3e:42:74:8b:9e:46:
50:db:37:be:43:4f:d5:13:a8:02:d2:e8:5e:13:f0:
94:32:e5:da:ed:a1:90:77:8f:0f:15:0b:cf:ed:4d:
da:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:A9:5F:E7:44:65:8C:73:63:7D:A1:97:CD:08:6B:F4:22:74:7B:4F
X509v3 Authority Key Identifier:
keyid:2C:C5:74:99:54:6C:4E:FD:73:0F:F8:71:DF:3B:D1:AF:BF:3B:9F:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LMV0mVRsTv1zD_hx3zvRr787nwE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/b5ba29-b29f-4065-98fb-b529b0cf5411/1/dalf50RljHNjfaGXzQhr9CJ0e08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/b5ba29-b29f-4065-98fb-b529b0cf5411/1/LMV0mVRsTv1zD_hx3zvRr787nwE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.106.200.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:d3:f8:58:d3:ac:97:8d:73:4d:27:b3:a8:06:43:14:48:b0:
78:61:a5:5e:1d:39:2b:c6:04:24:08:14:db:f3:f7:c0:7a:6e:
0b:6a:d2:37:59:92:9a:5b:16:05:3d:3f:72:5f:2d:cd:a7:f5:
e4:f8:01:79:b0:25:e6:4f:bc:32:14:3d:dc:c4:8a:95:b8:24:
ae:e3:0c:17:d1:66:df:20:92:0f:e6:f3:63:dc:96:45:05:0c:
ae:89:c2:04:8a:21:bb:48:22:9a:05:b3:d9:ea:d8:b9:bc:66:
6b:fe:28:7a:06:39:e4:5a:41:e1:a6:66:d1:ab:40:a1:5b:37:
e1:6e:22:b8:27:e0:0e:90:da:63:5f:3b:3e:19:b8:a3:f6:a0:
72:fd:53:a6:bc:c6:0e:6b:ce:23:c9:9c:52:55:05:84:d1:d3:
ff:fb:7c:eb:8d:21:45:d7:77:6c:3a:b7:d2:82:c2:54:d1:93:
84:a8:88:20:ad:d4:e5:bc:97:82:00:d0:d0:b3:99:63:46:e0:
80:09:de:e5:97:e7:b5:04:4f:da:a5:bf:14:2a:90:30:c9:2a:
bc:a2:35:bc:81:ed:06:40:08:1c:46:65:b6:10:1e:55:2e:fd:
c5:06:93:f7:e3:8a:9f:ea:7c:44:19:14:3c:d4:37:e5:38:6b:
18:22:6f:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:33 2024 by rpki-client on console-ams.rpki-client.org