Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/95f051-5e1d-4d36-a593-1a5eb50885ae/1/feS_PbGj_1Hw3MSTmgWTuq592DY.roa
File: feS_PbGj_1Hw3MSTmgWTuq592DY.roa (raw, json)
Hash identifier: AAl23nLgOQU9ROlHkQuOv6zEIx6L3tyc9yW1fgHFSew=
Subject key identifier: 7D:E4:BF:3D:B1:A3:FF:51:F0:DC:C4:93:9A:05:93:BA:AE:7D:D8:36
Certificate issuer: /CN=59c3cc99899373c85974f01c9cd7aa057ab97fab
Certificate serial: 01856F9DB406987BBF7FD3EFCF57E52D1015
Authority key identifier: 59:C3:CC:99:89:93:73:C8:59:74:F0:1C:9C:D7:AA:05:7A:B9:7F:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WcPMmYmTc8hZdPAcnNeqBXq5f6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/95f051-5e1d-4d36-a593-1a5eb50885ae/1/feS_PbGj_1Hw3MSTmgWTuq592DY.roa
Signing time: Sun 01 Jan 2023 23:14:44 +0000
ROA not before: Sun 01 Jan 2023 23:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57844
IP address blocks: 89.207.40.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:b4:06:98:7b:bf:7f:d3:ef:cf:57:e5:2d:10:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59c3cc99899373c85974f01c9cd7aa057ab97fab
Validity
Not Before: Jan 1 23:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7de4bf3db1a3ff51f0dcc4939a0593baae7dd836
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:53:b1:51:e7:b1:82:1f:da:ae:e1:59:2c:9d:
12:1c:01:54:86:60:a5:11:a8:1b:de:ba:0d:96:39:
00:77:37:03:7b:6d:ad:2e:f8:e0:d4:7a:ab:6f:c2:
5c:4d:22:f5:a5:8b:bd:dc:0f:e7:12:51:30:f2:9d:
0a:e6:4a:48:b3:ba:ae:22:e9:d5:a3:be:7b:72:e7:
71:da:c8:70:da:75:1e:d5:4a:51:39:00:7f:df:6e:
25:a6:b1:3a:e6:c9:d8:34:25:5f:f8:8d:e2:9f:c8:
3c:0d:5b:5b:9d:ce:6b:08:5a:30:43:d9:0e:3d:3f:
f3:bd:fb:b8:29:0d:6f:e2:17:b9:7d:23:cd:a8:b5:
3a:bf:14:c8:11:94:52:8a:74:dc:97:81:68:e7:c7:
c9:d9:e9:68:aa:09:f5:33:74:81:a2:bf:4a:46:a4:
6e:cc:b1:60:4c:1f:c4:da:f8:76:48:9d:fd:7f:f9:
ed:d3:5b:1c:d6:bc:83:28:e4:4d:9b:35:ea:db:df:
75:09:d6:ba:3b:21:6a:60:44:fe:58:bf:3a:9e:1f:
f7:e3:19:91:79:67:59:7b:68:ff:f2:85:75:67:38:
29:4e:27:05:49:ca:ff:43:02:ca:e3:ec:f8:c4:46:
49:dd:94:82:67:89:75:f5:c7:20:eb:fd:3f:6c:59:
1d:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:E4:BF:3D:B1:A3:FF:51:F0:DC:C4:93:9A:05:93:BA:AE:7D:D8:36
X509v3 Authority Key Identifier:
keyid:59:C3:CC:99:89:93:73:C8:59:74:F0:1C:9C:D7:AA:05:7A:B9:7F:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WcPMmYmTc8hZdPAcnNeqBXq5f6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/95f051-5e1d-4d36-a593-1a5eb50885ae/1/feS_PbGj_1Hw3MSTmgWTuq592DY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/95f051-5e1d-4d36-a593-1a5eb50885ae/1/WcPMmYmTc8hZdPAcnNeqBXq5f6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.207.40.0/24
Signature Algorithm: sha256WithRSAEncryption
68:9b:2f:a2:01:82:18:14:49:68:bc:e7:76:67:bd:c7:6c:bc:
89:d8:6d:da:4f:45:b9:3e:3c:b4:1b:2a:89:5b:dd:9e:1a:f3:
56:52:ac:92:d0:5c:06:d6:ea:bf:d0:14:52:20:dd:50:ae:6f:
3d:99:2e:1d:c3:1e:84:d8:92:2f:33:e2:0a:59:f6:80:db:6e:
3b:02:bf:77:3f:6f:b2:96:fe:c1:a4:c5:b0:bd:dc:2c:9b:96:
29:09:50:a7:e0:35:19:31:16:2c:28:a0:8b:b5:2e:5d:b2:56:
07:43:ed:c1:30:36:16:93:bb:0a:39:d2:85:4a:a5:b7:6f:b5:
05:ef:ee:b1:9e:f2:4c:f9:44:d7:c4:d8:be:0b:75:8d:32:65:
46:55:31:fe:89:b9:cd:e4:db:7d:88:fe:f9:14:9a:03:15:2b:
f7:f9:ac:e1:a3:fa:22:05:e5:0c:c9:54:cf:2b:ae:e6:61:28:
61:70:96:b1:75:4f:c3:76:b0:69:9a:c3:f3:e5:30:d3:e5:e3:
44:fe:9b:ff:70:91:f9:91:67:0f:bb:aa:20:16:8c:06:8f:13:
a6:c7:9a:6e:c5:e0:4f:f4:08:db:89:55:0f:c2:7e:dc:94:0b:
07:41:fe:93:1f:1b:e1:c1:e9:bc:b1:41:38:db:4d:b6:83:8e:
50:33:c7:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:23 2024 by rpki-client on console-ams.rpki-client.org