Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/4fc787-e681-4e16-b1ec-a1c5d7eb4bd7/1/V7pGwRrpTi5U7Y3Ns4rrDFC730M.roa
File: V7pGwRrpTi5U7Y3Ns4rrDFC730M.roa (raw, json)
Hash identifier: S1PWttpJ2J4X+1+SNaHbs6XSoufQaZVvYtzlIGJr0ek=
Subject key identifier: 57:BA:46:C1:1A:E9:4E:2E:54:ED:8D:CD:B3:8A:EB:0C:50:BB:DF:43
Certificate issuer: /CN=f7e679e58e4b8bf63e95002b54be471d634b9506
Certificate serial: 01856D81A5E7A52B700AED58AC6BCADE0AF2
Authority key identifier: F7:E6:79:E5:8E:4B:8B:F6:3E:95:00:2B:54:BE:47:1D:63:4B:95:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9-Z55Y5Li_Y-lQArVL5HHWNLlQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/4fc787-e681-4e16-b1ec-a1c5d7eb4bd7/1/V7pGwRrpTi5U7Y3Ns4rrDFC730M.roa
Signing time: Sun 01 Jan 2023 13:24:51 +0000
ROA not before: Sun 01 Jan 2023 13:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209358
IP address blocks: 152.89.68.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:a5:e7:a5:2b:70:0a:ed:58:ac:6b:ca:de:0a:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7e679e58e4b8bf63e95002b54be471d634b9506
Validity
Not Before: Jan 1 13:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=57ba46c11ae94e2e54ed8dcdb38aeb0c50bbdf43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:93:37:93:40:3a:aa:80:5f:a8:63:66:21:4c:
93:2c:32:59:41:9f:b2:78:0f:f0:cc:2d:03:59:15:
c3:45:b4:6d:f5:4b:e6:49:4b:30:29:9b:13:d9:77:
34:a1:8a:39:35:a8:59:72:35:dc:17:d1:69:98:24:
11:1c:70:36:bc:7b:8d:69:19:2c:f7:4a:4a:0e:5a:
37:e6:fc:5c:eb:ed:47:63:76:31:98:11:58:94:84:
f3:3a:36:ab:e5:59:51:86:ab:56:e6:83:fd:27:03:
4e:cf:10:71:26:10:99:3f:43:4c:72:71:74:de:76:
4e:c4:6d:9b:7c:46:19:56:4d:cb:1f:c5:ba:a9:a5:
b3:de:3f:5b:f8:0b:b4:27:5f:b5:9a:21:26:d3:9d:
b1:5b:eb:e1:96:f5:a7:76:93:df:0a:5a:ff:28:33:
17:77:ee:07:ec:f5:b4:2f:1a:b4:c7:19:68:b3:77:
25:38:38:e0:ab:ad:72:6c:c4:ad:72:3d:cf:7a:15:
bd:6f:1f:ba:a9:5f:68:cc:6d:32:a1:88:56:d7:85:
c6:90:5c:fc:fd:ec:a0:09:b0:f0:d5:07:73:b7:50:
54:d2:f5:b0:3d:e0:8c:ab:f1:d1:54:4a:02:a2:24:
75:0a:08:0e:8e:33:12:55:ea:79:24:09:26:9f:05:
c5:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:BA:46:C1:1A:E9:4E:2E:54:ED:8D:CD:B3:8A:EB:0C:50:BB:DF:43
X509v3 Authority Key Identifier:
keyid:F7:E6:79:E5:8E:4B:8B:F6:3E:95:00:2B:54:BE:47:1D:63:4B:95:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9-Z55Y5Li_Y-lQArVL5HHWNLlQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/4fc787-e681-4e16-b1ec-a1c5d7eb4bd7/1/V7pGwRrpTi5U7Y3Ns4rrDFC730M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/4fc787-e681-4e16-b1ec-a1c5d7eb4bd7/1/9-Z55Y5Li_Y-lQArVL5HHWNLlQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.89.68.0/22
Signature Algorithm: sha256WithRSAEncryption
ab:f7:5e:18:98:1a:d4:5a:8a:4a:c5:5c:fd:0d:7a:eb:77:d1:
2a:f2:fb:12:a4:de:3b:f5:23:c3:72:7f:17:ba:4a:09:da:06:
00:dc:2f:aa:a6:34:76:37:35:ce:69:77:5f:74:b5:d3:52:2a:
3e:6c:98:21:88:0a:9c:61:c9:a6:e7:4f:29:22:22:16:b4:d6:
f7:72:1f:c8:98:b6:50:d2:4a:35:ef:4f:40:8b:b2:6d:31:fe:
7d:61:5a:1b:7d:d9:47:87:de:10:93:07:2e:d5:8b:ff:16:50:
69:87:b0:8f:58:72:b3:ef:87:60:eb:1c:e9:e6:ac:d0:64:4f:
d5:53:a8:23:2e:61:0d:8c:55:81:da:bc:fd:33:6d:2a:0c:a3:
65:30:94:38:a6:d7:5b:6d:b6:aa:bc:84:df:93:0e:69:cf:20:
cf:18:c5:75:bf:30:28:f2:a8:87:68:98:fe:dc:46:17:a9:c7:
de:fa:e5:47:cc:c4:69:3b:ed:26:fc:ce:ea:99:a2:c6:c2:3c:
f6:12:2e:d7:a8:aa:7f:cc:3d:74:7d:2f:be:a1:b3:dd:b7:8a:
68:da:85:c5:fc:5e:22:04:26:d5:dd:9c:5c:c3:ea:4e:c9:7c:
4b:24:b0:5a:30:62:bc:fc:e9:1f:43:be:d9:4f:eb:f0:d8:5f:
8f:d2:04:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:01 2024 by rpki-client on console-ams.rpki-client.org