Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/9437a2-07e6-4e6a-aa3f-965d6d603bfa/1/5Dv6WcxF5j3i6jvNbJqCOyNtOOc.roa
File: 5Dv6WcxF5j3i6jvNbJqCOyNtOOc.roa (raw, json)
Hash identifier: xI0CCfVzfLaqgGEMUkVXLN9TzerbOBdBjQgqOno4HAE=
Subject key identifier: E4:3B:FA:59:CC:45:E6:3D:E2:EA:3B:CD:6C:9A:82:3B:23:6D:38:E7
Certificate issuer: /CN=f82554a856a422b061ae64c577630f91d408cd4a
Certificate serial: 018571F9EED08A26850163AA9082126E8DA4
Authority key identifier: F8:25:54:A8:56:A4:22:B0:61:AE:64:C5:77:63:0F:91:D4:08:CD:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-CVUqFakIrBhrmTFd2MPkdQIzUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/9437a2-07e6-4e6a-aa3f-965d6d603bfa/1/5Dv6WcxF5j3i6jvNbJqCOyNtOOc.roa
Signing time: Mon 02 Jan 2023 10:14:43 +0000
ROA not before: Mon 02 Jan 2023 10:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49434
IP address blocks: 89.234.190.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:f9:ee:d0:8a:26:85:01:63:aa:90:82:12:6e:8d:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f82554a856a422b061ae64c577630f91d408cd4a
Validity
Not Before: Jan 2 10:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e43bfa59cc45e63de2ea3bcd6c9a823b236d38e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:05:6c:2d:b4:72:32:23:ac:45:42:7e:5e:37:
42:6d:b5:d3:22:af:ff:b5:7b:a1:16:0d:2e:68:b3:
34:97:04:b9:c3:d9:4b:6a:19:5b:e5:0f:78:09:f9:
ac:71:dc:55:c6:29:e7:e0:7b:0e:89:1e:12:08:c0:
ee:f8:46:c6:6f:fb:26:97:d1:bb:d0:9f:34:05:f9:
d6:f3:15:ba:03:e1:d1:43:8a:d7:59:e0:25:fa:6c:
20:bd:5e:00:b0:73:5e:d0:da:6f:4b:25:c5:7a:01:
a9:00:96:45:25:29:fc:45:3c:d1:43:86:b3:d5:3c:
c2:6b:f8:a2:83:50:96:b1:1a:0c:69:d3:cc:ab:5f:
90:bb:15:d0:51:65:85:86:8d:4d:2d:7a:77:d5:4d:
a7:2d:75:db:db:f2:50:62:1c:b3:14:a3:4d:f5:8a:
25:1a:9e:37:01:ee:4a:ea:b8:11:1f:12:ec:74:cd:
d3:08:85:23:ab:a3:c7:68:be:51:e2:34:d6:57:42:
fd:3a:08:ef:15:21:a2:10:c1:27:e9:de:af:0c:a9:
bc:52:9f:6f:20:3e:ef:b9:ca:f0:d5:2b:d8:6e:c0:
4b:bf:f0:37:9e:ba:28:5f:0c:04:f2:21:23:76:07:
08:92:ca:4b:e9:65:ce:db:bd:e8:44:2e:20:de:57:
ec:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:3B:FA:59:CC:45:E6:3D:E2:EA:3B:CD:6C:9A:82:3B:23:6D:38:E7
X509v3 Authority Key Identifier:
keyid:F8:25:54:A8:56:A4:22:B0:61:AE:64:C5:77:63:0F:91:D4:08:CD:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-CVUqFakIrBhrmTFd2MPkdQIzUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9437a2-07e6-4e6a-aa3f-965d6d603bfa/1/5Dv6WcxF5j3i6jvNbJqCOyNtOOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9437a2-07e6-4e6a-aa3f-965d6d603bfa/1/1-CVUqFakIrBhrmTFd2MPkdQIzUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.234.190.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:7d:ff:f1:46:d4:c1:cc:fc:20:d1:de:4d:ec:32:cd:a4:78:
b0:96:a9:18:a4:a6:e2:23:23:06:13:24:cf:6f:c0:be:d7:59:
31:44:aa:39:2e:31:04:d2:f4:35:a1:48:f0:19:26:c7:15:1e:
37:c2:57:43:cc:ae:d4:49:72:9c:ea:7d:80:50:e8:68:e4:52:
75:ee:a2:f1:8b:d2:1f:d6:5b:2d:9e:52:23:3f:c3:bb:da:18:
81:e9:88:3d:1f:1d:32:8a:09:7f:d8:4c:07:43:df:4f:73:72:
68:eb:fe:95:ac:0c:a2:e7:44:2c:26:1a:70:53:2e:e3:e8:09:
5e:e3:f7:7c:44:d8:2c:eb:73:22:aa:ab:42:bf:a8:1b:44:59:
68:43:2e:da:04:02:9e:28:39:6c:3f:57:53:f0:14:db:0e:90:
da:96:c1:b9:6d:47:0a:26:07:03:f7:2e:49:57:e9:17:00:3f:
ac:e5:ea:c2:23:e4:f6:39:1c:4d:e4:38:65:73:f5:79:93:08:
23:f6:b5:0d:5f:70:51:ff:35:b2:21:e3:9c:ed:ca:70:96:74:
e3:90:4e:26:5b:30:cf:5d:24:d5:40:92:81:91:ff:6e:ad:01:
63:43:6c:63:97:74:7c:7a:91:3e:26:46:ae:eb:a0:a5:fa:68:
4c:ba:5d:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:51:43 2024 by rpki-client on console-fra.rpki-client.org