Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/9437a2-07e6-4e6a-aa3f-965d6d603bfa/1/oEdbUX934HxnYyGHfjUGLZ-CmX0.roa
File: oEdbUX934HxnYyGHfjUGLZ-CmX0.roa (raw, json)
Hash identifier: e50E+lvXnmXY95K8CKyQeLGvGpKlRVz9xdl1PKxZKWE=
Subject key identifier: A0:47:5B:51:7F:77:E0:7C:67:63:21:87:7E:35:06:2D:9F:82:99:7D
Certificate issuer: /CN=f82554a856a422b061ae64c577630f91d408cd4a
Certificate serial: 018571F9F098A48F65CDEF956E8096B5D945
Authority key identifier: F8:25:54:A8:56:A4:22:B0:61:AE:64:C5:77:63:0F:91:D4:08:CD:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-CVUqFakIrBhrmTFd2MPkdQIzUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/9437a2-07e6-4e6a-aa3f-965d6d603bfa/1/oEdbUX934HxnYyGHfjUGLZ-CmX0.roa
Signing time: Mon 02 Jan 2023 10:14:43 +0000
ROA not before: Mon 02 Jan 2023 10:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204092
IP address blocks: 89.234.186.0/24 maxlen: 24
2a00:5884::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:f9:f0:98:a4:8f:65:cd:ef:95:6e:80:96:b5:d9:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f82554a856a422b061ae64c577630f91d408cd4a
Validity
Not Before: Jan 2 10:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a0475b517f77e07c676321877e35062d9f82997d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:1e:8c:68:71:d0:62:ca:6d:51:6b:04:77:b4:
82:63:9e:6c:e3:40:2c:9d:1e:27:9b:8a:a7:0e:62:
88:92:84:b5:b0:21:57:bb:38:96:9e:ce:f8:e8:ac:
59:30:a4:d1:9e:45:ec:24:65:46:d3:1a:c4:5e:91:
e6:02:48:c4:8c:5c:11:4f:64:ef:43:ae:30:da:9e:
ac:90:58:8d:86:06:8b:85:26:b4:bf:ba:a2:fb:75:
b0:48:0a:88:2a:87:0d:16:ee:15:54:d3:64:7b:7c:
02:af:ed:d8:25:4c:c9:3b:58:5c:7a:a2:94:64:c8:
d6:cb:55:ce:a6:75:34:42:c9:e3:1e:a5:94:c8:a8:
1a:d7:10:9e:5b:5c:aa:0c:d0:be:56:1f:33:fb:d6:
c2:75:1d:9a:77:64:b8:c0:e7:a2:a6:61:46:88:2b:
63:85:56:d7:23:85:e4:24:1f:40:ce:7f:ad:c2:29:
69:e6:89:21:57:19:04:54:c0:9c:7c:9a:18:80:27:
4e:d5:af:b8:6c:b9:97:a7:d1:9a:3d:d3:82:3c:ac:
bf:10:74:54:5b:11:2b:a2:4f:2c:a9:87:93:02:13:
1d:0c:7f:d8:65:96:6e:d2:80:9d:06:16:f5:66:56:
39:4c:52:fb:de:03:dd:6f:59:f6:3d:90:f1:9c:c2:
16:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:47:5B:51:7F:77:E0:7C:67:63:21:87:7E:35:06:2D:9F:82:99:7D
X509v3 Authority Key Identifier:
keyid:F8:25:54:A8:56:A4:22:B0:61:AE:64:C5:77:63:0F:91:D4:08:CD:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-CVUqFakIrBhrmTFd2MPkdQIzUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9437a2-07e6-4e6a-aa3f-965d6d603bfa/1/oEdbUX934HxnYyGHfjUGLZ-CmX0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9437a2-07e6-4e6a-aa3f-965d6d603bfa/1/1-CVUqFakIrBhrmTFd2MPkdQIzUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.234.186.0/24
IPv6:
2a00:5884::/32
Signature Algorithm: sha256WithRSAEncryption
c1:dd:f7:fd:4a:6d:69:3d:5a:67:44:5f:86:15:46:57:6e:cf:
d6:c9:4f:fd:1c:15:43:2e:5e:38:de:c9:d0:dc:46:fe:4b:5d:
1b:b7:e4:cc:df:b4:15:ae:56:81:1f:75:42:c7:c5:46:27:8f:
40:cd:ce:b2:3d:50:a6:93:6f:2d:63:48:55:bb:b7:c3:63:bd:
5c:92:a4:df:94:99:4b:c6:ca:a6:4f:ff:45:20:cc:c4:62:88:
b7:c5:bd:85:5b:70:12:71:67:24:b9:7f:a6:b4:49:54:3d:84:
24:5d:1e:14:1d:80:66:00:ba:29:42:3a:18:99:0c:a9:af:d7:
17:00:90:37:67:77:1d:34:14:16:84:c3:1e:3f:13:9a:69:d0:
ff:8c:f3:49:fb:cd:29:3d:ee:35:5b:9a:80:fa:1e:b9:ca:a4:
70:a0:7f:93:cd:d4:cd:e4:be:8c:8d:42:15:0d:73:20:97:21:
7a:6b:f5:2f:f1:ee:b3:ee:5c:72:cd:05:a6:15:d1:f6:e7:4e:
cf:8b:46:b9:04:98:38:09:2f:6e:05:20:6e:22:e4:54:7f:1f:
c2:47:13:48:4c:63:06:71:61:e7:12:b9:11:0d:f0:a1:5e:59:
b6:17:6e:96:e2:10:6c:bc:3c:fd:de:6e:5f:41:d1:44:da:92:
43:bb:0e:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:25 2024 by rpki-client on console-ams.rpki-client.org