Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/a94992-566b-4b6f-a689-a57604a3f6bb/1/lpeFSLY68d3WEqUIfCk1B2mhX8I.roa
File: lpeFSLY68d3WEqUIfCk1B2mhX8I.roa (raw, json)
Hash identifier: 7hs2WkklVaKRa50lRGHdArHGGjaLXayBZNXPh9WFngw=
Subject key identifier: 96:97:85:48:B6:3A:F1:DD:D6:12:A5:08:7C:29:35:07:69:A1:5F:C2
Certificate issuer: /CN=b8c8aa18730f4a83e2852c5692551abb5b1ee7ea
Certificate serial: 018BD842D93DA6BD8D17845DD1A1AD47BDD3
Authority key identifier: B8:C8:AA:18:73:0F:4A:83:E2:85:2C:56:92:55:1A:BB:5B:1E:E7:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uMiqGHMPSoPihSxWklUau1se5-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/a94992-566b-4b6f-a689-a57604a3f6bb/1/lpeFSLY68d3WEqUIfCk1B2mhX8I.roa
Signing time: Thu 16 Nov 2023 13:12:21 +0000
ROA not before: Thu 16 Nov 2023 13:12:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54339
IP address blocks: 89.38.40.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d8:42:d9:3d:a6:bd:8d:17:84:5d:d1:a1:ad:47:bd:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8c8aa18730f4a83e2852c5692551abb5b1ee7ea
Validity
Not Before: Nov 16 13:12:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=96978548b63af1ddd612a5087c29350769a15fc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:88:c9:06:da:80:76:99:8e:57:5d:d8:1d:f5:
2d:be:54:92:63:69:6e:d5:ff:8f:5a:68:1e:ae:a3:
c9:08:c5:13:0c:bf:82:68:c2:b6:12:dc:c4:bb:3c:
33:09:2e:17:8d:66:b6:fa:9b:6b:12:28:2f:36:c6:
b2:66:b3:50:92:88:d2:ab:5d:52:b0:da:27:a9:bb:
4a:70:d5:72:3d:0a:d1:01:3e:77:92:f2:9d:9b:b8:
66:0a:6f:e0:c5:28:0b:8e:36:d6:4a:1c:b3:ff:e1:
33:a2:68:33:b4:f8:36:d8:e7:2f:fd:43:08:90:f2:
a2:8c:50:98:96:ef:cb:dd:3b:4c:8c:f7:8a:64:35:
ba:ba:f4:81:72:06:82:ae:2b:03:a0:de:23:2b:79:
5a:b2:86:03:d7:e9:c1:02:89:ab:65:db:8d:d9:8d:
73:b1:7d:41:12:1d:7a:51:9e:14:17:de:17:30:c2:
78:20:ea:6f:63:15:4e:08:af:f3:cc:2a:ab:ca:e2:
81:7f:ac:29:7c:b2:fd:a6:50:c3:99:17:26:02:ea:
37:6c:ea:32:60:9b:cd:8a:4c:32:42:8a:73:3f:6e:
ef:ca:14:10:0b:e7:32:c3:20:1a:65:6c:d9:b2:59:
e6:f9:48:ff:5f:ef:b0:fb:19:dd:58:03:fe:a8:3a:
1b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:97:85:48:B6:3A:F1:DD:D6:12:A5:08:7C:29:35:07:69:A1:5F:C2
X509v3 Authority Key Identifier:
keyid:B8:C8:AA:18:73:0F:4A:83:E2:85:2C:56:92:55:1A:BB:5B:1E:E7:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uMiqGHMPSoPihSxWklUau1se5-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/a94992-566b-4b6f-a689-a57604a3f6bb/1/lpeFSLY68d3WEqUIfCk1B2mhX8I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/a94992-566b-4b6f-a689-a57604a3f6bb/1/uMiqGHMPSoPihSxWklUau1se5-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.38.40.0/24
Signature Algorithm: sha256WithRSAEncryption
64:ad:e5:04:4c:9f:73:d0:e3:33:fb:1e:7e:67:9f:f9:9a:ef:
98:c6:4c:f0:22:ad:00:1d:c3:9a:d4:bf:b0:84:9a:2e:f0:88:
c9:bb:09:f5:0d:7d:d4:82:20:27:60:e8:00:67:46:9d:7a:01:
7e:3b:a2:81:c2:1f:a4:26:59:4e:c7:5f:cc:9a:72:a5:50:60:
81:b3:a1:13:67:7b:c0:b7:84:d7:89:47:52:dd:8f:72:b0:1f:
38:1b:48:12:89:9d:20:e6:88:8a:d5:cf:85:32:e4:e7:62:b2:
6a:7d:6f:a7:54:66:84:71:d5:c8:82:28:81:93:b3:66:dc:e2:
b2:33:53:42:6c:7f:7a:b3:b0:dc:b4:08:2a:3e:50:27:95:d9:
f6:b0:8a:01:96:87:c2:cf:08:52:b2:99:a0:f9:16:24:75:b3:
ed:4c:19:d8:bb:c5:8b:ca:94:dc:73:41:45:5a:92:60:3e:6c:
7b:f6:c7:b1:9f:e3:b9:92:82:1f:5d:ab:da:33:b9:fd:86:54:
87:03:c3:08:dd:9a:cf:22:f0:15:d8:ae:0a:16:f0:df:62:68:
95:99:b8:5e:c8:a4:73:82:8a:70:6b:96:1d:3a:22:86:04:d2:
db:89:ea:d2:3b:72:3a:e5:32:97:d2:09:ca:15:cb:88:11:9a:
09:20:9f:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:04 2024 by rpki-client on console-fra.rpki-client.org