Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/CJSPLfv4rPt6KPtplwrxxZT2drU.roa
File: CJSPLfv4rPt6KPtplwrxxZT2drU.roa (raw, json)
Hash identifier: zThvY/OFNT6vZSXNBuSTL2I2+z12NhoI7+ghiWf9dCg=
Subject key identifier: 08:94:8F:2D:FB:F8:AC:FB:7A:28:FB:69:97:0A:F1:C5:94:F6:76:B5
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 0190A1031D7128E40BFF19EC0E724E6F1B3E
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/CJSPLfv4rPt6KPtplwrxxZT2drU.roa
Signing time: Thu 11 Jul 2024 08:57:34 +0000
ROA not before: Thu 11 Jul 2024 08:57:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198154
IP address blocks: 89.46.217.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Jul 2024 18:20:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a1:03:1d:71:28:e4:0b:ff:19:ec:0e:72:4e:6f:1b:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Jul 11 08:57:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=08948f2dfbf8acfb7a28fb69970af1c594f676b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:fa:7e:61:81:7c:60:f9:0f:fd:3e:e1:d6:94:
3c:84:f0:6b:3d:a7:39:d9:5f:9e:e4:53:bc:5c:16:
70:6f:c5:41:83:c2:c1:87:83:88:bb:81:e2:d6:66:
18:e9:36:73:bc:0b:6d:7e:5d:55:58:4e:93:b5:ee:
cc:08:8f:02:5f:6e:0e:b9:c9:e2:05:73:12:c9:c0:
22:1a:f9:86:ab:43:39:20:f4:14:0d:48:02:f5:9c:
58:68:45:05:d8:78:05:27:04:5f:38:51:d8:a7:b8:
32:54:d6:d0:b1:d2:bf:34:07:e8:1a:9c:c3:a9:24:
25:82:e9:f6:60:af:b3:7d:4c:56:b4:c1:59:71:41:
91:48:f3:bb:89:7f:09:ef:76:12:9c:b3:70:67:ff:
0c:ac:83:8a:3f:4d:5b:1e:74:a8:a3:b5:41:95:43:
91:32:ce:9e:89:df:72:c2:07:17:99:20:ab:54:2d:
f5:32:66:67:66:7a:16:d2:de:b4:44:c9:37:61:89:
e7:17:ac:2d:d6:d7:36:f0:d1:13:ea:5d:cd:6e:a0:
50:11:ea:ac:e3:d7:f8:14:87:b8:ba:3d:7a:d8:b6:
d6:ae:55:c6:bd:c7:4f:b7:a4:74:45:bd:18:a4:af:
4b:17:b4:6a:4d:f0:0b:75:c3:66:b8:3a:80:df:c9:
3e:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:94:8F:2D:FB:F8:AC:FB:7A:28:FB:69:97:0A:F1:C5:94:F6:76:B5
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/CJSPLfv4rPt6KPtplwrxxZT2drU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.46.217.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:16:5a:ef:9b:31:b9:7e:1c:70:dc:ca:82:ba:27:ea:ee:90:
38:08:be:3b:74:fa:9d:8c:86:85:38:b3:b8:61:4e:3e:1f:f7:
ab:8b:71:48:6d:be:06:1b:a2:85:9d:ce:3d:f3:fe:b3:b6:84:
16:98:c7:2c:bc:44:6a:cb:13:63:cb:f1:ed:17:02:77:a5:63:
59:97:c1:c7:4c:50:3d:81:7b:f7:32:99:22:64:9a:dd:8e:32:
e9:73:8a:d8:61:87:fc:fb:64:b9:94:43:cc:c3:76:e1:04:15:
45:35:3f:6b:ce:ed:a2:bb:33:46:1a:48:02:e3:1f:ab:55:c5:
5f:14:e7:29:2d:24:90:0a:2f:f5:a2:ae:d8:74:6e:bb:4a:a8:
1a:85:83:7e:d9:5f:af:56:e2:3c:4f:2a:2b:20:70:92:fe:89:
34:6c:ff:77:d7:fe:80:17:76:0c:d2:ff:bd:3c:28:8e:f4:a1:
ac:09:9e:a0:01:a8:76:e3:ad:fd:f5:cd:72:18:c6:4a:d7:83:
70:2f:03:39:4b:7f:50:40:24:b8:9b:4d:09:3d:95:f6:b8:16:
b1:e2:67:3c:5a:65:76:c1:4a:96:71:7f:4e:d7:8b:97:a4:9c:
be:60:06:35:1f:ef:1c:25:ec:ec:b3:44:c8:e7:5f:8e:76:8e:
00:52:eb:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 12 19:09:31 2024 by rpki-client on console-fra.rpki-client.org