Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/pgIxhMWCh35lsHP5nHK1xtpYAzk.roa
File: pgIxhMWCh35lsHP5nHK1xtpYAzk.roa (raw, json)
Hash identifier: TzzMlGfoDLUE+tSjzhL9p9/rksQsuUFff0gjOLVWI/U=
Subject key identifier: A6:02:31:84:C5:82:87:7E:65:B0:73:F9:9C:72:B5:C6:DA:58:03:39
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 018CC5DC331426837E10F16AA77EC03A81D3
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/pgIxhMWCh35lsHP5nHK1xtpYAzk.roa
Signing time: Mon 01 Jan 2024 16:29:51 +0000
ROA not before: Mon 01 Jan 2024 16:29:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202029
IP address blocks: 89.44.242.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Feb 2024 10:02:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:33:14:26:83:7e:10:f1:6a:a7:7e:c0:3a:81:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Jan 1 16:29:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a6023184c582877e65b073f99c72b5c6da580339
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6a:da:7b:8b:31:47:fe:f7:47:ff:98:fb:c9:
1c:f2:66:e2:a9:08:25:2c:fb:32:b8:b0:fd:5f:86:
11:61:95:da:92:12:98:59:b0:ce:74:d9:14:94:c2:
b5:96:78:89:4d:1c:35:90:14:83:4d:4a:97:e3:89:
dc:17:f8:b1:ee:33:ca:69:40:ba:3a:33:6e:53:af:
a1:a1:93:14:12:44:e5:d9:50:67:f2:23:cc:87:f5:
35:68:43:39:87:e8:04:a2:7e:3c:28:3e:80:cf:0c:
eb:b8:b6:83:5b:99:8e:5b:49:56:2a:09:d8:a9:b9:
c7:9c:23:0a:c5:8b:de:07:c9:1d:a2:31:38:1a:10:
fb:fd:82:75:e6:e9:80:7a:f9:e5:bc:09:c3:90:63:
39:d7:b0:0a:50:cf:90:82:c9:03:ab:7a:ce:7a:92:
15:fb:80:75:75:94:c7:ba:52:fd:37:30:5c:0b:14:
9f:95:20:04:4e:60:c4:e2:e5:ae:f2:8e:7e:76:ca:
9d:a6:ed:f5:7c:01:57:c4:6d:f8:4e:9c:59:37:55:
fd:ff:c2:df:84:3f:ca:fc:af:19:88:9e:eb:fb:7f:
2a:be:6e:4b:5b:d1:cb:8c:92:09:fb:9a:35:d6:7c:
c1:b0:85:57:77:84:9e:65:89:d8:2b:50:58:83:db:
d3:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:02:31:84:C5:82:87:7E:65:B0:73:F9:9C:72:B5:C6:DA:58:03:39
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/pgIxhMWCh35lsHP5nHK1xtpYAzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.44.242.0/24
Signature Algorithm: sha256WithRSAEncryption
97:0b:59:78:af:69:de:18:14:67:93:28:10:c3:ba:57:26:48:
1a:a3:c7:e8:0f:c6:23:5f:98:67:bb:3b:7d:31:48:8e:68:a6:
ed:e5:0c:6a:d2:eb:87:7e:d9:68:6b:e3:dc:18:da:e2:96:ac:
bc:20:51:8a:09:36:da:7a:f8:f9:03:72:7a:58:dd:23:a2:1c:
60:58:32:d8:68:bb:5e:7a:d1:fa:82:29:cf:9b:93:43:cf:77:
0a:77:8e:67:cd:3a:34:f9:82:d9:ee:87:3a:31:94:98:5f:60:
1a:80:b0:b4:b7:bc:6c:5a:b6:f6:06:21:6c:07:47:40:f9:e6:
28:0d:8b:b1:f3:8d:89:a1:c9:ba:b9:bb:0d:11:d6:81:72:ea:
00:ac:e2:2a:c8:9e:d8:88:6e:bd:9a:e0:83:b0:d3:4b:aa:f6:
c9:b8:47:65:26:a5:09:29:ab:b0:03:ec:8f:28:e7:31:9a:a1:
9b:40:42:e5:d9:e2:e5:41:d2:d8:3d:bf:55:5d:de:0d:11:c3:
5d:c4:75:28:cc:2f:65:6d:63:b4:73:2f:48:60:59:de:12:9f:
4a:ee:83:44:ba:91:8a:45:c6:3a:e4:73:ef:8a:24:f2:c6:62:
9c:53:67:7a:0b:41:ed:76:fe:c8:98:83:7e:67:94:07:cd:2b:
a4:3a:63:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 26 14:29:23 2024 by rpki-client on console-fra.rpki-client.org