Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/2d0a48-9f86-48e0-a01e-5b3285c3abaa/1/hTvnP4iqofZh_gNipK_qYU19cWw.roa
File: hTvnP4iqofZh_gNipK_qYU19cWw.roa (raw, json)
Hash identifier: k/ECLbLHF3ileUjCN1VRpqs92BgjckNQmqMpdQNikv4=
Subject key identifier: 85:3B:E7:3F:88:AA:A1:F6:61:FE:03:62:A4:AF:EA:61:4D:7D:71:6C
Certificate issuer: /CN=26c988f21ff1ed7df42a6263723226686d3c18d6
Certificate serial: 018AE138A2B3F8B18BFB50BB523708D22368
Authority key identifier: 26:C9:88:F2:1F:F1:ED:7D:F4:2A:62:63:72:32:26:68:6D:3C:18:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JsmI8h_x7X30KmJjcjImaG08GNY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/2d0a48-9f86-48e0-a01e-5b3285c3abaa/1/hTvnP4iqofZh_gNipK_qYU19cWw.roa
Signing time: Fri 29 Sep 2023 13:54:59 +0000
ROA not before: Fri 29 Sep 2023 13:54:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56648
IP address blocks: 89.207.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:e1:38:a2:b3:f8:b1:8b:fb:50:bb:52:37:08:d2:23:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26c988f21ff1ed7df42a6263723226686d3c18d6
Validity
Not Before: Sep 29 13:54:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=853be73f88aaa1f661fe0362a4afea614d7d716c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4a:d6:dc:a4:ee:fd:45:3b:29:a5:1c:33:34:
2d:0e:57:15:4e:00:e3:19:b0:9b:d7:95:c5:f5:0a:
63:29:d6:24:48:a3:af:e4:8b:4a:2e:4d:a4:de:fb:
5b:86:ac:06:7f:f2:ca:84:eb:82:a6:10:8d:f6:03:
83:72:75:8f:e4:fc:c0:28:e0:a3:4a:31:10:ad:f1:
d7:3a:74:a4:dc:8d:36:db:cd:61:e1:92:d2:c6:a5:
b6:f8:55:68:15:3d:ad:ea:03:be:b0:6a:ca:2d:a9:
79:b1:a5:39:82:d7:31:10:5e:59:b7:dc:85:35:f6:
c5:59:78:a2:b4:3a:99:de:7c:7f:4f:ee:db:5b:51:
9a:c7:be:6c:b8:01:08:c7:2c:26:aa:b1:45:91:f9:
ab:b9:c0:33:5f:a2:6f:4b:8d:a6:2f:7b:ad:71:9d:
bf:a3:55:b6:e0:83:7d:f6:8d:37:71:c5:8d:2c:e5:
17:42:1f:98:60:4a:0f:eb:eb:94:c6:9f:c4:69:67:
c3:66:d2:cd:c6:47:b2:55:b1:0a:60:72:44:e8:bf:
3e:31:1b:0a:5c:09:35:bf:73:23:e1:58:ec:21:d8:
d2:2a:eb:dc:86:6a:78:75:7f:eb:94:1d:cf:75:2b:
65:ab:42:ee:70:7e:3c:e2:ad:25:4f:d1:d8:60:a0:
82:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:3B:E7:3F:88:AA:A1:F6:61:FE:03:62:A4:AF:EA:61:4D:7D:71:6C
X509v3 Authority Key Identifier:
keyid:26:C9:88:F2:1F:F1:ED:7D:F4:2A:62:63:72:32:26:68:6D:3C:18:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JsmI8h_x7X30KmJjcjImaG08GNY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/2d0a48-9f86-48e0-a01e-5b3285c3abaa/1/hTvnP4iqofZh_gNipK_qYU19cWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/2d0a48-9f86-48e0-a01e-5b3285c3abaa/1/JsmI8h_x7X30KmJjcjImaG08GNY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.207.157.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:60:eb:b3:53:41:02:05:1f:bb:3b:6a:7d:e6:31:f4:3a:ac:
30:95:01:53:71:8a:f7:2b:94:3e:ef:44:88:4e:93:7c:8f:3a:
ae:d5:e3:dc:34:bb:c3:6f:7b:2f:61:42:ed:39:49:fc:2f:83:
fb:66:b7:2b:86:af:5c:b2:31:cf:42:95:3b:eb:74:2c:28:f2:
02:49:df:79:3b:2a:ce:73:d4:eb:f5:f1:52:a4:83:57:d1:28:
c0:78:a5:aa:8b:9e:bf:a0:4a:6b:34:f2:e5:21:3d:03:fc:94:
b6:98:b8:82:75:75:e4:c7:35:b5:bc:32:c7:f9:2c:1d:c3:2c:
a5:af:ea:41:9a:ad:9f:3a:3a:0e:ca:28:48:19:08:5f:74:52:
0c:1e:a3:5b:09:e5:02:f3:e7:ab:f4:5a:cd:0f:a1:7a:cc:9a:
54:8f:d5:85:f9:3c:b5:de:19:26:08:da:9a:7e:2f:1f:5c:f1:
f0:43:68:ca:02:d6:76:19:86:00:3c:c7:14:5b:ae:50:8b:ab:
75:03:98:2f:44:eb:b4:8d:61:c5:5d:e3:30:ca:00:18:78:22:
06:20:25:b4:f7:81:0c:b7:26:c3:3d:0f:2b:00:83:bc:55:3a:
00:3d:69:27:9f:a4:68:e6:88:82:2a:92:f5:5c:23:37:2a:ae:
79:11:6b:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:22 2024 by rpki-client on console-fra.rpki-client.org