Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/6yPhuXFZ1GRoFBvHlt2dEyfM6FA.roa
File: 6yPhuXFZ1GRoFBvHlt2dEyfM6FA.roa (raw, json)
Hash identifier: edFiwIhWkJlygnR64B0A+GjOeBhzOt1nOLiIvhJw3JE=
Subject key identifier: EB:23:E1:B9:71:59:D4:64:68:14:1B:C7:96:DD:9D:13:27:CC:E8:50
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018808EC1F11778DC0F41ECE99EF008354C2
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/6yPhuXFZ1GRoFBvHlt2dEyfM6FA.roa
Signing time: Thu 11 May 2023 03:47:52 +0000
ROA not before: Thu 11 May 2023 03:47:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51722
IP address blocks: 89.34.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Jun 2023 10:09:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:08:ec:1f:11:77:8d:c0:f4:1e:ce:99:ef:00:83:54:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: May 11 03:47:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eb23e1b97159d46468141bc796dd9d1327cce850
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:f9:82:a4:2e:48:02:3c:2a:44:c8:42:b8:9e:
83:fb:36:8e:5c:bb:79:70:3e:db:8b:0f:63:1b:4f:
d9:52:01:3e:10:a2:1f:48:3a:34:a0:e8:06:25:c3:
31:b2:13:cb:85:e6:c6:6f:a4:78:15:29:b5:fe:44:
db:27:25:6c:18:83:52:76:39:45:5c:2c:cc:5c:65:
d1:da:87:f2:10:16:e4:d0:80:80:18:9d:40:92:a7:
97:e8:62:e3:33:b9:69:79:07:8d:60:28:46:5e:c7:
9c:f3:c2:a8:c7:55:80:e3:22:01:50:65:f3:00:b0:
81:da:18:1a:b1:56:52:ab:6f:78:23:af:4e:36:97:
80:4e:6a:0a:89:70:5f:74:85:56:d5:86:ec:d1:c4:
ee:d4:3d:62:04:f5:c2:ac:fa:d4:d6:67:0e:0e:84:
06:59:92:69:42:18:74:c5:cd:7c:08:52:50:94:66:
d7:ce:b0:d7:99:0c:14:d1:26:20:7e:eb:c2:a5:14:
ff:7d:c0:85:e6:eb:ec:bb:be:fc:af:ea:89:d4:fc:
69:50:cb:45:72:bd:5e:95:7c:b1:bf:f8:92:97:d3:
74:e9:5b:c8:b7:90:54:91:70:17:c1:35:0c:ed:db:
88:07:c4:72:4c:be:cf:09:30:1a:e2:1b:37:68:4b:
b4:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:23:E1:B9:71:59:D4:64:68:14:1B:C7:96:DD:9D:13:27:CC:E8:50
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/6yPhuXFZ1GRoFBvHlt2dEyfM6FA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.219.0/24
Signature Algorithm: sha256WithRSAEncryption
39:da:fe:91:63:c5:b3:95:78:7d:8a:fb:10:70:36:af:59:cf:
80:da:0b:29:ce:55:1f:9c:83:f3:39:7e:dc:e1:b6:37:fc:8e:
3e:bd:66:57:b8:31:bf:40:67:36:89:a7:67:40:fa:22:b9:e4:
9b:2f:6d:a8:f8:53:d1:e1:64:66:3a:ba:35:e2:43:7f:9d:5c:
2a:b6:79:4b:5e:65:47:48:a5:44:6f:75:47:d2:42:ff:18:81:
5e:e3:be:bd:a1:5e:83:37:93:7e:ec:31:b8:53:25:91:04:40:
56:24:5a:30:0d:bb:3e:a2:fc:0c:a1:aa:d3:87:e4:88:2d:a8:
9b:cf:6f:75:d2:dc:8c:1b:c7:61:a5:30:e4:f4:c7:6f:69:5f:
d2:cc:d1:96:5f:84:3b:a7:6f:ae:11:ec:64:e9:68:f1:d7:6a:
06:9f:50:a4:10:3a:6c:de:7a:7b:7e:b8:48:b7:cb:c2:21:3b:
30:fe:d4:a9:70:1a:24:b9:17:c2:d3:28:5d:a6:10:5c:6a:83:
10:54:03:42:98:41:07:3e:f8:87:71:d3:79:5b:60:66:55:43:
3b:30:77:b3:e5:b2:b0:c1:d2:1a:50:b5:cf:25:53:78:48:a1:
b3:11:91:60:a9:2a:28:f6:1a:71:fe:93:57:d0:01:70:dc:b3:
c2:a8:7a:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:06 2024 by rpki-client on console-fra.rpki-client.org