Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ffzAi0zqNG69hTM_D4yF1Uj2yj0.roa
File: ffzAi0zqNG69hTM_D4yF1Uj2yj0.roa (raw, json)
Hash identifier: wywf3KFOkr+7IFoXGg1Mz306ewq3NSCy+sWqMy/35go=
Subject key identifier: 7D:FC:C0:8B:4C:EA:34:6E:BD:85:33:3F:0F:8C:85:D5:48:F6:CA:3D
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0189D00C11C78620385EAA26D33BCB1AADE7
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ffzAi0zqNG69hTM_D4yF1Uj2yj0.roa
Signing time: Mon 07 Aug 2023 12:49:59 +0000
ROA not before: Mon 07 Aug 2023 12:49:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207633
IP address blocks: 89.45.162.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 07 Aug 2023 13:26:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d0:0c:11:c7:86:20:38:5e:aa:26:d3:3b:cb:1a:ad:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Aug 7 12:49:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7dfcc08b4cea346ebd85333f0f8c85d548f6ca3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:6b:8e:c4:a1:37:3f:51:e9:75:84:43:74:c3:
5f:07:4e:2d:93:e2:d0:56:db:3e:3d:4f:50:0e:18:
eb:44:57:c9:dd:82:e0:08:0d:89:be:1e:26:e7:8a:
af:06:2d:31:4b:69:0e:a9:59:19:ab:90:3f:dc:75:
e0:84:4f:6a:b8:cb:71:5b:c1:3e:4b:d8:3c:5b:0d:
86:17:ba:de:83:11:05:61:ed:b2:e1:7e:ee:0a:95:
09:b2:bb:01:7a:b9:8e:6c:e4:d8:89:2b:18:67:76:
2e:65:e0:34:b3:84:02:57:d1:49:94:d5:a5:54:3e:
b2:4c:9a:1c:c5:0a:c4:7b:0f:6d:ab:97:fb:8d:27:
32:44:39:0f:83:a4:ec:09:f0:8a:d5:56:1b:65:fd:
70:eb:61:02:01:20:89:77:a9:c5:92:bf:5a:b8:b7:
49:70:b6:bc:85:58:47:ea:a8:33:af:83:81:b6:91:
22:75:23:99:cb:d4:d8:34:10:6e:03:b8:0f:59:83:
e5:00:11:e9:cd:fc:26:d5:0c:e2:18:e3:38:12:71:
cb:0f:8f:18:31:27:5c:1a:8a:b7:fa:52:e8:0e:f0:
7c:fc:79:4a:2b:63:6b:de:3b:78:c2:fa:0e:40:89:
ef:2c:6f:70:24:03:8b:d0:37:24:66:d9:14:3e:71:
03:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:FC:C0:8B:4C:EA:34:6E:BD:85:33:3F:0F:8C:85:D5:48:F6:CA:3D
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ffzAi0zqNG69hTM_D4yF1Uj2yj0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.45.162.0/24
Signature Algorithm: sha256WithRSAEncryption
45:55:14:87:c0:88:1f:db:18:6d:2e:33:d0:1b:fd:7b:4c:c0:
af:6d:bc:1a:4e:e9:ac:bb:27:2e:7d:c1:06:42:52:d8:fb:4d:
5f:9e:32:7f:f3:23:3a:4a:ff:ad:c9:77:fe:e2:89:5c:cf:86:
3b:8e:b6:ea:0a:dc:62:a9:74:b9:55:2b:62:63:72:47:ac:c5:
d4:9a:8f:da:7b:b0:2b:66:72:71:b0:23:5b:af:9e:83:0c:9a:
04:3d:4b:cd:43:d0:db:aa:b7:0c:cb:96:92:9e:7c:c4:68:72:
34:84:68:bc:c9:33:4a:b1:60:cf:34:f4:34:a5:61:86:27:05:
4c:c9:c1:ad:c1:e3:47:30:fb:8d:b0:b7:73:ed:2e:c8:0e:9c:
39:73:d9:50:9d:a4:d2:a6:e0:68:b4:c7:a6:9f:3c:1f:fc:52:
c3:c0:3e:81:d7:47:4a:f5:6a:80:b7:88:9a:b0:de:0b:ca:02:
02:9b:0d:49:a9:74:52:27:8f:4c:2c:86:47:38:ae:9d:cf:90:
12:22:57:ee:d0:b0:3e:3d:5f:34:b4:23:a6:75:f1:21:97:a7:
39:b6:ef:3e:e2:ce:cf:21:bf:40:ad:75:d9:ed:2a:d6:c1:58:
21:7e:98:8f:7a:fc:51:ef:9c:4d:be:a3:a0:7f:ff:cd:15:db:
0b:9a:7d:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:14 2024 by rpki-client on console-ams.rpki-client.org