Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/g8P7nwPvSc5BPRc9U2XQON23OHM.roa
File: g8P7nwPvSc5BPRc9U2XQON23OHM.roa (raw, json)
Hash identifier: EHbCeH519b9i1s/HhhCDf1g4WR8PC2ay4X0vhJDtTfo=
Subject key identifier: 83:C3:FB:9F:03:EF:49:CE:41:3D:17:3D:53:65:D0:38:DD:B7:38:73
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018AFB8E8D8E332F5110E0AB919D11AFD387
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/g8P7nwPvSc5BPRc9U2XQON23OHM.roa
Signing time: Wed 04 Oct 2023 16:38:58 +0000
ROA not before: Wed 04 Oct 2023 16:38:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 89.34.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 20 Oct 2023 04:39:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:fb:8e:8d:8e:33:2f:51:10:e0:ab:91:9d:11:af:d3:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Oct 4 16:38:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=83c3fb9f03ef49ce413d173d5365d038ddb73873
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:9c:2c:35:3e:85:32:5e:d8:51:5a:44:d1:b6:
c0:c2:24:51:20:8a:ae:3c:e2:b4:c2:08:3f:37:d4:
a3:1e:27:eb:ab:86:06:96:84:b8:a1:aa:52:51:a3:
ca:45:20:6c:92:75:f5:28:3b:9a:b6:b2:74:52:33:
67:26:85:b8:0c:0d:ad:da:37:cd:02:7b:e8:a1:26:
7e:09:c0:a1:71:33:0b:c5:05:d9:60:84:47:17:b3:
b9:4b:b1:e6:74:00:59:e8:1c:c5:0f:2f:54:66:28:
fd:a4:48:06:40:3a:42:0b:7b:9f:86:4e:9f:1d:7d:
91:e1:04:f2:29:51:f8:8a:e2:16:ef:1b:0e:5b:fa:
dc:99:10:f6:fe:cb:a9:87:75:1e:00:6d:90:da:a9:
8e:41:e3:6d:07:7f:4d:f3:80:6c:4b:d4:8c:e6:5e:
a5:e6:83:5a:87:65:93:13:49:7e:46:9c:55:3e:e1:
dc:6f:7f:68:e6:2e:3a:d2:e4:0b:a0:cf:ef:86:ab:
83:e5:1c:71:a3:ab:de:c2:85:04:8e:24:21:9a:00:
6b:6b:59:fb:0a:34:be:4f:56:59:22:82:f3:da:61:
70:65:c0:8c:16:a0:b0:36:d6:82:63:04:29:9c:51:
b8:02:88:b2:33:e3:33:4e:3a:49:fd:53:ad:fe:79:
39:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:C3:FB:9F:03:EF:49:CE:41:3D:17:3D:53:65:D0:38:DD:B7:38:73
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/g8P7nwPvSc5BPRc9U2XQON23OHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.219.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:9a:c4:1e:2a:f7:17:00:e3:2b:3f:0f:ea:52:4b:d8:23:29:
8b:8b:49:fe:d0:57:36:6e:63:ec:2d:c6:dc:ec:8e:ac:da:a7:
40:12:ca:f3:eb:0f:df:03:57:5f:b2:78:c9:df:78:d3:c1:a9:
3e:66:a1:e0:4a:30:d3:77:85:3b:97:20:14:5b:8f:d0:fa:73:
88:f5:57:08:99:60:fd:57:a1:80:07:b9:f0:db:24:d3:c7:9f:
a2:c8:a1:1b:65:a8:a6:6c:8f:40:98:a1:50:af:6c:86:e0:79:
1e:f4:44:bc:e9:d9:9a:87:29:a5:86:bf:0d:a7:25:53:20:b9:
6c:3a:a5:9d:df:6b:31:87:26:49:ee:64:29:8a:19:07:32:49:
3d:42:55:f7:b9:c0:2c:08:c9:23:e8:a5:b1:33:06:ec:ea:af:
ae:74:5c:2d:06:94:38:89:89:27:ff:f5:19:d2:97:59:71:69:
ae:61:80:32:8c:4d:2d:3c:3b:81:5c:64:b1:c9:5e:e6:82:20:
78:fa:dc:0a:d6:33:6a:ce:d5:6c:5d:0a:e2:63:1b:ac:f1:c6:
2d:f7:8d:c7:44:e8:3b:66:91:48:f0:78:0a:1a:b2:f8:85:1a:
36:d7:ad:bb:39:ac:38:66:a2:77:8d:bd:09:9d:5f:b4:a7:68:
7f:e5:43:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:10 2024 by rpki-client on console-fra.rpki-client.org