Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ofIHJUgQWmIIBsbrPlerBMj695s.roa
File: ofIHJUgQWmIIBsbrPlerBMj695s.roa (raw, json)
Hash identifier: BY0BPBe2HsoYyusT1V5exuP5RnMQwE0yTxzcwWvAZwY=
Subject key identifier: A1:F2:07:25:48:10:5A:62:08:06:C6:EB:3E:57:AB:04:C8:FA:F7:9B
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018CC4933D8DF68D7C2FD5937DFEB4A44599
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ofIHJUgQWmIIBsbrPlerBMj695s.roa
Signing time: Mon 01 Jan 2024 10:30:32 +0000
ROA not before: Mon 01 Jan 2024 10:30:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200482
IP address blocks: 89.43.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Jan 2024 11:20:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:3d:8d:f6:8d:7c:2f:d5:93:7d:fe:b4:a4:45:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 1 10:30:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a1f2072548105a620806c6eb3e57ab04c8faf79b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:9b:0e:78:81:15:1e:f2:d9:e5:69:8f:7e:c7:
2a:62:6d:d9:37:97:d7:98:26:69:03:76:17:d9:f1:
b9:a8:0a:df:3c:eb:60:81:12:55:dc:af:ed:96:16:
30:83:79:2c:c1:51:07:02:14:8c:ac:4c:de:9f:ea:
40:50:ed:73:cd:60:c7:c4:f6:26:76:19:c8:8f:bc:
1f:fc:ab:7b:9b:48:39:62:49:35:5f:59:f5:8f:57:
c3:61:11:28:be:57:1e:58:ff:1c:5c:22:9e:89:00:
62:0d:80:d6:0b:a3:d5:a4:1b:3f:06:dd:c2:c5:50:
23:17:7a:e7:34:b5:6e:2c:5a:1a:73:5e:4f:13:ad:
c4:5f:d3:51:ff:4d:ca:24:56:a1:c3:e4:96:41:09:
bd:b1:5e:e8:40:82:39:1c:aa:a3:a1:46:e6:3d:07:
4c:93:5a:9b:7a:ff:cb:c4:5d:4b:a0:ce:c5:c5:82:
28:b6:6a:f0:26:5b:62:c5:9c:fc:b4:52:e1:cf:91:
fd:e2:16:8e:54:a2:35:b9:5c:53:ae:12:37:a0:52:
b6:7f:b2:b9:83:a1:72:b9:36:67:24:30:d3:03:53:
3f:86:1f:e9:d1:8e:06:0c:95:4b:4d:4c:97:7c:b5:
6a:81:1d:90:60:f8:75:52:90:8a:28:a2:55:32:50:
2e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:F2:07:25:48:10:5A:62:08:06:C6:EB:3E:57:AB:04:C8:FA:F7:9B
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ofIHJUgQWmIIBsbrPlerBMj695s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.43.62.0/24
Signature Algorithm: sha256WithRSAEncryption
15:cb:6a:53:c1:7a:7e:63:c2:9b:88:c0:2e:16:e5:9e:3e:90:
d4:34:40:59:3a:b5:0e:69:56:45:84:0e:c8:0b:07:21:c7:92:
7b:d4:d1:28:f0:64:38:38:4a:4e:80:41:39:b8:f3:e0:4b:5d:
a8:ea:bf:92:71:11:3e:fd:2f:a3:22:fc:db:74:ab:af:99:28:
3f:b1:19:54:5b:b5:9f:e9:4d:d9:f3:f4:52:ae:c7:88:6c:f0:
78:22:b7:3f:2d:69:0d:b9:b5:40:60:66:60:84:c4:d4:7e:94:
8d:64:f5:de:42:1a:0c:6e:f4:34:e1:5f:ff:a3:7d:17:57:14:
69:07:04:3a:1a:f1:48:ac:a5:b6:bf:6c:fa:c7:a9:24:c0:c3:
ec:2f:15:68:0b:e4:9c:e3:33:f8:c2:2e:28:7e:05:23:72:3f:
72:77:cd:e3:20:d9:45:35:43:0a:3e:90:ae:0e:0f:e4:84:fd:
51:2f:96:b2:52:1d:2f:56:c7:62:db:e9:3a:93:a9:1b:02:85:
1c:00:0e:45:59:51:4f:c8:fc:ef:62:2a:95:9f:6e:af:b3:79:
24:c3:02:32:38:fd:37:e8:66:ee:0b:29:6d:26:21:74:83:6e:
71:77:a6:90:28:8d:57:d0:8e:de:3b:64:38:21:9b:3e:de:c1:
6c:b9:58:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:14 2024 by rpki-client on console-ams.rpki-client.org