Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/99a4cc-4720-4a64-aa06-1f924495fcdd/1/vA0SghoQGg9OiO4qn3KejVUQMrc.roa
File: vA0SghoQGg9OiO4qn3KejVUQMrc.roa (raw, json)
Hash identifier: sZuH/P5nOU/8Xj+AmxNDps5WkWYb7ltLGjkRj36cQzE=
Subject key identifier: BC:0D:12:82:1A:10:1A:0F:4E:88:EE:2A:9F:72:9E:8D:55:10:32:B7
Certificate issuer: /CN=89a6cd9f4beb7b0c04d31ffe5c674a87a7739d21
Certificate serial: 01856C9CE664BD7658CF7FAA3651D014BCB2
Authority key identifier: 89:A6:CD:9F:4B:EB:7B:0C:04:D3:1F:FE:5C:67:4A:87:A7:73:9D:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iabNn0vrewwE0x_-XGdKh6dznSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/99a4cc-4720-4a64-aa06-1f924495fcdd/1/vA0SghoQGg9OiO4qn3KejVUQMrc.roa
Signing time: Sun 01 Jan 2023 09:14:59 +0000
ROA not before: Sun 01 Jan 2023 09:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49190
IP address blocks: 87.239.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:9c:e6:64:bd:76:58:cf:7f:aa:36:51:d0:14:bc:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89a6cd9f4beb7b0c04d31ffe5c674a87a7739d21
Validity
Not Before: Jan 1 09:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bc0d12821a101a0f4e88ee2a9f729e8d551032b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:91:0d:d0:a5:0d:21:fc:dc:44:e8:9f:8b:2a:
87:c7:bc:e1:ba:3d:59:af:84:3f:80:78:7e:0c:77:
19:41:84:58:aa:6d:e0:87:b3:81:09:82:e0:3a:f6:
ee:41:8a:5a:57:75:a7:e3:91:72:44:0c:be:1a:4d:
d2:a4:0d:5d:2d:0e:65:4a:91:af:28:e1:a6:4e:4d:
35:74:6a:83:68:ec:16:21:50:c0:3a:80:df:72:05:
c8:43:4e:31:48:09:c9:e0:00:e9:7b:ee:e9:4f:20:
3e:fc:45:ce:b3:34:20:c0:33:6e:81:c1:36:ee:e4:
66:23:23:3b:27:0c:4e:46:5e:39:41:cc:0f:ca:71:
bf:0e:2a:ce:f3:f5:61:68:b1:16:a6:46:18:c6:d1:
02:14:0c:28:f0:2d:4e:76:48:d4:d0:94:05:0a:f3:
82:2a:05:08:5c:07:94:2f:22:32:fe:46:f0:7d:16:
46:db:98:dd:ba:2c:a6:71:88:c2:9c:06:e5:16:7d:
a4:5e:bf:12:e1:92:f0:d1:49:c5:9d:cd:07:23:d7:
4b:b7:6d:49:e8:a7:78:7d:b7:c3:f2:62:d3:1f:b2:
90:b4:c9:3e:8d:0e:71:a1:de:3a:52:ec:ee:38:d4:
09:a1:07:99:92:d3:9a:e7:e2:c4:c5:97:fa:28:b8:
f5:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:0D:12:82:1A:10:1A:0F:4E:88:EE:2A:9F:72:9E:8D:55:10:32:B7
X509v3 Authority Key Identifier:
keyid:89:A6:CD:9F:4B:EB:7B:0C:04:D3:1F:FE:5C:67:4A:87:A7:73:9D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iabNn0vrewwE0x_-XGdKh6dznSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/99a4cc-4720-4a64-aa06-1f924495fcdd/1/vA0SghoQGg9OiO4qn3KejVUQMrc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/99a4cc-4720-4a64-aa06-1f924495fcdd/1/iabNn0vrewwE0x_-XGdKh6dznSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.239.199.0/24
Signature Algorithm: sha256WithRSAEncryption
03:60:74:b3:38:32:87:d8:27:86:6f:f5:65:23:f1:40:d9:68:
f0:1b:e9:90:b9:7a:5c:42:88:4b:83:a6:24:c1:d6:ea:f1:a6:
92:22:96:87:11:9d:74:b4:ad:bd:a8:fe:b1:19:5b:bc:f4:0f:
17:01:9f:57:17:39:47:5d:a5:bf:00:c7:12:af:3c:ce:c4:38:
d3:89:92:6b:1e:25:94:15:f9:a7:3d:00:3a:59:df:ec:17:28:
7b:d0:81:3c:ff:4f:66:88:06:06:6e:08:f3:af:de:50:82:23:
70:34:e0:28:00:6f:b5:c2:78:2d:4b:51:9c:95:c1:42:45:80:
98:f9:2b:a1:70:a5:e1:97:e2:ec:55:c4:5c:c3:36:57:b7:c3:
d6:b9:0d:f8:82:47:51:29:30:c9:20:9b:e1:a1:be:4b:0d:05:
88:a6:e6:fc:db:6c:a3:6c:cf:07:b8:0c:30:cd:b6:82:e2:24:
22:ca:d8:1a:3b:f6:a9:e7:33:4e:44:54:62:62:00:22:ea:28:
c4:b2:b7:04:99:e6:12:e1:a8:eb:a4:ad:09:c4:67:e8:dd:0d:
43:9c:9e:72:d8:df:9b:ef:47:47:1f:5d:9e:7c:35:dc:82:65:
a9:c3:6e:f2:35:0d:65:89:36:c3:bf:01:67:68:b8:99:e9:1b:
50:87:47:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:27 2024 by rpki-client on console-ams.rpki-client.org