Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/8lehODVj99K2PVSd8GqdiIrMipg.roa
File: 8lehODVj99K2PVSd8GqdiIrMipg.roa (raw, json)
Hash identifier: 21J97jKTls6FFBESNXcemULnslsGiFv10A0t2xG+LXE=
Subject key identifier: F2:57:A1:38:35:63:F7:D2:B6:3D:54:9D:F0:6A:9D:88:8A:CC:8A:98
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 01856FD546F0D117904B97FA887B683E50B6
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/8lehODVj99K2PVSd8GqdiIrMipg.roa
Signing time: Mon 02 Jan 2023 00:15:26 +0000
ROA not before: Mon 02 Jan 2023 00:15:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62279
IP address blocks: 89.47.179.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:46:f0:d1:17:90:4b:97:fa:88:7b:68:3e:50:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 2 00:15:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f257a1383563f7d2b63d549df06a9d888acc8a98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:e8:42:f4:e9:45:de:e4:a6:b6:60:8f:df:b0:
00:75:c6:a6:15:7b:61:6b:75:f4:d5:71:24:0c:09:
b2:ee:3e:56:d6:24:df:42:97:83:96:d4:4f:f8:cf:
a9:4d:69:a7:be:aa:d5:b3:9b:86:35:c4:f1:31:e5:
09:74:79:76:28:23:1d:6d:2b:0b:5f:8c:ae:88:20:
20:32:09:3c:b9:73:a4:9a:c4:07:23:90:c2:60:ed:
08:28:fc:e4:97:50:7f:c6:a1:13:b3:18:16:49:02:
a2:9e:95:53:f8:54:7c:28:9b:4e:f9:2e:3c:e3:0d:
4c:2f:a9:05:48:80:94:ed:2f:57:b1:46:6a:7f:7a:
38:f1:36:26:4c:da:a3:27:a7:f4:9a:33:28:66:e8:
1c:50:be:01:4c:9c:0c:55:ae:94:57:58:53:d4:d3:
e5:35:f1:19:fd:67:49:86:31:74:55:b4:9f:25:73:
20:7b:e0:c6:d3:74:63:a7:5f:d4:09:e3:1f:ca:02:
8e:73:02:fa:70:e1:ca:ff:40:cb:97:e8:7c:4d:83:
e6:aa:21:4f:9e:f2:58:29:d1:7b:8f:fa:d9:08:29:
12:0f:ca:75:97:77:67:c2:0e:c0:99:74:1c:f1:38:
55:6c:86:ff:97:ef:da:6c:d7:28:2a:2d:93:90:c6:
8c:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:57:A1:38:35:63:F7:D2:B6:3D:54:9D:F0:6A:9D:88:8A:CC:8A:98
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/8lehODVj99K2PVSd8GqdiIrMipg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.47.179.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:f7:f0:59:ec:18:b2:33:d7:7b:f7:68:17:1e:5b:69:32:4d:
b4:27:2f:6e:08:91:b2:f2:b3:de:68:07:0f:a9:e6:bd:c5:de:
76:28:a6:e5:da:23:06:97:17:e9:91:89:5f:7c:1f:13:20:f6:
e2:98:8d:0c:97:7a:b5:4b:55:68:a2:02:f3:43:29:50:0b:b8:
34:53:cc:ce:b4:2a:da:4b:7c:52:af:e7:cd:83:be:48:6c:b6:
2d:97:4f:56:99:29:11:0b:89:83:e5:51:48:9f:fd:81:75:14:
ab:ea:21:39:c0:46:c1:a7:b3:b1:b0:bd:6d:8b:69:6f:59:cd:
43:4d:58:0f:55:76:42:76:3a:f3:a3:2e:eb:06:3f:c0:f5:2e:
c8:02:df:9f:e6:1f:ba:aa:88:6c:d6:a8:2f:ed:a2:9e:99:49:
db:12:e0:f1:8d:09:b0:9d:fd:df:5b:49:75:3d:63:36:0c:e9:
ba:61:b0:27:b7:3f:4b:64:8c:12:bf:ee:28:6b:5b:19:ae:06:
02:1b:bc:78:93:d8:99:53:20:ad:f2:09:ad:51:89:cf:76:c1:
96:0e:bc:86:62:61:07:e9:12:16:f7:54:a6:bf:13:fa:7e:2c:
79:d8:83:90:e4:74:f7:25:a2:f4:e9:b9:02:0a:e9:2d:b5:a5:
e5:76:45:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:52 2024 by rpki-client on console-fra.rpki-client.org