Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/_YfrnAKhC4SFmAeMByHOEmFenko.roa
File: _YfrnAKhC4SFmAeMByHOEmFenko.roa (raw, json)
Hash identifier: s/5MTfxSfhW1LWEnK7Wo9l9681UYF9Bz5B4xpkmW8EA=
Subject key identifier: FD:87:EB:9C:02:A1:0B:84:85:98:07:8C:07:21:CE:12:61:5E:9E:4A
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 01856FD53F726207ADDEB2796A2DFBDCC9A6
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/_YfrnAKhC4SFmAeMByHOEmFenko.roa
Signing time: Mon 02 Jan 2023 00:15:24 +0000
ROA not before: Mon 02 Jan 2023 00:15:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60694
IP address blocks: 89.40.167.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:3f:72:62:07:ad:de:b2:79:6a:2d:fb:dc:c9:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 2 00:15:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fd87eb9c02a10b848598078c0721ce12615e9e4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:fa:4d:94:74:08:dc:31:bf:18:5c:8f:fb:0c:
4d:97:20:ad:e1:ab:83:89:51:cd:ae:cf:8a:52:9b:
cc:14:74:e8:36:9c:ef:38:c5:ff:58:88:03:a0:95:
39:26:99:73:f7:f9:e7:fe:1b:2d:b1:7c:d7:97:6c:
2f:bf:6a:15:38:64:ba:e8:56:f7:b9:df:21:9c:6b:
0b:d7:64:81:12:3d:cb:be:5e:d4:e0:e2:ba:43:8c:
20:46:6b:cc:47:45:1d:f1:fa:74:ab:32:22:c0:28:
b4:b6:6c:92:13:bb:82:2e:e5:04:14:be:41:54:36:
93:64:96:04:db:43:18:1d:fb:aa:e4:4f:2b:65:90:
a4:11:3d:7d:85:b1:c2:ef:24:dd:cb:e8:9f:e0:f5:
02:f9:b5:42:ef:da:c4:03:11:a0:e5:06:92:66:74:
e6:1a:dc:93:d5:9f:dc:e9:28:3a:8b:43:97:2c:23:
34:fa:73:da:aa:3a:cd:d4:7a:d3:41:f7:0f:4e:f8:
70:e7:cd:c4:2f:10:e0:9b:20:de:b5:08:41:f1:c4:
1b:2c:5d:01:79:6a:65:55:4d:dc:7a:f9:db:07:a6:
57:c5:09:79:60:46:f2:6c:09:46:fe:23:f0:f4:cc:
12:c8:ee:3e:f0:bf:fd:a4:e7:4d:5c:7a:42:fa:49:
1f:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:87:EB:9C:02:A1:0B:84:85:98:07:8C:07:21:CE:12:61:5E:9E:4A
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/_YfrnAKhC4SFmAeMByHOEmFenko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.40.167.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:8e:a1:61:ec:5e:0d:74:b8:30:6f:d1:b9:28:57:e7:4c:51:
97:1c:7a:bc:01:b5:70:a2:cf:78:53:dd:f4:5e:3a:16:63:ae:
34:0f:96:d9:b6:fb:58:62:26:9e:f6:6c:23:cc:f2:79:5f:39:
4d:35:5e:76:36:5b:1a:7e:f8:54:63:ad:af:e2:ba:26:02:09:
60:58:49:ed:26:5a:90:45:77:2c:82:31:3b:9c:df:51:37:91:
ba:29:1d:ef:48:ef:83:b1:9c:14:c4:b9:c3:ad:36:e5:d6:67:
60:df:59:24:a1:4e:cc:5f:45:2d:b3:95:bd:b7:15:30:d4:69:
0f:47:73:52:24:11:a0:16:e6:6e:a7:8a:c4:14:ec:62:c6:d7:
1c:97:54:fd:e3:74:36:09:47:95:19:8d:6d:19:2a:d0:1a:58:
de:68:15:fa:be:40:42:bf:5b:79:be:4d:7c:44:5e:9f:33:60:
37:b0:52:da:fc:13:da:43:8f:c2:02:41:46:43:60:1a:0d:32:
79:9e:62:62:6d:b1:ec:eb:73:54:6a:e0:ff:ef:df:c4:46:b3:
07:8d:d8:b7:dc:e9:ad:47:7b:56:e3:7b:3c:77:e0:d8:24:bf:
88:e6:10:ae:12:1f:9c:f4:08:9a:9a:d1:13:7a:d6:31:34:78:
55:38:20:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:10:05 2024 by rpki-client on console-ams.rpki-client.org