Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/16knNxB8wkr7pKoEj5RpRjKf_x4.roa
File: 16knNxB8wkr7pKoEj5RpRjKf_x4.roa (raw, json)
Hash identifier: iY9rJlnewOmcRxG+iWtc6ipA6YH+duThNxWkdTw1iYo=
Subject key identifier: D7:A9:27:37:10:7C:C2:4A:FB:A4:AA:04:8F:94:69:46:32:9F:FF:1E
Certificate issuer: /CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Certificate serial: 01894F276F96BAB0B48153E57A39EFC9B707
Authority key identifier: 09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/16knNxB8wkr7pKoEj5RpRjKf_x4.roa
Signing time: Thu 13 Jul 2023 12:08:51 +0000
ROA not before: Thu 13 Jul 2023 12:08:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212335
IP address blocks: 89.187.29.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:4f:27:6f:96:ba:b0:b4:81:53:e5:7a:39:ef:c9:b7:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Validity
Not Before: Jul 13 12:08:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d7a92737107cc24afba4aa048f946946329fff1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:4a:f8:9f:78:8c:d5:28:52:0c:07:11:a2:bd:
f5:a1:d5:18:9f:6d:f2:b5:a2:36:a7:b4:1b:5b:3d:
e4:dd:b2:82:59:24:92:b2:77:46:e5:1c:84:b9:2e:
70:ec:9a:77:81:c6:46:d6:93:57:ae:14:1b:dd:07:
e7:7e:23:17:8c:19:4a:55:41:dd:e4:53:06:2c:f1:
26:07:f4:df:62:83:c2:5e:19:03:fc:43:a0:23:07:
a8:b1:3c:a9:95:42:10:7b:8b:af:bb:e5:d1:ef:cc:
87:85:0a:51:b7:e5:63:f5:e3:53:6f:be:f7:7b:f7:
88:84:10:82:31:dc:06:c3:42:61:18:30:f0:a8:e7:
4e:61:31:59:14:6d:8e:94:85:52:50:3e:58:27:59:
7f:ad:59:59:63:b3:e5:f6:7f:1c:64:87:27:3d:e4:
b7:4b:a6:90:66:8c:85:0e:d5:bf:e0:91:9e:42:67:
dd:a4:35:c2:e8:7b:c6:7c:9f:35:38:ab:01:f0:4b:
66:17:76:94:a7:97:c1:37:fe:76:af:61:af:33:e6:
8c:3d:05:47:86:dd:59:3b:f0:03:8e:e0:ed:70:1c:
04:08:e7:93:98:86:4c:48:3a:3e:49:6e:a6:ee:f9:
4e:ac:29:6a:04:72:a4:32:1d:98:1f:f7:8b:59:80:
4c:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:A9:27:37:10:7C:C2:4A:FB:A4:AA:04:8F:94:69:46:32:9F:FF:1E
X509v3 Authority Key Identifier:
keyid:09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/16knNxB8wkr7pKoEj5RpRjKf_x4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/CR7HzPD6dh7Zm8WnqewNDusL8FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.187.29.0/24
Signature Algorithm: sha256WithRSAEncryption
03:65:08:d8:8e:3d:87:f6:56:95:cc:ae:c4:7d:0e:8d:d4:8b:
56:a5:27:33:31:48:f7:cb:79:40:81:98:1e:de:f4:69:cc:fd:
0f:41:13:20:88:0c:00:aa:eb:4a:b1:88:7a:0a:49:db:7e:dd:
c9:31:f5:13:b1:bf:64:89:4a:09:a9:4d:4c:d7:ca:30:1e:f3:
6a:05:3b:96:20:8b:1f:83:b2:d3:0f:e2:c7:0d:a1:e7:25:54:
14:3e:80:35:3d:e8:bf:1e:ab:4e:de:16:95:f2:ca:65:02:e5:
70:2e:27:5a:75:b3:4f:64:4f:ea:ee:bd:d8:a6:51:41:26:27:
91:20:ed:3e:ff:a1:b1:ce:3c:1d:5e:93:ec:7c:06:4b:1a:97:
30:56:db:fc:e7:ab:b9:3c:a0:bb:74:b5:b4:40:ba:6a:b5:6c:
24:54:ad:1a:f6:b4:87:fd:e3:fb:b9:3d:94:3e:32:bd:84:04:
03:87:e6:67:1a:55:bc:e5:8b:7c:1a:af:2e:09:8a:ca:16:a4:
bb:f8:e7:71:62:ab:e2:39:36:81:60:1f:bd:8d:72:fb:de:e4:
67:a6:87:59:69:92:dd:e0:07:30:3b:b0:9e:38:3a:06:3c:9c:
8c:cc:1e:69:7f:19:d2:0a:49:78:d9:0d:68:58:aa:d6:6a:a3:
e7:a9:b5:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:20 2024 by rpki-client on console-fra.rpki-client.org