Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/9PjFUypL7AHwvK2KioVFeuZDqF4.roa
File: 9PjFUypL7AHwvK2KioVFeuZDqF4.roa (raw, json)
Hash identifier: oM8HeXvFLNvW+5vYZXtvNiOHlj4j+Vdae8R9mx1QCZM=
Subject key identifier: F4:F8:C5:53:2A:4B:EC:01:F0:BC:AD:8A:8A:85:45:7A:E6:43:A8:5E
Certificate issuer: /CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Certificate serial: 018867A3716C68F79C9077B4880D1D7B2E06
Authority key identifier: 09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/9PjFUypL7AHwvK2KioVFeuZDqF4.roa
Signing time: Mon 29 May 2023 13:12:24 +0000
ROA not before: Mon 29 May 2023 13:12:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 89.187.29.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 May 2023 20:52:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:67:a3:71:6c:68:f7:9c:90:77:b4:88:0d:1d:7b:2e:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Validity
Not Before: May 29 13:12:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f4f8c5532a4bec01f0bcad8a8a85457ae643a85e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:2b:55:1f:df:f8:62:fe:db:29:75:ff:ee:61:
1f:9c:6d:97:1d:54:e6:a9:d3:cc:d1:a9:5e:29:5c:
55:5d:bb:a8:8a:cf:4c:8d:a8:a4:ff:4e:ad:13:0a:
58:2d:e2:07:d9:e9:5c:33:98:37:91:b8:a8:08:cd:
1e:c0:39:fc:62:a8:4e:9d:44:29:9d:f2:a7:9d:01:
e0:87:2d:4c:e6:cb:50:95:93:12:5e:09:61:49:56:
3a:af:b7:7d:80:bf:7d:94:8c:b8:f4:49:76:cf:e8:
25:6b:79:92:67:8d:1a:28:d1:4a:05:4a:8f:8b:86:
62:c5:a5:57:bf:6a:cb:b2:e6:f6:63:bd:6a:4e:5e:
be:08:8e:48:0e:b5:a1:1b:6f:2b:c5:10:dd:02:1b:
af:ec:d4:38:8e:5e:be:97:49:6e:f9:da:2b:0b:17:
a4:2a:de:00:2a:e4:e8:b5:cb:3a:8e:0e:fa:a5:ff:
82:8c:b7:2c:d0:94:3b:20:a9:b5:51:85:19:ad:1e:
93:02:fa:01:ca:33:7d:94:ab:f3:78:e8:b1:d2:df:
67:14:d4:22:30:31:e2:40:76:d2:fa:87:83:e0:7e:
a2:68:77:21:88:41:a5:ea:ce:58:87:c3:09:63:8c:
4f:f6:17:01:03:5e:a6:b6:00:b6:75:8d:a3:db:cb:
7a:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:F8:C5:53:2A:4B:EC:01:F0:BC:AD:8A:8A:85:45:7A:E6:43:A8:5E
X509v3 Authority Key Identifier:
keyid:09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/9PjFUypL7AHwvK2KioVFeuZDqF4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/CR7HzPD6dh7Zm8WnqewNDusL8FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.187.29.0/24
Signature Algorithm: sha256WithRSAEncryption
28:25:e1:05:21:5b:bc:7f:12:30:df:ae:aa:e4:7c:77:91:66:
43:56:25:e0:50:59:4a:08:2f:90:59:c5:df:3c:85:02:8f:38:
7b:53:07:db:46:70:20:0f:34:6a:70:cd:5e:65:63:68:bc:b7:
45:34:02:6a:e9:bb:ed:cb:0e:c2:af:ab:ac:be:93:65:e4:15:
1d:f2:61:fb:f7:0a:7c:1c:31:17:c1:af:9c:ce:30:57:ca:ca:
d9:63:8c:f7:66:fb:bf:85:c9:48:75:6e:0f:a1:ad:34:54:6b:
f1:a9:92:c6:79:ad:4a:ec:b8:9e:b0:5a:e0:a4:f9:e7:75:f3:
31:69:1e:1c:c0:56:2d:3a:18:6f:5f:0b:a8:00:ef:40:92:52:
07:ab:17:7d:23:b7:3b:c9:93:1d:55:43:f1:06:41:e0:15:72:
5f:81:8b:07:12:71:89:31:8c:b8:01:54:db:26:a9:b1:07:bd:
e5:8c:b4:2e:8a:1d:c0:a6:df:18:c1:f4:a4:f3:52:4a:e5:99:
d4:db:98:7e:a7:72:bc:be:bb:74:82:34:88:5d:79:95:6b:7a:
2e:8a:25:60:ef:ac:8e:b4:13:b2:da:06:b2:82:e4:76:2f:c7:
6f:41:e8:07:c0:16:16:70:bd:40:47:89:f0:16:32:f5:d6:cd:
b1:c5:80:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:49 2024 by rpki-client on console-fra.rpki-client.org