Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/B4QvcXQ2Qua8ENsRBQa8gyQfE-k.roa
File: B4QvcXQ2Qua8ENsRBQa8gyQfE-k.roa (raw, json)
Hash identifier: VntdZ3CqsnFLCP9rLUdpzpO3nFrWd4vOYy3I4+oe9NY=
Subject key identifier: 07:84:2F:71:74:36:42:E6:BC:10:DB:11:05:06:BC:83:24:1F:13:E9
Certificate issuer: /CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Certificate serial: 01917A92206A02746E685D0C44699F7350FA
Authority key identifier: 09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/B4QvcXQ2Qua8ENsRBQa8gyQfE-k.roa
Signing time: Thu 22 Aug 2024 14:51:22 +0000
ROA not before: Thu 22 Aug 2024 14:51:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 89.187.24.0/24 maxlen: 24
89.187.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 01 Sep 2024 11:07:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:7a:92:20:6a:02:74:6e:68:5d:0c:44:69:9f:73:50:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Validity
Not Before: Aug 22 14:51:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=07842f71743642e6bc10db110506bc83241f13e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:a5:78:20:61:53:b6:56:1c:0e:31:2e:6a:1c:
00:2e:a9:ef:56:16:ed:f9:0e:e8:9f:3f:36:d3:ba:
31:9b:72:8e:47:73:9f:98:48:59:fa:c9:07:48:c3:
4c:d0:1e:f5:e0:47:56:d0:17:20:02:dd:ca:20:36:
03:23:3b:c5:f9:17:ea:a5:b5:c6:fc:3c:d8:c4:d5:
10:9b:c5:98:1a:62:dd:54:fa:35:4c:33:65:f6:03:
71:65:cb:8b:6c:29:70:92:d3:34:df:1c:a6:0e:97:
bb:a9:12:28:0c:cd:64:63:cd:19:79:f8:92:8e:94:
70:ef:f8:7c:b0:e2:89:06:34:f0:3a:b5:a3:e6:83:
c7:a9:b6:20:76:69:42:4b:6f:e6:ca:38:99:54:63:
a1:21:dd:f5:8e:fd:08:97:31:d6:cb:e9:8b:e2:d0:
ac:d8:b3:12:62:64:27:cb:cd:a2:70:97:6a:09:1b:
1b:37:f3:41:1f:a4:e1:29:a2:82:c2:30:58:84:b2:
57:8a:19:99:d5:be:b7:9e:cf:f6:7b:ef:29:bc:3e:
0a:40:b6:3d:24:73:82:cc:81:33:32:e1:63:6d:e5:
64:df:73:24:a5:49:65:d9:43:9a:6c:ea:e4:dd:89:
44:65:1c:4a:e4:85:27:6e:e4:c5:05:a8:e9:f3:11:
c4:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:84:2F:71:74:36:42:E6:BC:10:DB:11:05:06:BC:83:24:1F:13:E9
X509v3 Authority Key Identifier:
keyid:09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/B4QvcXQ2Qua8ENsRBQa8gyQfE-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/CR7HzPD6dh7Zm8WnqewNDusL8FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.187.24.0/24
89.187.26.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:8a:c0:a4:4e:bb:c6:85:a2:c9:be:d6:6f:b7:9a:bf:d2:96:
50:c0:9c:ae:10:94:c7:de:c9:dd:57:66:c4:2d:5c:aa:82:04:
30:b5:43:bb:e9:57:35:e1:99:14:16:c9:50:1b:b9:1c:b4:93:
90:a3:23:76:6e:47:33:08:7f:80:0e:4d:ee:7b:ad:53:03:06:
e8:6a:0a:c0:53:5c:94:b1:a2:95:46:f7:a3:10:8a:f2:01:0a:
e2:05:a8:56:3e:d0:95:4a:3b:67:bc:fe:4b:20:02:15:1f:a8:
4b:88:0b:1b:3b:c5:e0:d6:3a:cc:03:dd:37:14:3c:0a:76:02:
fd:e1:06:04:90:ab:24:e4:e1:e8:71:b0:cb:af:e2:6c:54:2d:
0e:52:d2:09:f2:31:35:2e:d4:1f:7e:d3:c4:01:34:cf:76:ee:
81:c8:56:36:ee:16:86:8c:d0:9f:48:ec:87:f7:e5:06:92:b3:
e4:d7:7a:fc:b8:ed:6f:21:2d:d6:f3:06:52:6e:9c:84:0d:26:
71:d9:9d:91:e3:56:67:71:1c:63:1d:e0:ec:eb:76:dd:ab:ce:
69:9e:32:65:f3:29:06:fc:d4:cc:27:ab:38:e7:70:ad:20:bf:
13:c3:67:a2:94:bf:40:68:aa:86:4b:eb:2d:71:75:dc:9c:ec:
d2:f2:75:50
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZF6kiBqAnRuaF0MRGmfc1D6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5MWVjN2NjZjBmYTc2MWVkOTliYzVhN2E5ZWMwZDBlZWIw
YmYwNTUwHhcNMjQwODIyMTQ1MTIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNzg0MmY3MTc0MzY0MmU2YmMxMGRiMTEwNTA2YmM4MzI0MWYxM2U5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5aV4IGFTtlYcDjEuahwALqnvVhbt
+Q7onz8207oxm3KOR3OfmEhZ+skHSMNM0B714EdW0BcgAt3KIDYDIzvF+RfqpbXG
/DzYxNUQm8WYGmLdVPo1TDNl9gNxZcuLbClwktM03xymDpe7qRIoDM1kY80ZefiS
jpRw7/h8sOKJBjTwOrWj5oPHqbYgdmlCS2/myjiZVGOhId31jv0IlzHWy+mL4tCs
2LMSYmQny82icJdqCRsbN/NBH6ThKaKCwjBYhLJXihmZ1b63ns/2e+8pvD4KQLY9
JHOCzIEzMuFjbeVk33MkpUll2UOabOrk3YlEZRxK5IUnbuTFBajp8xHE+wIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFAeEL3F0NkLmvBDbEQUGvIMkHxPpMB8GA1UdIwQY
MBaAFAkex8zw+nYe2ZvFp6nsDQ7rC/BVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1I3SHpQRDZkaDdabThXbnFld05EdXNMOEZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS9lNjQ3OGEtN2I3My00NzU4LWFkZGQt
NDVjZmM4NTdkZGRkLzEvQjRRdmNYUTJRdWE4RU5zUkJRYThneVFmRS1rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OS9lNjQ3OGEtN2I3My00NzU4LWFkZGQtNDVjZmM4NTdkZGRk
LzEvQ1I3SHpQRDZkaDdabThXbnFld05EdXNMOEZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAWbsYAwQA
WbsaMA0GCSqGSIb3DQEBCwUAA4IBAQB/isCkTrvGhaLJvtZvt5q/0pZQwJyuEJTH
3sndV2bELVyqggQwtUO76Vc14ZkUFslQG7kctJOQoyN2bkczCH+ADk3ue61TAwbo
agrAU1yUsaKVRvejEIryAQriBahWPtCVSjtnvP5LIAIVH6hLiAsbO8Xg1jrMA903
FDwKdgL94QYEkKsk5OHocbDLr+JsVC0OUtIJ8jE1LtQfftPEATTPdu6ByFY27haG
jNCfSOyH9+UGkrPk13r8uO1vIS3W8wZSbpyEDSZx2Z2R41ZncRxjHeDs63bdq85p
njJl8ykG/NTMJ6s453CtIL8Tw2eilL9AaKqGS+stcXXcnOzS8nVQ
-----END CERTIFICATE-----
Generated at Sun Sep 1 13:39:42 2024 by rpki-client on console-ams.rpki-client.org