Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/EPxX-1p5r5VYFVEZBtQ14m-tDK4.roa
File: EPxX-1p5r5VYFVEZBtQ14m-tDK4.roa (raw, json)
Hash identifier: yRWv67Hx9pvpYDDMNPCsTQrTKDeed+AzK+vmz1uc+iU=
Subject key identifier: 10:FC:57:FB:5A:79:AF:95:58:15:51:19:06:D4:35:E2:6F:AD:0C:AE
Certificate issuer: /CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Certificate serial: 0192E4655EEFBE33DAE0022E4F13620F6590
Authority key identifier: 09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/EPxX-1p5r5VYFVEZBtQ14m-tDK4.roa
Signing time: Thu 31 Oct 2024 21:05:01 +0000
ROA not before: Thu 31 Oct 2024 21:05:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 89.187.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 02 Nov 2024 17:37:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:e4:65:5e:ef:be:33:da:e0:02:2e:4f:13:62:0f:65:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Validity
Not Before: Oct 31 21:05:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=10fc57fb5a79af955815511906d435e26fad0cae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:8b:8d:6c:c0:69:8f:80:85:35:cc:22:8a:db:
28:cc:b7:e7:94:2d:ea:bf:e4:45:14:60:af:e3:95:
8f:d6:57:7b:49:37:62:07:f2:0d:a2:de:a7:97:ef:
54:73:c6:df:8b:3d:5e:3c:65:5a:bc:66:e1:91:f9:
a4:24:d2:ee:de:2e:ef:a8:7e:75:dd:d6:76:49:45:
63:ac:c0:e6:85:81:a2:f2:f8:1b:36:64:56:94:14:
0f:d3:42:da:d5:c5:7e:df:99:2a:dc:e8:3e:6a:9a:
c7:76:ba:12:40:8c:98:e5:e7:7c:46:cc:45:9d:33:
02:5c:28:54:f5:28:2a:b4:b7:50:5c:26:3e:af:de:
5b:d8:03:77:23:fa:97:b0:1d:ac:0d:63:da:fb:1a:
79:70:65:ba:c3:3d:1d:a3:83:54:b9:d0:77:8f:e3:
4e:fc:0b:bc:e0:88:6d:8a:d4:c6:94:33:2e:61:c2:
61:e7:f8:0d:17:c8:55:58:a8:2e:ef:b4:b2:a3:71:
cd:c0:b3:c7:52:e3:a2:4c:b4:a2:23:8c:f3:4e:7f:
5b:bf:f8:36:30:7e:23:6a:29:95:45:43:80:50:16:
35:b7:f9:1f:90:ed:18:23:f3:4a:a6:3f:62:41:3d:
6e:1f:47:57:f1:dc:95:ed:bf:4f:61:82:95:80:c1:
40:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:FC:57:FB:5A:79:AF:95:58:15:51:19:06:D4:35:E2:6F:AD:0C:AE
X509v3 Authority Key Identifier:
keyid:09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/EPxX-1p5r5VYFVEZBtQ14m-tDK4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/CR7HzPD6dh7Zm8WnqewNDusL8FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.187.31.0/24
Signature Algorithm: sha256WithRSAEncryption
56:42:b4:af:eb:bc:82:b7:86:db:d9:9a:8a:25:d3:d7:b7:ce:
1c:26:ee:bc:d0:24:37:dd:8e:41:25:19:a3:31:c4:d8:0b:6c:
8a:d5:44:6e:55:34:f8:4b:80:85:68:3e:0a:ca:81:9b:ee:18:
df:cf:c0:d2:0a:39:0d:9e:53:a6:2e:fc:7a:d7:b3:28:ad:bc:
b4:e6:7b:f7:a7:ae:9a:78:f0:41:99:71:0e:26:a5:7c:8e:b6:
54:72:04:f9:e0:a5:5f:e1:3b:b7:9d:50:1e:74:65:68:2d:e5:
4a:76:42:e0:45:40:bd:52:40:3f:f7:76:68:07:de:72:f7:af:
b1:57:39:77:e1:35:3c:f8:51:e3:5d:51:22:cf:35:69:c4:58:
3c:5f:65:e8:3a:49:96:b7:80:d3:89:76:53:e1:31:f8:a2:77:
c1:68:e0:3c:02:e5:53:1e:7f:0d:18:7f:a8:1b:65:94:99:76:
9e:58:e6:2d:80:bb:e6:c1:1e:50:ef:1f:10:32:05:0a:1e:3f:
66:f0:f3:d6:a2:14:ea:2e:61:ac:60:4b:ec:7d:7f:ed:1e:84:
25:ff:7a:d1:a9:1a:98:d6:9c:90:5f:14:6f:b8:ea:0c:3a:2a:
e7:1d:cb:10:38:7b:56:42:21:c9:e5:26:59:39:4c:86:1d:6d:
d2:ba:d0:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 2 19:25:19 2024 by rpki-client on console-fra.rpki-client.org