Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/EZ1CbwGCbA8pbOtCeosMSLlnhfk.roa
File: EZ1CbwGCbA8pbOtCeosMSLlnhfk.roa (raw, json)
Hash identifier: e6m2ex675Wlnnz1eh0FrvT+9drfyNObGRVUqHJ++ods=
Subject key identifier: 11:9D:42:6F:01:82:6C:0F:29:6C:EB:42:7A:8B:0C:48:B9:67:85:F9
Certificate issuer: /CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Certificate serial: 018B42C3BF3B779078B45F4B57639A6AE22D
Authority key identifier: 09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/EZ1CbwGCbA8pbOtCeosMSLlnhfk.roa
Signing time: Wed 18 Oct 2023 12:30:06 +0000
ROA not before: Wed 18 Oct 2023 12:30:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 89.187.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 21 Oct 2023 02:03:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:42:c3:bf:3b:77:90:78:b4:5f:4b:57:63:9a:6a:e2:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Validity
Not Before: Oct 18 12:30:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=119d426f01826c0f296ceb427a8b0c48b96785f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:45:c4:55:70:26:81:5c:2f:08:fa:75:e4:5b:
1a:4c:bb:69:25:72:f2:7f:4c:a2:13:d6:50:d9:aa:
0a:9c:bb:7e:26:08:99:ca:cf:bb:da:b5:c9:c6:0e:
cb:83:1e:ed:12:7d:e1:b3:7f:08:f9:ed:88:ce:ac:
9a:61:c3:1e:cd:3f:fd:c8:d9:04:6d:6e:63:7e:97:
87:70:d0:79:ff:58:4e:22:f6:33:f8:22:a0:09:0c:
90:03:21:f7:e8:7c:ba:25:0e:45:55:66:c6:ee:06:
7a:55:6e:27:78:3d:ed:cc:d7:3b:c8:eb:c9:5a:b9:
e7:4b:64:ff:72:eb:c4:b3:79:20:ec:85:ab:44:bc:
72:30:52:af:b9:a8:0b:8e:38:ef:14:09:64:c9:c4:
b6:65:d9:9c:f3:c0:12:d6:3b:ac:71:79:bd:e6:1b:
36:f6:59:35:7c:07:d3:af:cf:c1:93:5a:d6:36:44:
35:0c:34:f4:40:ff:aa:1e:61:92:cb:61:ba:32:a4:
40:c0:f6:30:6d:82:88:e0:18:aa:40:cb:3f:f5:0f:
5e:61:39:a7:08:fe:d5:b1:81:95:2a:38:d3:1a:f1:
23:d7:d7:ec:78:1a:79:e4:22:ff:e2:9c:a6:c5:a8:
08:ca:4c:92:a9:23:41:24:70:7d:a9:1a:92:aa:e8:
8a:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:9D:42:6F:01:82:6C:0F:29:6C:EB:42:7A:8B:0C:48:B9:67:85:F9
X509v3 Authority Key Identifier:
keyid:09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/EZ1CbwGCbA8pbOtCeosMSLlnhfk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/CR7HzPD6dh7Zm8WnqewNDusL8FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.187.9.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:c5:c2:bd:b2:af:86:1c:e0:b5:e5:a8:9f:6e:ce:e2:73:87:
ad:bf:61:36:86:57:71:2b:c7:71:92:63:ff:cd:03:cb:cf:b9:
4c:80:8f:7b:a7:e7:69:9c:72:b5:95:cf:9c:7f:f4:1f:cb:e1:
15:79:26:c7:b9:48:67:05:d2:fd:a5:db:42:ac:01:e3:7a:6d:
f4:e3:31:0f:f6:24:df:41:c4:32:be:b4:4e:2c:d3:32:f3:9b:
ca:8f:d8:de:bf:13:7a:16:73:c9:e9:7f:da:50:89:aa:c8:54:
68:7b:c6:cb:f2:24:30:90:bf:f5:53:f2:55:3f:6f:b8:94:ef:
76:a9:26:d2:f6:b8:8b:4f:50:08:b9:7b:31:ca:37:4e:c0:21:
2b:17:6c:0c:21:9a:42:36:09:09:79:21:64:41:45:66:7e:ce:
f2:d4:c8:ae:11:3f:39:58:58:14:49:e2:e6:1f:1e:c9:bf:33:
fb:2e:12:5b:9e:1e:ff:c0:29:32:0e:ef:bf:e6:71:d0:77:2f:
10:2e:f8:ab:5b:18:f0:26:c9:43:83:a0:be:f8:79:e1:8c:fd:
bf:b4:aa:5c:4c:85:d1:7c:cb:a3:9f:06:0b:32:71:4b:0a:46:
65:07:6a:e0:a6:55:8c:53:72:d8:f6:aa:fe:ea:5b:3c:65:2d:
b9:6d:b1:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:49 2024 by rpki-client on console-fra.rpki-client.org