Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/LwQIV7uJd2yGx0MVg267n21Iaxg.roa
File: LwQIV7uJd2yGx0MVg267n21Iaxg.roa (raw, json)
Hash identifier: 4l5ug30ioAbGdjrjwNUIdmzjIY9hhXPFwG920GonsEE=
Subject key identifier: 2F:04:08:57:BB:89:77:6C:86:C7:43:15:83:6E:BB:9F:6D:48:6B:18
Certificate issuer: /CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Certificate serial: 018AEF57E961140137C6391C10135093FD9F
Authority key identifier: 09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/LwQIV7uJd2yGx0MVg267n21Iaxg.roa
Signing time: Mon 02 Oct 2023 07:43:50 +0000
ROA not before: Mon 02 Oct 2023 07:43:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 89.187.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Oct 2023 11:54:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ef:57:e9:61:14:01:37:c6:39:1c:10:13:50:93:fd:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Validity
Not Before: Oct 2 07:43:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2f040857bb89776c86c74315836ebb9f6d486b18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:40:d5:c8:7b:a3:5b:d1:66:d6:90:45:30:ad:
ac:1b:00:ac:a6:ec:b6:ca:75:ec:bd:c0:42:5f:e0:
6b:b3:f4:11:21:7b:c8:e8:7e:62:80:4b:cd:57:1a:
db:bd:46:ac:06:d1:f4:b2:b0:40:52:a6:fe:72:80:
c8:de:a6:10:0a:41:18:e1:ca:9c:bd:60:e4:73:12:
6d:09:c4:3e:93:cc:84:55:08:c2:85:77:a6:6b:e6:
5b:5f:cc:3d:e4:76:f3:79:b3:b0:fe:df:76:83:dc:
57:77:c4:3b:4c:89:d3:67:eb:26:8f:3d:f2:df:3f:
ca:86:35:12:89:ce:bb:b5:85:4d:3a:fb:45:d2:83:
d6:a0:07:56:c9:32:39:33:f1:bf:5c:19:d9:66:08:
49:dc:68:18:31:70:99:d4:b7:93:1e:1e:55:1d:6a:
4d:1d:cd:ad:21:33:62:39:db:11:ed:8f:78:eb:05:
ad:ad:1e:83:81:01:5b:04:c2:d0:41:e6:f2:99:ce:
ef:08:14:b0:d1:31:6a:89:53:81:d9:1e:52:13:de:
56:e7:b0:f1:0f:18:d2:2f:e8:fa:33:9a:c1:b9:b3:
20:c2:df:b0:1a:88:d7:1a:9b:e4:19:3f:6d:f0:62:
46:93:f8:ee:b7:ba:54:00:10:b2:78:82:ea:84:1b:
1c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:04:08:57:BB:89:77:6C:86:C7:43:15:83:6E:BB:9F:6D:48:6B:18
X509v3 Authority Key Identifier:
keyid:09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/LwQIV7uJd2yGx0MVg267n21Iaxg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/CR7HzPD6dh7Zm8WnqewNDusL8FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.187.31.0/24
Signature Algorithm: sha256WithRSAEncryption
dd:fe:b1:7e:8e:2b:f9:e0:94:1f:5b:16:e6:17:08:5a:b1:c1:
2a:7c:2e:59:01:a1:d4:1c:d5:f2:34:f1:7e:bb:44:d4:47:e4:
f0:b3:7c:73:c2:c1:fc:a0:b1:34:55:dd:b8:8c:0e:f5:35:f7:
99:9f:9e:b4:7f:0b:84:44:87:42:a1:17:e2:b1:fb:a5:8c:fe:
1c:96:86:11:32:5f:2a:29:ea:0e:9b:c0:d9:db:27:3d:2c:80:
48:31:db:19:43:85:df:aa:11:57:89:e7:f3:48:8a:de:ba:a7:
37:bf:ec:40:ff:f3:31:c9:2d:b7:f0:72:bb:be:6d:c0:c4:97:
5e:8c:06:29:c2:f9:67:80:7a:8c:95:93:c4:4f:04:ce:83:44:
7f:cd:8e:fc:7a:a0:c8:67:3f:ce:d0:f8:9f:a4:92:94:dd:8e:
7b:30:71:8f:a7:63:42:82:3e:c9:c2:d1:ab:6a:12:91:92:e5:
be:60:9b:d7:e7:0f:d2:aa:b8:1f:52:45:5e:1f:41:56:fa:64:
b9:c4:cc:f1:0a:4d:a1:55:53:e7:83:70:a0:f3:20:75:09:ce:
06:59:fd:07:e0:ca:1c:98:d8:f2:7e:e7:21:25:48:18:b3:8c:
c8:ee:52:8a:a9:a6:fa:22:d6:e8:32:8e:ac:57:16:76:30:f5:
71:81:c9:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:49 2024 by rpki-client on console-fra.rpki-client.org