Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/PwcrNuE1X_jlEoJpb7d1OWavU1c.roa
File: PwcrNuE1X_jlEoJpb7d1OWavU1c.roa (raw, json)
Hash identifier: motZEGdU5vojOwDtyH3u0CJEVxD4PMn/4K7fXbaFKds=
Subject key identifier: 3F:07:2B:36:E1:35:5F:F8:E5:12:82:69:6F:B7:75:39:66:AF:53:57
Certificate issuer: /CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Certificate serial: 01917A9220CB1D9CD2CB2002A20B286295EF
Authority key identifier: 09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/PwcrNuE1X_jlEoJpb7d1OWavU1c.roa
Signing time: Thu 22 Aug 2024 14:51:22 +0000
ROA not before: Thu 22 Aug 2024 14:51:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14445
IP address blocks: 89.187.25.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 01 Sep 2024 11:07:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:7a:92:20:cb:1d:9c:d2:cb:20:02:a2:0b:28:62:95:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Validity
Not Before: Aug 22 14:51:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3f072b36e1355ff8e51282696fb7753966af5357
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:4f:2e:c7:19:a1:88:99:1a:df:ad:54:54:83:
4a:56:33:1a:c6:fc:5f:81:c1:87:12:71:e7:bf:22:
74:70:47:d9:cd:e3:cc:4d:96:90:03:c4:3c:09:a3:
c2:3e:a5:b3:34:27:ae:68:24:af:64:51:4e:56:9c:
c3:a3:79:f0:e4:e1:af:58:3c:11:9c:38:1f:58:e6:
0c:ad:da:ce:f5:ee:35:97:ec:8f:c6:53:49:52:d8:
7d:6e:0f:d4:c3:d6:fb:1e:25:a9:53:c3:77:fe:9f:
a0:d0:f5:79:a6:95:1c:41:54:64:a1:11:47:2d:07:
22:ec:9f:fb:ea:43:c5:26:99:08:0f:9a:d4:e2:a8:
b6:a6:d3:17:93:d9:9b:aa:cd:23:f8:3e:54:49:bd:
f6:6d:a8:31:41:91:90:2d:0d:51:a2:ca:d7:c5:ce:
f6:66:11:d7:f5:3c:90:d4:e0:a6:eb:15:e2:22:48:
a2:bb:1a:06:6a:e2:de:2a:d9:6a:8d:f1:f8:7b:61:
38:dc:98:b5:d1:7c:a5:57:8d:ad:76:83:50:5b:8c:
06:62:b8:93:7e:a6:49:a7:8d:5f:e1:e2:18:c9:08:
ad:11:4c:f0:65:50:bf:19:8b:98:a4:ca:93:9d:5e:
51:85:bd:7e:2c:ea:b2:3e:ae:53:8e:0e:09:f9:38:
d4:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:07:2B:36:E1:35:5F:F8:E5:12:82:69:6F:B7:75:39:66:AF:53:57
X509v3 Authority Key Identifier:
keyid:09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/PwcrNuE1X_jlEoJpb7d1OWavU1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/CR7HzPD6dh7Zm8WnqewNDusL8FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.187.25.0/24
Signature Algorithm: sha256WithRSAEncryption
68:8a:f4:eb:ca:91:c0:e9:5a:ae:20:73:64:a3:ad:ea:43:d5:
1f:f8:9a:de:10:df:41:76:2c:1c:9a:87:71:4b:a6:48:d6:ac:
7d:2f:dd:f6:b5:ed:c9:b3:e3:e1:cb:79:85:1a:42:0a:1b:3e:
9a:cd:2d:1f:56:03:59:59:88:f3:ee:96:da:81:e3:39:0a:fe:
d0:44:f2:21:47:be:a9:b2:3a:12:0f:fc:1e:47:d2:22:54:21:
31:68:41:6a:5f:53:d0:19:45:fa:28:85:58:9b:9f:be:2e:3d:
3d:84:ca:84:b4:3e:92:40:79:14:24:0a:62:c5:eb:e4:6a:b0:
30:0b:e9:21:22:50:af:8f:dd:83:25:a5:2e:1c:34:c6:0e:69:
1e:95:94:d6:90:4e:15:b4:e5:b7:59:2a:12:2f:d7:5c:1c:2b:
02:85:f3:5f:09:f5:66:d2:5f:dd:f1:5c:5b:93:df:8b:1f:7b:
65:b7:95:48:78:a3:90:2d:95:9c:4d:9c:6e:30:51:fc:50:fc:
02:db:83:fc:6f:5b:12:21:87:cd:fd:88:a5:7a:15:aa:3e:14:
e2:81:b4:64:9b:ff:10:96:0e:03:9f:04:12:51:b4:c9:46:96:
35:2b:eb:16:17:36:13:ab:49:10:a1:24:9e:44:e4:65:f6:00:
ee:29:f0:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 1 13:39:42 2024 by rpki-client on console-ams.rpki-client.org