Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/RRPbyEhhVg2bkoDDJQ5AV141o4c.roa
File: RRPbyEhhVg2bkoDDJQ5AV141o4c.roa (raw, json)
Hash identifier: eW23jEaNqKGfQ73Zv2ZVXa7jE5h7KROW1mvwGgfanCg=
Subject key identifier: 45:13:DB:C8:48:61:56:0D:9B:92:80:C3:25:0E:40:57:5E:35:A3:87
Certificate issuer: /CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Certificate serial: 018AF5635C28266923153335F9D473E6D77E
Authority key identifier: 09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/RRPbyEhhVg2bkoDDJQ5AV141o4c.roa
Signing time: Tue 03 Oct 2023 11:54:04 +0000
ROA not before: Tue 03 Oct 2023 11:54:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5065
IP address blocks: 89.187.31.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f5:63:5c:28:26:69:23:15:33:35:f9:d4:73:e6:d7:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Validity
Not Before: Oct 3 11:54:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4513dbc84861560d9b9280c3250e40575e35a387
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:2a:e5:47:c7:a0:f1:77:ea:8e:65:80:e7:61:
59:5f:b0:be:5f:15:a9:7b:be:aa:4e:63:76:47:35:
43:c9:af:06:f5:32:9f:20:38:5e:9c:ac:0e:d8:af:
de:d8:2a:3c:b2:50:e2:85:23:ef:b5:84:c9:ed:e0:
78:87:77:30:d4:fd:b2:e1:76:3e:fe:f1:04:fa:84:
1d:84:84:d7:ea:fb:93:d3:bf:dc:50:7f:9e:e7:3a:
aa:18:58:6e:d1:84:f4:6a:34:e4:10:d8:d6:44:5b:
8f:90:ae:59:31:09:43:9b:38:f3:0d:47:af:ad:15:
d7:a8:fb:72:ce:fd:e9:11:b9:dc:06:25:20:71:23:
5b:b5:7f:86:a7:8c:b5:e9:8f:03:d0:8f:25:36:f3:
76:da:e7:3c:ba:db:2f:a4:7c:cd:6d:8a:54:75:ae:
83:dd:0d:8a:db:04:d8:c0:63:9c:01:6e:86:8b:13:
5d:1f:fe:dc:06:97:08:9f:fe:81:a0:99:2b:0c:80:
39:a9:78:c9:7c:e0:8c:68:9f:7d:7d:7a:94:19:b9:
28:2f:5a:ea:d7:84:b8:b8:d1:66:94:db:ee:b7:31:
35:35:0d:19:c9:88:81:31:90:5d:0e:e1:f5:5b:c1:
49:df:fc:51:f5:a3:19:40:b6:25:b3:b1:1d:68:e0:
a4:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:13:DB:C8:48:61:56:0D:9B:92:80:C3:25:0E:40:57:5E:35:A3:87
X509v3 Authority Key Identifier:
keyid:09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/RRPbyEhhVg2bkoDDJQ5AV141o4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/CR7HzPD6dh7Zm8WnqewNDusL8FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.187.31.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:12:84:9b:74:0c:67:79:2a:8e:e6:16:84:e1:48:e1:09:fb:
74:49:7b:ab:89:3c:42:18:b6:08:c2:87:f3:90:c9:35:00:5b:
af:df:0e:b0:6a:af:c2:a8:7b:43:d8:ee:1d:fc:8f:dd:60:8a:
bd:44:6d:07:cd:d4:06:e7:a9:18:10:33:eb:c2:bc:5c:37:5f:
fa:75:26:70:75:9d:b2:55:9e:f4:86:9c:20:76:e3:5c:b1:87:
95:1b:fa:aa:29:f8:a5:37:0b:dc:6b:4a:b5:c1:af:5e:90:f4:
e5:0a:54:60:8d:6e:11:de:c9:57:f6:86:8b:62:be:68:48:7f:
99:5f:14:a6:7e:bd:8c:4d:b8:05:31:d8:b0:2e:5c:b8:41:8a:
bd:b3:b5:ec:7b:0b:68:c2:2b:9a:1b:1a:12:c7:8f:30:a6:f9:
5c:7f:31:cb:66:15:a9:91:6c:01:ec:38:dd:51:d8:31:15:82:
fa:32:f5:63:9c:55:cf:7f:e3:89:01:eb:8f:0c:5a:67:16:cc:
83:56:a2:e0:4e:8a:5c:0f:31:47:e7:8c:8f:e2:6b:0f:3b:f2:
8e:22:c1:f7:87:1e:6f:2b:da:a7:f3:63:08:18:73:4c:f8:49:
cc:f9:d8:b8:b0:0a:5c:54:b6:7f:63:ea:7c:10:76:1d:f5:c6:
6b:3d:f3:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:01:04 2024 by rpki-client on console-ams.rpki-client.org