Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/Sk42t8UVXyxCVuV7b7OtQE7NccA.roa
File: Sk42t8UVXyxCVuV7b7OtQE7NccA.roa (raw, json)
Hash identifier: k+r/AOfTuIKJb8ZyOoSgSPorGvmir6htQbw8ZBYezvo=
Subject key identifier: 4A:4E:36:B7:C5:15:5F:2C:42:56:E5:7B:6F:B3:AD:40:4E:CD:71:C0
Certificate issuer: /CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Certificate serial: 0188E9D12052E0FE4CC98EFB5D37F9394C38
Authority key identifier: 09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/Sk42t8UVXyxCVuV7b7OtQE7NccA.roa
Signing time: Fri 23 Jun 2023 19:52:56 +0000
ROA not before: Fri 23 Jun 2023 19:52:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54339
IP address blocks: 89.187.21.0/24 maxlen: 24
89.187.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 19 Jul 2023 00:05:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e9:d1:20:52:e0:fe:4c:c9:8e:fb:5d:37:f9:39:4c:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Validity
Not Before: Jun 23 19:52:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4a4e36b7c5155f2c4256e57b6fb3ad404ecd71c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:60:42:06:c1:a3:d8:7d:85:0d:3e:0c:e4:0d:
27:53:d3:f7:7a:e4:b6:84:94:6a:94:a7:44:53:3a:
2d:93:05:26:79:26:78:69:ec:3e:99:0a:2a:74:e0:
c1:c1:87:78:42:d7:c0:ae:02:67:0b:2e:ea:da:c9:
34:91:a5:fa:f3:1c:b0:e5:1a:05:72:d9:5e:e1:b8:
10:c4:d7:6f:b3:14:14:af:a2:91:2f:20:91:32:ca:
5d:5b:23:83:9b:45:4e:3a:ab:c2:f6:d8:fb:28:b9:
fd:da:8b:eb:2a:4b:65:31:a8:bd:4b:c0:23:46:72:
05:6f:37:c1:7b:50:34:9b:21:8d:21:42:7b:60:f8:
bf:3d:35:f3:74:de:94:76:5a:0c:b4:9d:d9:d3:15:
c7:7e:08:53:f7:77:2d:82:c0:eb:6e:f8:a1:d5:98:
28:51:dd:2b:54:52:d2:27:d2:de:fb:49:51:2e:c8:
8b:9e:b2:50:ae:01:77:35:d3:46:52:a4:46:6f:2d:
2b:a5:43:9f:74:8e:6e:42:6b:8f:ed:61:47:26:f9:
a3:58:79:54:cb:39:15:f8:f7:50:3b:5d:34:7e:21:
24:66:16:a7:6e:8c:df:b4:f7:50:a9:9a:0f:05:93:
a1:6f:0f:4e:6d:35:99:43:29:aa:ad:53:07:18:d6:
9a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:4E:36:B7:C5:15:5F:2C:42:56:E5:7B:6F:B3:AD:40:4E:CD:71:C0
X509v3 Authority Key Identifier:
keyid:09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/Sk42t8UVXyxCVuV7b7OtQE7NccA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/CR7HzPD6dh7Zm8WnqewNDusL8FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.187.21.0/24
89.187.31.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:b8:97:8d:29:4d:a1:4d:bd:41:7a:1e:e8:f6:3e:36:f1:d1:
61:1d:70:b6:ad:ff:13:f4:49:0e:70:5e:f1:46:dd:98:8f:48:
72:f4:53:5b:c9:b9:a5:d5:59:61:f5:7d:1a:09:2b:25:81:32:
82:4e:83:62:c8:00:cb:ef:a2:c4:90:e2:77:5d:04:cd:48:20:
da:83:9c:04:05:b4:90:43:b3:d1:ca:67:87:a8:0d:46:85:ee:
eb:9f:a1:a8:e9:83:06:d4:d7:58:a2:ad:2d:74:ba:6e:a6:79:
b6:1c:9e:3a:26:75:16:7a:bf:1e:c9:00:3d:59:19:eb:e8:04:
94:b8:1d:64:0e:37:04:49:0f:e1:ed:86:e7:bb:b1:de:4f:ef:
12:ce:69:ef:79:e9:3a:68:6d:68:f3:16:2b:e4:bc:07:19:4e:
89:55:98:43:e2:8b:f8:2a:24:f6:a9:16:a1:65:67:13:60:f9:
3c:80:ec:c2:e8:92:cf:80:0b:92:62:d8:31:91:f0:f4:f9:43:
01:ee:8a:41:b6:4b:0e:cc:86:db:4d:03:2e:26:a7:aa:e4:d6:
42:c0:a9:ac:53:54:1d:6a:90:89:ad:84:11:a6:f0:ce:f3:9d:
8d:f8:3e:4b:7c:fb:98:79:c8:04:cb:18:55:77:03:7f:76:b7:
02:e5:c7:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:03 2024 by rpki-client on console-ams.rpki-client.org