Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/XYUepNke100w949pgZREWi47tBE.roa
File: XYUepNke100w949pgZREWi47tBE.roa (raw, json)
Hash identifier: S/c+O5oMxW0qQ2eS4nQk0Rc6ZV8hUkvk2yX9Pn44/94=
Subject key identifier: 5D:85:1E:A4:D9:1E:D7:4D:30:F7:8F:69:81:94:44:5A:2E:3B:B4:11
Certificate issuer: /CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Certificate serial: 018F97DD76D3FD8155D1A52B5E8BBD9A79CE
Authority key identifier: 09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/XYUepNke100w949pgZREWi47tBE.roa
Signing time: Mon 20 May 2024 21:17:04 +0000
ROA not before: Mon 20 May 2024 21:17:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 89.187.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 May 2024 13:11:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:97:dd:76:d3:fd:81:55:d1:a5:2b:5e:8b:bd:9a:79:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Validity
Not Before: May 20 21:17:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5d851ea4d91ed74d30f78f698194445a2e3bb411
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:58:d9:91:ff:0d:60:81:39:66:06:9b:7d:20:
11:8b:89:ab:6b:d9:5c:6f:f0:18:17:6f:96:25:66:
60:0b:58:c1:e1:8b:bb:7f:01:0c:f5:0d:23:e7:8f:
d9:fb:3f:86:6b:76:11:86:13:61:fb:44:16:56:c4:
60:ce:14:26:e4:84:b2:66:b8:bc:e7:6d:ff:02:a4:
39:e0:22:96:1b:e9:47:77:57:8f:30:4e:7f:5a:7a:
82:27:7a:d2:e5:02:8a:83:68:ef:91:25:5c:06:c8:
99:4f:fb:23:39:0d:49:16:a5:53:7d:b4:35:cd:d4:
06:a9:3b:3f:ee:4a:0f:42:18:a6:9e:80:98:8c:ab:
54:32:d0:d3:e9:af:c7:88:fa:7a:2c:fe:66:8b:7e:
e8:14:6f:dc:97:42:be:8b:0e:76:b6:4b:24:0b:8a:
4b:92:f7:5f:ea:0d:b2:1e:37:78:93:20:e9:f8:10:
3a:c6:57:86:58:12:71:11:aa:8d:96:d8:99:76:24:
39:a0:22:1f:00:c5:cf:a8:31:81:44:55:bf:c9:01:
f4:1f:fe:ca:1f:9e:b0:89:bf:98:8e:e0:d8:d8:6e:
9e:c4:b5:c4:57:97:80:e4:e7:8f:4b:1a:e0:a4:fb:
aa:58:86:a5:91:a2:ab:fb:93:f2:1b:2e:9f:6f:23:
b8:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:85:1E:A4:D9:1E:D7:4D:30:F7:8F:69:81:94:44:5A:2E:3B:B4:11
X509v3 Authority Key Identifier:
keyid:09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/XYUepNke100w949pgZREWi47tBE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/CR7HzPD6dh7Zm8WnqewNDusL8FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.187.9.0/24
Signature Algorithm: sha256WithRSAEncryption
59:e8:67:80:ae:90:22:5a:49:8b:8b:72:ac:ec:85:a5:fa:b2:
76:b6:12:4a:3d:fa:5d:63:80:fc:51:44:7e:25:d2:aa:a9:cf:
56:83:36:e4:3d:db:fe:ac:27:6e:28:91:85:41:3d:01:9b:2b:
54:20:5a:3e:2a:3d:a8:23:9e:03:cb:bd:d8:12:8c:ab:3a:85:
7b:95:49:ec:fc:75:ac:ed:85:91:49:26:2d:17:06:58:61:b6:
ad:d2:9f:bc:82:04:3d:20:15:de:96:02:ae:1e:a7:43:26:bd:
7b:57:29:4c:aa:75:30:65:e1:d5:8f:b3:54:e9:90:bf:6c:3f:
11:45:0b:69:71:46:b3:1e:84:fc:8b:6a:ea:28:2f:bb:53:9d:
34:29:bc:b9:98:7e:89:bb:06:1d:2e:cf:b4:bd:a1:38:bc:65:
a6:38:9e:7c:7c:29:dd:25:a6:88:72:83:98:e5:ed:37:f9:2a:
9b:a8:60:d3:0d:b4:87:d9:ca:ca:37:e9:c9:b3:81:8f:91:bd:
2b:bc:20:cd:f6:40:b0:6a:82:6e:88:71:b5:19:31:a0:a2:eb:
ac:14:f1:34:e8:2f:20:7d:4e:48:d7:2d:ee:cd:fa:32:55:38:
2e:33:d0:9d:31:40:a1:19:ad:e6:23:28:cc:4e:a5:02:11:7e:
59:84:bf:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:49 2024 by rpki-client on console-fra.rpki-client.org