Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/ZK2GEazPcQbT0Vs-I2V2Ygrldqs.roa
File: ZK2GEazPcQbT0Vs-I2V2Ygrldqs.roa (raw, json)
Hash identifier: RWke0DBoIFH2vw69dw1MNcEykMUGIBvEun7k6krv5mw=
Subject key identifier: 64:AD:86:11:AC:CF:71:06:D3:D1:5B:3E:23:65:76:62:0A:E5:76:AB
Certificate issuer: /CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Certificate serial: 0187E76C130F65FA5B4B3685302AED8A6FFA
Authority key identifier: 09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/ZK2GEazPcQbT0Vs-I2V2Ygrldqs.roa
Signing time: Thu 04 May 2023 15:40:32 +0000
ROA not before: Thu 04 May 2023 15:40:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61138
IP address blocks: 89.187.7.0/24 maxlen: 24
89.187.29.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 May 2023 11:30:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e7:6c:13:0f:65:fa:5b:4b:36:85:30:2a:ed:8a:6f:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Validity
Not Before: May 4 15:40:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64ad8611accf7106d3d15b3e236576620ae576ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:19:b7:4c:7d:cb:6a:5b:b3:93:ff:55:95:9a:
12:fd:46:82:37:e2:85:79:92:cf:42:a8:05:1a:dc:
e4:fe:18:9e:05:77:a7:a5:0f:a4:c7:b8:f5:22:32:
5e:d8:44:b6:69:ec:c1:65:fb:5b:c3:d3:9d:f2:fa:
e4:8a:9e:e8:7b:c7:12:41:73:10:14:77:12:c1:95:
ed:2d:d0:cd:58:93:19:bf:36:ce:1a:07:e4:fb:b0:
83:83:9f:2a:8f:6f:7c:73:f7:ab:df:73:2c:c0:27:
9e:19:e4:22:b4:61:5b:2e:73:94:e1:01:05:ee:68:
d0:0c:87:8b:24:77:8c:19:2b:b5:dd:f4:e0:ae:79:
c9:46:5a:e0:5d:4e:2c:2e:e7:65:8c:98:1d:e8:d3:
ce:23:7c:38:46:53:99:c4:4c:68:28:09:be:5c:86:
ed:e4:cc:e5:19:69:2b:31:4b:b3:06:d5:e6:f3:d4:
02:66:c3:5a:42:67:04:20:75:c8:7d:3a:31:ef:c7:
96:17:3a:63:4f:01:cd:12:4d:b6:c3:8b:5c:d2:20:
b6:cc:e6:28:c9:54:55:21:e6:b2:bb:5d:c9:fc:f4:
7f:b8:a4:1e:e9:d0:e8:f4:ac:ff:1e:f5:99:ef:6c:
81:5a:06:41:24:dd:4a:3d:a4:0c:06:8d:a8:23:c8:
33:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:AD:86:11:AC:CF:71:06:D3:D1:5B:3E:23:65:76:62:0A:E5:76:AB
X509v3 Authority Key Identifier:
keyid:09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/ZK2GEazPcQbT0Vs-I2V2Ygrldqs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/CR7HzPD6dh7Zm8WnqewNDusL8FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.187.7.0/24
89.187.29.0/24
Signature Algorithm: sha256WithRSAEncryption
87:b9:2a:58:b5:b3:1a:f0:e8:54:36:58:40:b9:df:bc:25:b5:
9d:c2:cb:d4:ea:42:5a:b7:25:03:5f:75:c1:00:2b:13:a8:b2:
bb:de:ae:7a:a9:a8:33:4d:da:97:85:58:cd:97:40:2a:92:27:
30:ef:07:0d:c8:49:8d:a2:fd:9b:7b:4b:24:2d:74:62:c1:0f:
55:5d:c2:68:55:a9:90:bc:81:8b:8a:7f:d4:9b:6e:35:2a:05:
80:75:5e:4b:33:79:2c:41:dc:af:fc:6c:8a:cd:59:cc:cd:b5:
e0:c6:cc:19:39:83:fa:45:99:5c:ff:1f:2f:22:08:82:b4:a8:
b6:5b:e1:76:3e:42:42:7b:03:e3:d0:be:57:c3:d2:39:09:de:
68:2e:f6:3d:f8:a6:cf:09:3d:64:22:c7:46:a5:70:f5:b0:53:
60:76:88:a4:9a:e0:1e:e0:dd:21:5d:e5:f0:51:87:d4:36:68:
c5:a2:21:34:4a:87:75:0b:23:38:e5:c7:34:63:7f:07:1c:7e:
e0:96:34:25:15:df:30:98:a5:4a:eb:83:52:9f:f4:dc:72:98:
a2:29:3d:fe:7f:ea:05:41:a6:78:f8:7a:32:7d:27:74:2c:fb:
ce:6e:24:96:83:ea:31:64:40:1a:77:6d:a4:54:e0:f4:68:5b:
9a:61:36:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:49 2024 by rpki-client on console-fra.rpki-client.org