Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/dWpv1-xD1mhtJTIw-HD5sZWmiOs.roa
File: dWpv1-xD1mhtJTIw-HD5sZWmiOs.roa (raw, json)
Hash identifier: pAuVb25NK+Sg0bxnkp8/PoSDtQWlHPxQ5ahe8z+AH9g=
Subject key identifier: 75:6A:6F:D7:EC:43:D6:68:6D:25:32:30:F8:70:F9:B1:95:A6:88:EB
Certificate issuer: /CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Certificate serial: 0187B0BA240983190781D9F7C04E55C7615B
Authority key identifier: 09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/dWpv1-xD1mhtJTIw-HD5sZWmiOs.roa
Signing time: Mon 24 Apr 2023 00:46:41 +0000
ROA not before: Mon 24 Apr 2023 00:46:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 89.187.6.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b0:ba:24:09:83:19:07:81:d9:f7:c0:4e:55:c7:61:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Validity
Not Before: Apr 24 00:46:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=756a6fd7ec43d6686d253230f870f9b195a688eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:76:a2:17:f4:d9:06:6b:ac:10:82:19:9e:38:
c3:4c:c0:68:50:71:b6:8e:39:32:84:82:e1:4d:6d:
66:db:34:12:fd:c8:3a:45:88:4f:6b:45:9d:11:76:
08:0f:be:fc:aa:75:81:0c:31:b5:ce:c9:b6:57:c0:
6f:e0:93:ac:ab:31:2f:63:0f:7b:92:4a:21:9f:c3:
54:d9:79:28:aa:43:ba:96:a0:00:38:f9:53:e7:5d:
eb:b1:dd:d6:d4:44:09:3a:32:16:07:be:4a:3a:29:
ff:db:07:15:1b:33:c5:ce:80:af:fe:e0:2c:76:29:
82:15:31:68:08:9a:35:5d:33:ef:d6:4b:3e:e8:b1:
6f:46:ae:6c:d3:5a:1f:0a:9c:e8:77:72:7a:e9:f8:
a9:3f:ae:ac:20:c5:46:b5:61:fa:df:b6:d7:91:2d:
30:c0:b5:f2:63:e3:35:34:3d:3a:a1:71:2a:9d:7c:
a9:2f:9d:55:e3:92:db:e6:cf:30:b7:3f:0b:d2:8c:
05:43:1b:09:81:80:f1:c6:bf:a7:52:e6:65:52:f2:
3f:bd:4a:2a:20:f1:c3:b8:10:61:f9:18:7c:eb:9c:
88:f2:db:51:6f:a1:68:06:4c:21:1c:cf:81:70:c7:
7a:d5:35:1f:e4:f9:4a:c5:06:5b:17:09:d9:a3:6f:
b7:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:6A:6F:D7:EC:43:D6:68:6D:25:32:30:F8:70:F9:B1:95:A6:88:EB
X509v3 Authority Key Identifier:
keyid:09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/dWpv1-xD1mhtJTIw-HD5sZWmiOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/CR7HzPD6dh7Zm8WnqewNDusL8FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.187.6.0/24
Signature Algorithm: sha256WithRSAEncryption
57:8d:49:1d:87:db:f3:64:02:6d:bc:c9:e2:7a:d7:b1:2e:da:
fa:c5:33:47:77:d6:4f:d4:c1:54:98:fa:1e:8b:dd:e6:b8:8a:
1a:31:19:91:e4:67:25:3d:b9:65:86:d4:f1:10:96:c3:f3:2c:
02:15:69:c9:e4:a1:16:6c:cf:c9:53:62:33:41:2e:99:ca:f3:
d3:e5:cb:5b:09:a0:4e:c1:02:ce:14:0c:10:35:75:55:a0:13:
53:19:f8:a8:33:f5:03:32:3f:9b:41:66:98:9e:a5:ea:74:1e:
34:47:6d:2e:49:b6:fd:08:0e:e2:2b:72:82:20:c5:2b:ce:4f:
60:a0:ee:e7:1b:98:b5:ad:22:7f:97:fa:00:04:cf:c6:9e:13:
5d:21:04:b3:c0:ef:60:0b:3d:89:35:ec:d8:43:d1:22:11:9b:
d9:32:9b:94:f9:73:4f:0f:80:78:2b:76:13:a6:7d:ef:f7:33:
4e:01:9b:4f:f2:01:75:25:10:9b:3f:49:ad:bc:46:59:eb:11:
dc:b3:bc:4c:72:07:cf:41:42:4e:f4:26:8c:0b:81:91:c6:e6:
ea:05:14:d1:33:5b:85:97:a7:25:b2:e3:37:e6:ee:70:14:de:
36:1b:70:08:82:0c:30:4f:c0:87:a6:08:c0:9e:88:d3:41:ef:
0b:92:a9:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:51 2023 by rpki-client on console-ams.rpki-client.org