Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/dlUTM3qwGBU7PxEdHrsXFDDGw1U.roa
File: dlUTM3qwGBU7PxEdHrsXFDDGw1U.roa (raw, json)
Hash identifier: 2ySdpe2XLLVqq91q4ycU0FqoDxghYusC0iy//wFL3vo=
Subject key identifier: 76:55:13:33:7A:B0:18:15:3B:3F:11:1D:1E:BB:17:14:30:C6:C3:55
Certificate issuer: /CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Certificate serial: 01881EDD25B488F86AE8EB42167674AEC18C
Authority key identifier: 09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/dlUTM3qwGBU7PxEdHrsXFDDGw1U.roa
Signing time: Mon 15 May 2023 10:03:09 +0000
ROA not before: Mon 15 May 2023 10:03:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 89.187.9.0/24 maxlen: 24
89.187.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 May 2023 16:27:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1e:dd:25:b4:88:f8:6a:e8:eb:42:16:76:74:ae:c1:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Validity
Not Before: May 15 10:03:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=765513337ab018153b3f111d1ebb171430c6c355
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:28:52:ec:1c:47:e7:c5:d1:58:04:cb:65:2e:
ba:0a:29:98:a7:08:bb:86:21:4a:c6:52:87:e6:2a:
75:5d:1a:dd:6c:ee:b8:48:85:28:71:ce:cd:39:09:
32:71:45:77:76:a5:85:61:93:d7:35:0c:ac:62:71:
f3:25:7a:76:24:af:c4:ff:8a:18:f3:5e:88:bc:ab:
19:91:75:be:0d:7d:00:b1:47:97:b2:78:d3:68:9f:
23:df:4e:05:3b:9e:3d:f5:68:3b:c0:f4:5b:38:5e:
9c:71:58:4a:09:ba:a6:15:eb:8a:2d:a2:a5:e0:8f:
b5:17:fa:61:32:e3:87:36:b3:69:9f:2b:bb:2b:ac:
85:67:36:02:9d:b7:be:f8:fb:93:50:e9:2e:9a:e1:
12:dd:2a:93:95:81:fe:e2:3e:cc:e0:fd:b2:0a:dd:
60:fd:ee:a6:54:93:24:10:0c:7f:38:57:c0:fe:e6:
fc:06:02:e1:96:1d:10:99:f9:ea:5c:23:e9:3d:b3:
6d:43:69:4b:b3:7e:98:e6:c3:ab:48:25:fb:63:06:
7c:44:2c:8d:4d:07:23:cc:9a:a7:da:0f:13:58:47:
92:14:33:fc:b2:bb:bd:d0:f9:f3:85:c5:24:42:d4:
78:56:9a:b1:7d:55:51:6b:2f:2e:4c:c0:67:69:4f:
31:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:55:13:33:7A:B0:18:15:3B:3F:11:1D:1E:BB:17:14:30:C6:C3:55
X509v3 Authority Key Identifier:
keyid:09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/dlUTM3qwGBU7PxEdHrsXFDDGw1U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/CR7HzPD6dh7Zm8WnqewNDusL8FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.187.9.0/24
89.187.31.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:c1:66:e1:4e:c9:b7:38:63:b2:bc:e7:7f:4d:32:c0:76:b8:
b4:7a:e7:6d:56:de:72:ce:38:8e:a7:6f:e5:36:4b:48:08:ae:
2f:69:02:bb:1d:c4:42:66:b1:26:26:e3:8b:34:5e:0f:f7:fc:
17:46:c4:23:65:63:3c:d7:27:60:d4:0d:60:41:06:72:1d:0a:
c8:79:7f:b5:58:6d:95:0e:31:fe:ea:2e:bf:5a:5f:89:ae:c5:
a8:8a:64:09:7e:42:5c:60:6a:4c:79:8e:7a:1e:07:48:11:f2:
5d:ce:ab:d2:a9:21:f2:41:bb:c4:83:61:89:da:0f:e4:d8:9a:
3c:af:bc:4d:c1:79:31:b1:74:75:14:d4:3e:cb:df:ff:27:58:
1c:24:d7:2d:b6:d4:23:e3:9c:a9:e9:c7:c8:6c:eb:dc:4a:9a:
6d:c4:3e:8b:31:bd:4f:26:3f:d7:8f:b4:12:5b:c2:b3:08:9e:
c4:c9:f4:10:63:3c:2e:49:e5:78:c9:e5:a2:6e:3f:32:75:35:
b6:14:b0:08:f7:d6:09:3c:69:96:d1:ad:28:77:9f:8c:ab:fb:
13:7d:60:1c:d8:21:78:08:7c:54:ad:57:73:37:55:2b:3b:20:
3d:6e:1e:5f:a4:0e:bd:19:eb:0d:80:b4:3a:80:04:76:9e:04:
aa:e5:4e:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:49 2024 by rpki-client on console-fra.rpki-client.org