Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/dr9PIChR9n-qcFnSSFNxhh-2eaE.roa
File: dr9PIChR9n-qcFnSSFNxhh-2eaE.roa (raw, json)
Hash identifier: I7GvPAOdt0HzryuqXKRQBzs1E8/tFWSnfhVzbvMMKxA=
Subject key identifier: 76:BF:4F:20:28:51:F6:7F:AA:70:59:D2:48:53:71:86:1F:B6:79:A1
Certificate issuer: /CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Certificate serial: 018F9B46E061F894A4FD6B9847B4F6ED3A1F
Authority key identifier: 09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/dr9PIChR9n-qcFnSSFNxhh-2eaE.roa
Signing time: Tue 21 May 2024 13:11:04 +0000
ROA not before: Tue 21 May 2024 13:11:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 89.187.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 25 Jun 2024 13:31:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:9b:46:e0:61:f8:94:a4:fd:6b:98:47:b4:f6:ed:3a:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Validity
Not Before: May 21 13:11:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=76bf4f202851f67faa7059d2485371861fb679a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:f4:5e:bb:b4:8d:9d:ec:3b:9d:6a:62:23:2e:
5f:87:b2:72:cb:7b:ca:4d:dc:2c:ca:dd:ff:95:a5:
d1:e5:53:c2:cc:3d:45:9b:c4:43:1f:f1:5a:98:b1:
05:6c:8e:80:f5:0d:e3:f3:a7:f8:a1:69:8a:56:f0:
57:37:72:18:2f:ea:88:4d:d4:53:53:41:5a:3f:6f:
cb:f2:b4:04:b8:7a:c0:6a:f2:9b:60:8f:6c:43:e2:
f1:c9:79:a3:60:43:06:28:a4:63:67:a3:fc:c9:1a:
c0:0b:f6:9d:ec:d6:38:4a:7a:b5:94:2b:e9:cb:9d:
e0:c7:cc:1e:a8:75:d4:1c:5b:3d:01:8c:69:43:4e:
bd:09:6d:31:95:c2:8c:88:66:dd:a6:ea:47:9f:a7:
e5:93:70:f9:02:64:16:a3:d3:93:c4:43:ca:a8:6f:
4f:15:18:34:2a:67:44:2e:d3:6a:d8:e2:61:55:8d:
76:0d:00:7b:07:20:28:9f:9b:03:4a:16:8c:12:e7:
51:71:d1:90:b9:04:25:44:40:f6:29:8e:a9:68:e3:
1e:54:a7:2d:f4:e0:31:2f:47:fc:42:f0:ad:72:aa:
ba:bd:e6:2d:ef:45:51:bb:83:27:43:8c:5b:14:87:
55:d8:87:2e:d4:2f:6b:74:29:a9:a7:1d:2e:99:bf:
64:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:BF:4F:20:28:51:F6:7F:AA:70:59:D2:48:53:71:86:1F:B6:79:A1
X509v3 Authority Key Identifier:
keyid:09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/dr9PIChR9n-qcFnSSFNxhh-2eaE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/CR7HzPD6dh7Zm8WnqewNDusL8FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.187.9.0/24
Signature Algorithm: sha256WithRSAEncryption
49:24:c4:83:6c:59:3d:04:bc:51:43:2e:24:4d:0f:b9:9d:2b:
07:6b:b0:62:52:47:9a:98:92:6d:ff:c6:fd:d4:1c:6e:91:b6:
6e:a5:6a:4a:65:de:61:d5:68:26:50:58:aa:fb:94:b7:a9:60:
57:5e:e6:1c:ab:44:d5:3d:c3:86:a8:7c:4b:05:60:d1:bd:b3:
e0:7a:50:7b:c6:9e:01:85:0c:d8:83:0d:9d:40:78:7f:6a:24:
ca:cb:6d:a6:dc:35:b5:f4:58:1f:47:53:81:ff:85:6a:7d:7d:
cb:63:a1:9f:05:96:6e:85:cf:53:4f:92:4b:a6:d5:52:e6:89:
f6:12:a0:f8:d2:e1:f7:6f:85:82:0e:a5:1f:f9:c4:00:5f:00:
62:c9:ca:6d:1f:2c:3d:a1:18:24:9b:7d:5a:5a:3c:b3:87:3e:
b3:77:78:63:40:e8:f0:fe:83:74:00:14:6b:bd:31:88:56:ed:
bd:8b:d2:63:3f:c0:ad:b8:61:79:db:e8:21:71:df:20:10:5f:
38:b9:dd:77:c5:87:07:a2:87:83:bc:fc:e5:88:a4:78:c9:fe:
5e:7d:b4:64:f7:8a:d5:aa:95:f6:cf:6a:ff:e6:a3:92:7e:57:
9c:2b:b5:29:5b:8a:7b:ef:b8:2c:27:85:d8:73:ca:8c:d0:5b:
8c:86:10:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 25 20:25:53 2024 by rpki-client on console-ams.rpki-client.org