Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/ei1BKzH83wSp4pYlLpOYlsEm7Ro.roa
File: ei1BKzH83wSp4pYlLpOYlsEm7Ro.roa (raw, json)
Hash identifier: F1yWegWzL7pSgV/hiJKgK/QeyGyW8p3hnh608HEkIYg=
Subject key identifier: 7A:2D:41:2B:31:FC:DF:04:A9:E2:96:25:2E:93:98:96:C1:26:ED:1A
Certificate issuer: /CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Certificate serial: 01911D4A27844311515E02902276389EA26D
Authority key identifier: 09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/ei1BKzH83wSp4pYlLpOYlsEm7Ro.roa
Signing time: Sun 04 Aug 2024 12:08:04 +0000
ROA not before: Sun 04 Aug 2024 12:08:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 89.187.16.0/24 maxlen: 24
89.187.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 04 Aug 2024 22:38:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:1d:4a:27:84:43:11:51:5e:02:90:22:76:38:9e:a2:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Validity
Not Before: Aug 4 12:08:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7a2d412b31fcdf04a9e296252e939896c126ed1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ae:3a:9a:c6:9d:8d:e1:3d:a9:a2:bc:3f:bc:
60:41:fc:a3:21:bd:3c:27:61:4c:73:4c:6c:d6:ff:
93:79:cc:0c:b3:d4:af:45:93:95:8f:40:1a:68:93:
1b:eb:d8:be:ec:4e:9f:1a:fc:86:8e:83:7d:9d:4b:
09:41:63:6f:67:f4:08:e7:a5:6b:e9:cb:7c:62:42:
43:29:e8:dc:b3:9f:46:5d:3d:6f:20:65:72:33:72:
de:6f:af:12:5c:1f:09:de:d9:b8:63:4c:20:d8:57:
49:83:92:ee:66:b2:77:67:18:a6:64:7d:dd:ae:bd:
d8:52:b6:0d:52:4b:57:06:77:15:fb:fa:b5:7a:ee:
98:2f:9c:87:20:68:97:8f:11:8a:92:76:57:67:35:
6d:3a:d9:52:12:50:90:95:f4:0a:4f:cb:40:f6:cf:
8c:8f:c5:98:ac:92:01:b3:b6:96:57:dc:63:90:97:
3b:65:5e:17:50:0a:d0:8e:98:6a:1a:4b:23:86:ba:
6f:d3:7e:15:68:8d:1a:75:64:ce:72:4e:9a:d8:25:
e3:e7:b7:be:e9:3b:fe:01:81:63:19:d1:47:8d:a3:
15:8b:f0:41:e6:d9:10:c4:2d:37:73:de:54:f1:10:
1f:f8:e0:08:ff:9c:a2:1c:6b:57:ac:bf:30:b8:f3:
e9:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:2D:41:2B:31:FC:DF:04:A9:E2:96:25:2E:93:98:96:C1:26:ED:1A
X509v3 Authority Key Identifier:
keyid:09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/ei1BKzH83wSp4pYlLpOYlsEm7Ro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/CR7HzPD6dh7Zm8WnqewNDusL8FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.187.16.0/24
89.187.20.0/24
Signature Algorithm: sha256WithRSAEncryption
81:de:6d:3e:b0:67:c8:fd:95:18:39:07:ed:21:de:d8:7a:51:
64:b2:19:b7:74:73:18:8b:d2:62:55:df:e3:a7:f8:a4:21:17:
14:f6:0b:44:17:d3:48:2b:5c:d7:ff:bf:8d:2c:c8:47:ed:f8:
a6:8b:c5:4c:be:2f:90:46:b1:5b:bb:7f:3b:e3:36:5e:fe:9d:
99:13:92:c1:3b:0a:36:02:23:50:50:d9:d9:0f:69:81:b8:5c:
0e:5b:e4:49:b9:4d:0c:13:bf:df:33:8c:e6:98:72:81:c9:7a:
f3:3f:ff:4b:4f:2d:7c:16:ae:33:e5:bf:9c:30:de:b4:8f:19:
1a:ed:4b:d5:57:3a:1e:66:1c:23:fb:1b:c7:84:d1:20:14:ef:
4a:8e:ae:3d:b1:54:3a:b1:59:f4:d5:21:77:a6:f6:08:f9:55:
21:88:c0:3b:cd:58:64:47:fd:7a:48:bd:99:92:db:a1:59:14:
8a:f8:87:ef:54:cf:53:6b:41:79:2d:77:62:b7:2d:18:37:80:
f6:15:09:b6:82:20:03:55:51:0e:af:64:56:0a:cb:87:1d:c7:
1b:d3:ae:b4:06:37:66:f3:d9:05:8f:02:63:d2:8d:15:d5:77:
7a:fc:82:61:32:75:52:bb:54:48:04:9d:78:ef:bd:a7:63:50:
64:f0:fd:41
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZEdSieEQxFRXgKQInY4nqJtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5MWVjN2NjZjBmYTc2MWVkOTliYzVhN2E5ZWMwZDBlZWIw
YmYwNTUwHhcNMjQwODA0MTIwODA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YTJkNDEyYjMxZmNkZjA0YTllMjk2MjUyZTkzOTg5NmMxMjZlZDFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuq46msadjeE9qaK8P7xgQfyjIb08
J2FMc0xs1v+TecwMs9SvRZOVj0AaaJMb69i+7E6fGvyGjoN9nUsJQWNvZ/QI56Vr
6ct8YkJDKejcs59GXT1vIGVyM3Leb68SXB8J3tm4Y0wg2FdJg5LuZrJ3ZximZH3d
rr3YUrYNUktXBncV+/q1eu6YL5yHIGiXjxGKknZXZzVtOtlSElCQlfQKT8tA9s+M
j8WYrJIBs7aWV9xjkJc7ZV4XUArQjphqGksjhrpv034VaI0adWTOck6a2CXj57e+
6Tv+AYFjGdFHjaMVi/BB5tkQxC03c95U8RAf+OAI/5yiHGtXrL8wuPPpkwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFHotQSsx/N8EqeKWJS6TmJbBJu0aMB8GA1UdIwQY
MBaAFAkex8zw+nYe2ZvFp6nsDQ7rC/BVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1I3SHpQRDZkaDdabThXbnFld05EdXNMOEZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS9lNjQ3OGEtN2I3My00NzU4LWFkZGQt
NDVjZmM4NTdkZGRkLzEvZWkxQkt6SDgzd1NwNHBZbExwT1lsc0VtN1JvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OS9lNjQ3OGEtN2I3My00NzU4LWFkZGQtNDVjZmM4NTdkZGRk
LzEvQ1I3SHpQRDZkaDdabThXbnFld05EdXNMOEZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAWbsQAwQA
WbsUMA0GCSqGSIb3DQEBCwUAA4IBAQCB3m0+sGfI/ZUYOQftId7YelFkshm3dHMY
i9JiVd/jp/ikIRcU9gtEF9NIK1zX/7+NLMhH7fimi8VMvi+QRrFbu3874zZe/p2Z
E5LBOwo2AiNQUNnZD2mBuFwOW+RJuU0ME7/fM4zmmHKByXrzP/9LTy18Fq4z5b+c
MN60jxka7UvVVzoeZhwj+xvHhNEgFO9Kjq49sVQ6sVn01SF3pvYI+VUhiMA7zVhk
R/16SL2ZktuhWRSK+IfvVM9Ta0F5LXdity0YN4D2FQm2giADVVEOr2RWCsuHHccb
0660Bjdm89kFjwJj0o0V1Xd6/IJhMnVSu1RIBJ14772nY1Bk8P1B
-----END CERTIFICATE-----
Generated at Mon Aug 5 01:32:20 2024 by rpki-client on console-ams.rpki-client.org