Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/oyK0SqGbJ8snQmhkyvQmY9hcwqg.roa
File: oyK0SqGbJ8snQmhkyvQmY9hcwqg.roa (raw, json)
Hash identifier: M2oddyP0uMJWGr0jxSEIBW2HNdpE+5AgqmKbMTr9OFo=
Subject key identifier: A3:22:B4:4A:A1:9B:27:CB:27:42:68:64:CA:F4:26:63:D8:5C:C2:A8
Certificate issuer: /CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Certificate serial: 0187C8BFBC7590D8E11D0A132BD4678A607D
Authority key identifier: 09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/oyK0SqGbJ8snQmhkyvQmY9hcwqg.roa
Signing time: Fri 28 Apr 2023 16:43:41 +0000
ROA not before: Fri 28 Apr 2023 16:43:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 89.187.6.0/24 maxlen: 24
89.187.18.0/24 maxlen: 24
89.187.19.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 May 2023 06:41:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c8:bf:bc:75:90:d8:e1:1d:0a:13:2b:d4:67:8a:60:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Validity
Not Before: Apr 28 16:43:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a322b44aa19b27cb27426864caf42663d85cc2a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:92:43:84:94:55:73:04:1f:e5:e2:e3:ac:64:
c0:d0:fc:69:e3:ec:fd:dc:8b:6b:12:6f:df:48:f5:
4e:67:3b:bb:ed:c3:9d:e0:c6:35:4c:f5:1a:74:80:
d7:d6:86:ce:4e:8b:fb:c1:df:47:15:2f:d9:8f:a1:
4f:79:08:e9:65:e9:05:24:13:8d:1a:52:65:ec:37:
73:79:bc:25:b8:21:2e:fa:80:01:9c:11:eb:9f:1f:
e4:8d:5f:a7:32:1e:23:de:79:a1:a0:ba:8b:36:16:
81:f9:cb:43:ec:ce:98:42:17:8f:86:8a:38:96:9d:
af:79:df:94:1e:a8:39:64:c5:75:7c:f3:57:0f:12:
58:db:7c:6a:df:6d:6e:47:c2:85:23:e1:19:9f:17:
44:1c:0d:70:5b:05:4c:3e:d5:99:49:8f:ff:c4:6d:
9a:23:4e:8e:af:54:03:eb:2d:80:3a:e4:79:ac:5b:
7f:aa:9e:24:73:2e:24:4b:f1:9b:61:5a:3f:ad:d6:
77:df:b1:24:e0:47:8a:f2:5a:98:56:b2:4c:64:68:
e3:82:a2:53:51:7f:f9:6d:a8:0e:96:da:ef:ab:0a:
c5:4a:f5:45:3f:9d:35:84:09:83:3c:0b:1b:c4:ed:
6a:9c:47:e7:03:7c:98:f9:5b:55:cc:90:ad:d2:ca:
bb:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:22:B4:4A:A1:9B:27:CB:27:42:68:64:CA:F4:26:63:D8:5C:C2:A8
X509v3 Authority Key Identifier:
keyid:09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/oyK0SqGbJ8snQmhkyvQmY9hcwqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/CR7HzPD6dh7Zm8WnqewNDusL8FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.187.6.0/24
89.187.18.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:6d:aa:5b:95:64:16:c4:0c:0f:1b:bf:35:67:91:3a:f6:32:
4e:e9:bd:dc:f1:57:9d:39:87:db:de:04:fd:71:4e:b7:ec:8c:
69:ee:0c:33:6b:ec:1d:5b:ff:ef:17:5e:d3:a8:e5:56:7b:92:
ce:6c:df:63:5f:dc:7f:50:76:0a:73:4d:1c:6b:9f:be:5f:08:
7b:97:11:07:8c:e6:4c:23:e1:5c:9b:5f:b2:a5:c6:5d:d6:fb:
cf:f8:83:1e:cb:c5:45:7f:07:7c:d1:ba:95:f8:b3:96:29:1f:
75:48:66:70:7c:05:1f:49:3f:55:e7:23:b5:0d:22:23:49:f3:
78:fd:1d:8c:17:03:a3:29:33:fa:d3:0c:e6:0b:55:0d:51:b7:
6c:74:72:a4:7d:32:fe:18:2d:07:e3:d0:b7:39:70:17:e6:30:
8c:50:01:13:1f:11:22:8a:ff:66:6a:2d:17:c5:87:a1:99:b8:
52:bd:6f:6a:df:9b:e7:be:e8:b9:86:07:18:c8:32:30:28:e2:
72:64:a6:3d:cd:3f:86:18:03:10:f2:d5:03:31:62:11:ea:37:
aa:2d:50:b9:96:45:80:df:73:5b:c2:7c:44:27:94:48:d9:59:
c5:14:20:6e:9c:0f:0f:59:a0:d5:ba:1b:c2:c3:17:cc:7c:61:
a9:7f:61:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:03 2024 by rpki-client on console-ams.rpki-client.org