Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/rcULCb39GFOiY7roGnqotpLMiMY.roa
File: rcULCb39GFOiY7roGnqotpLMiMY.roa (raw, json)
Hash identifier: hHdiW4ZFnLR7V3LQ9e9odhEpyd52Jys2U+/ggBwYyHc=
Subject key identifier: AD:C5:0B:09:BD:FD:18:53:A2:63:BA:E8:1A:7A:A8:B6:92:CC:88:C6
Certificate issuer: /CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Certificate serial: 018A83AC1FD7E4C2D189F05A10A9ECAAC1FA
Authority key identifier: 09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/rcULCb39GFOiY7roGnqotpLMiMY.roa
Signing time: Mon 11 Sep 2023 09:56:50 +0000
ROA not before: Mon 11 Sep 2023 09:56:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42689
IP address blocks: 89.187.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:83:ac:1f:d7:e4:c2:d1:89:f0:5a:10:a9:ec:aa:c1:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Validity
Not Before: Sep 11 09:56:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=adc50b09bdfd1853a263bae81a7aa8b692cc88c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:b3:f0:9e:2f:24:06:75:76:05:33:63:47:04:
f2:51:9d:75:47:be:9b:30:f0:de:71:2d:81:af:54:
9f:e3:b6:a0:49:28:f2:1e:ea:b1:3f:8e:5d:87:3a:
82:6e:9e:e1:a3:c1:ab:d3:8b:f6:a8:76:55:73:60:
d9:16:b2:64:81:7f:2e:fd:53:34:f8:87:79:45:19:
21:b3:fb:67:cd:e8:0e:52:43:04:bc:3e:82:3c:eb:
05:ba:73:d7:dd:81:a0:43:c3:52:2e:b8:c2:7d:a7:
7d:eb:da:cf:54:28:cc:c7:61:e3:e0:d3:1e:88:20:
2c:29:25:4e:73:f8:b6:13:18:87:fe:d5:a6:d1:7f:
f1:c9:37:30:56:39:02:0a:2e:8f:ef:bc:67:b4:f9:
30:5b:2b:a3:63:72:cb:e9:0a:56:bd:bf:b7:ad:a8:
d2:9d:d2:9e:bf:87:d3:28:fb:73:2f:bb:53:21:55:
3f:75:9e:4b:3f:cb:7e:db:62:a2:cd:ad:00:ef:0d:
50:1a:1f:5a:61:ef:80:fd:6b:39:68:67:b9:38:6a:
6c:7c:9e:f8:3e:74:35:0d:96:13:15:38:15:0c:69:
52:c3:7a:08:7a:86:51:62:3e:58:a8:dd:3a:d8:2a:
93:94:03:e2:44:c7:0c:71:ec:c2:44:91:c4:aa:ae:
e9:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:C5:0B:09:BD:FD:18:53:A2:63:BA:E8:1A:7A:A8:B6:92:CC:88:C6
X509v3 Authority Key Identifier:
keyid:09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/rcULCb39GFOiY7roGnqotpLMiMY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/CR7HzPD6dh7Zm8WnqewNDusL8FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.187.4.0/24
Signature Algorithm: sha256WithRSAEncryption
60:bb:f4:0d:15:df:63:8f:ca:3f:e5:13:df:dd:1a:58:b8:1a:
db:fd:24:c0:55:43:5f:fb:2c:c5:dc:95:5d:86:97:30:27:ee:
6a:6d:25:d1:6e:88:a1:df:9f:c3:bb:55:e1:4b:d7:a6:16:b7:
05:85:a2:bd:19:11:a7:77:fc:44:76:50:89:98:d8:65:e8:07:
8b:bf:81:d2:2f:e2:63:c0:65:f2:4c:a3:f7:74:99:8c:f4:81:
17:c4:ab:86:b1:b9:b9:f2:c0:d9:fb:ee:25:b1:23:6c:d6:83:
26:65:34:0b:1f:91:21:a1:47:00:f9:b2:df:fa:84:85:70:bd:
87:63:10:80:80:f3:ca:f2:e5:d2:be:f4:fe:c2:43:a3:a0:d2:
7c:8f:01:57:94:6d:d0:13:ac:86:64:d6:d9:9f:62:ae:13:cd:
99:18:0a:90:20:2b:b4:de:18:6d:be:b8:f0:e5:4c:b6:0c:89:
10:6c:e9:a2:43:ae:76:5c:d3:ea:a8:5c:0b:f3:f2:ca:78:12:
be:e3:82:97:42:45:70:77:f0:6c:9d:c5:b3:9a:6f:ae:9f:b0:
76:9d:59:f7:21:72:3b:cc:1f:96:0f:f7:36:bf:70:60:4f:4b:
d0:e6:9d:99:5e:8d:c0:eb:ed:96:dc:d7:28:69:75:3d:66:5f:
5e:47:8c:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:03 2024 by rpki-client on console-ams.rpki-client.org