Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/Rvtg900RzwoPwzKOkVpY0bfM5Rs.roa
File: Rvtg900RzwoPwzKOkVpY0bfM5Rs.roa (raw, json)
Hash identifier: eVMQOXhIgvZ7jxj7qjyGkRc/In6xRkf4yW7rOUaVs6k=
Subject key identifier: 46:FB:60:F7:4D:11:CF:0A:0F:C3:32:8E:91:5A:58:D1:B7:CC:E5:1B
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 018659E1C32D67906A85523AB0E5EF711B87
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/Rvtg900RzwoPwzKOkVpY0bfM5Rs.roa
Signing time: Thu 16 Feb 2023 11:00:13 +0000
ROA not before: Thu 16 Feb 2023 11:00:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 136923
IP address blocks: 89.19.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Apr 2023 13:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:59:e1:c3:2d:67:90:6a:85:52:3a:b0:e5:ef:71:1b:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Feb 16 11:00:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=46fb60f74d11cf0a0fc3328e915a58d1b7cce51b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:6a:a4:31:af:c1:05:32:97:73:df:36:51:93:
05:7a:d8:5e:39:67:5b:b8:6e:bc:d9:90:25:50:81:
1a:14:fd:63:77:8d:d0:00:37:92:fc:52:af:e1:0a:
66:19:ad:5e:df:f2:af:cd:7c:39:00:0c:f0:b6:ae:
56:9c:14:c6:aa:66:62:ee:cc:af:25:1c:46:57:3b:
ba:1a:d3:d3:67:a4:26:5e:45:1f:dc:a1:a7:63:19:
b0:2e:5e:1d:8d:22:cd:08:b8:fa:dd:1c:c6:95:21:
3f:e9:04:6f:a5:50:79:68:7e:66:6c:65:7b:c4:69:
49:ff:26:cc:51:c7:dd:d9:42:77:03:44:43:3f:73:
fa:c3:98:3b:66:16:b3:18:61:71:a9:c9:a0:8c:c7:
b8:7b:7d:c6:54:d5:fe:86:ad:e1:b6:bc:55:df:76:
7b:8c:e1:23:4b:de:a8:6a:be:09:ac:c2:71:9f:df:
05:86:12:7a:d9:ab:16:49:a2:76:a3:51:db:f3:bf:
e1:c6:9c:29:d7:95:97:89:f6:8f:ee:ea:fc:2f:ba:
20:09:80:94:d0:1c:b7:b7:9f:23:8b:45:0b:a1:1c:
f7:8a:11:35:62:77:e8:d4:43:ec:f8:f0:84:ec:92:
3d:e3:15:36:2b:37:3a:3b:f1:0d:c2:64:5c:88:63:
ae:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:FB:60:F7:4D:11:CF:0A:0F:C3:32:8E:91:5A:58:D1:B7:CC:E5:1B
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/Rvtg900RzwoPwzKOkVpY0bfM5Rs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.19.58.0/24
Signature Algorithm: sha256WithRSAEncryption
96:c8:8e:48:82:31:8b:8e:dc:13:2f:f4:93:48:1f:2b:31:ff:
c0:4d:a6:e4:01:5f:f9:7a:75:b4:ab:65:1b:0d:e1:cf:6a:77:
90:09:34:59:db:70:d1:c4:62:ba:5f:d2:72:fb:21:4c:07:33:
6e:88:ca:0e:7e:24:aa:51:b8:1f:13:b7:5a:42:61:d7:75:45:
34:f6:f1:9f:d8:9e:ab:4e:1d:5a:00:48:dc:3a:75:38:66:d8:
56:1c:f2:4a:84:3d:a1:7f:f0:a8:dd:75:4f:77:57:c1:0e:75:
a8:0e:a6:2d:23:75:b7:f6:4c:b4:8e:7c:54:a0:9e:c7:b4:16:
a4:5f:53:b1:af:5b:36:1c:0d:69:38:39:48:54:11:5f:45:e8:
1c:03:2d:56:81:d3:3b:5f:d0:af:36:2a:d4:f0:ae:68:8b:bf:
fb:a6:51:0b:cb:40:86:ab:d3:7e:2f:45:a2:71:93:09:7d:7a:
cf:f5:2f:c3:2e:6a:b3:76:73:ac:9c:a5:55:cf:d4:0c:96:3b:
3d:28:2e:0a:ce:55:73:e9:c7:9b:8e:45:90:26:c6:bd:e2:b1:
56:22:2d:0a:99:9a:ee:ee:bf:16:49:75:6d:8e:5f:99:f8:74:
6f:5f:e6:78:b5:ad:f3:3d:59:24:df:87:a7:da:81:05:b2:0d:
88:f0:1e:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:17 2024 by rpki-client on console-ams.rpki-client.org