Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/7KX9CuhPgHg3dsqHh5WwpRM5qUE.roa
File: 7KX9CuhPgHg3dsqHh5WwpRM5qUE.roa (raw, json)
Hash identifier: G5mLx3Hf+TNWp/etTDLj8DN4hhFgLHyUZZNL3lNR+Tw=
Subject key identifier: EC:A5:FD:0A:E8:4F:80:78:37:76:CA:87:87:95:B0:A5:13:39:A9:41
Certificate issuer: /CN=adac830ccaa74783dd961fab241a228d7cc6f808
Certificate serial: 018570705B8957212DAADE94965F473DBB7D
Authority key identifier: AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/7KX9CuhPgHg3dsqHh5WwpRM5qUE.roa
Signing time: Mon 02 Jan 2023 03:04:49 +0000
ROA not before: Mon 02 Jan 2023 03:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28745
IP address blocks: 89.237.60.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:5b:89:57:21:2d:aa:de:94:96:5f:47:3d:bb:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adac830ccaa74783dd961fab241a228d7cc6f808
Validity
Not Before: Jan 2 03:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eca5fd0ae84f80783776ca878795b0a51339a941
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:cb:24:dc:10:15:bb:66:48:93:48:6c:40:b6:
4c:b4:4f:a1:cf:64:2e:04:8a:bf:ef:d9:fb:77:bc:
bd:73:2a:34:a2:3a:25:fd:2e:8c:fb:75:35:bd:23:
c2:56:87:f5:63:0b:6e:ca:cd:cd:4e:97:dd:fc:d6:
c5:e4:95:a5:a6:75:d7:0c:50:8b:4e:56:2b:ab:d3:
0b:68:f6:8a:2c:92:25:b0:84:b1:72:3d:b6:08:de:
ca:6a:9c:d5:1d:d9:26:0c:00:03:4c:05:ba:5e:f4:
f5:d0:fc:aa:e4:b5:10:76:ad:63:05:dc:00:c7:ba:
aa:40:22:fa:fa:fd:86:47:8e:7b:e4:a5:41:b5:17:
b5:d8:25:f3:bc:29:eb:30:8d:6b:dd:79:35:34:da:
73:1f:b4:14:08:41:1e:51:3a:e4:1e:bb:a4:35:9f:
8c:af:46:09:eb:9b:b3:03:b8:95:00:45:cc:74:aa:
74:44:c1:96:56:e2:24:e1:75:0a:ad:47:1c:9b:83:
e1:44:b0:35:a6:c0:78:57:23:30:5b:08:af:d8:41:
00:c4:a7:64:3b:99:76:3f:c4:d2:44:1c:a7:67:a1:
bb:6b:a5:2e:a7:74:35:bf:dd:e4:fe:a1:f2:44:df:
5b:a7:15:bf:12:17:ef:25:43:75:c7:66:60:5c:05:
3b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:A5:FD:0A:E8:4F:80:78:37:76:CA:87:87:95:B0:A5:13:39:A9:41
X509v3 Authority Key Identifier:
keyid:AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/7KX9CuhPgHg3dsqHh5WwpRM5qUE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.237.60.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:9b:1a:ee:da:5f:4f:ca:40:39:34:13:2e:83:73:ab:48:24:
ce:d0:ab:d1:3f:bb:76:7a:36:b1:14:17:19:07:92:c6:2f:b7:
8a:ea:f6:98:56:fa:54:e7:12:80:a0:13:f9:7b:2a:0b:3a:13:
dc:a0:27:0e:f8:04:ac:06:bc:10:2d:a4:a2:78:3c:ab:ba:1b:
9c:8e:2e:ff:91:b1:4e:ab:51:8f:cd:32:3d:ad:21:9c:17:b3:
d3:df:70:33:f6:18:bd:49:95:4d:be:44:91:43:ea:ac:1a:79:
0a:a6:7a:6f:96:28:0f:70:6b:1e:ad:05:7d:95:4e:33:8c:a4:
3e:12:6e:b0:f4:38:71:d2:7c:08:64:35:59:eb:c0:a2:e3:06:
1e:31:2d:6c:30:69:f4:c1:28:bd:d6:f8:4a:d8:f2:80:f6:f5:
d1:36:71:49:3f:bd:84:99:a2:1b:5d:f5:b9:33:ed:6e:15:1a:
ed:8d:72:d2:3a:4c:c9:8d:69:5c:3c:d6:ce:0c:58:b9:ba:16:
c4:f0:a6:27:0c:62:b8:b7:da:c5:4c:e0:b8:c4:43:23:92:e1:
b8:db:0e:f2:14:e0:be:b3:06:ac:72:26:d4:54:11:fa:1a:30:
9b:12:2b:30:e6:fe:02:4b:91:4d:47:f9:d7:b4:41:12:10:dc:
00:09:43:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:32 2024 by rpki-client on console-ams.rpki-client.org