Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/6fcba8-adb8-411f-9e46-2ef27a1916bd/1/5ox9tofDXOzSYSBDIOEqo1WHdGw.roa
File: 5ox9tofDXOzSYSBDIOEqo1WHdGw.roa (raw, json)
Hash identifier: 33IztGlqesuHGJpnJFYKxPuIzmVcOTt7aSYmuVMgWXM=
Subject key identifier: E6:8C:7D:B6:87:C3:5C:EC:D2:61:20:43:20:E1:2A:A3:55:87:74:6C
Certificate issuer: /CN=c38ca1d418c218e26f795181a9e3bb7b79d4443f
Certificate serial: 018CC6B795DCF9821DC54C528529902EC171
Authority key identifier: C3:8C:A1:D4:18:C2:18:E2:6F:79:51:81:A9:E3:BB:7B:79:D4:44:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w4yh1BjCGOJveVGBqeO7e3nURD8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/6fcba8-adb8-411f-9e46-2ef27a1916bd/1/5ox9tofDXOzSYSBDIOEqo1WHdGw.roa
Signing time: Mon 01 Jan 2024 20:29:29 +0000
ROA not before: Mon 01 Jan 2024 20:29:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 19551
IP address blocks: 89.207.48.0/21 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Jan 2024 09:52:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b7:95:dc:f9:82:1d:c5:4c:52:85:29:90:2e:c1:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c38ca1d418c218e26f795181a9e3bb7b79d4443f
Validity
Not Before: Jan 1 20:29:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e68c7db687c35cecd261204320e12aa35587746c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:7e:ba:6c:75:d9:cf:71:21:ee:d1:9e:3c:2d:
18:66:de:1c:30:aa:e2:26:ac:1a:d2:b0:a1:b5:d0:
ca:38:8d:5d:0c:62:86:48:7d:74:3d:c8:53:51:02:
e6:47:53:8d:3f:ca:5f:79:56:fa:06:f6:6f:46:4a:
cf:fe:f6:e8:7b:4c:95:9a:ef:ee:ed:57:74:0b:3e:
76:25:6b:64:21:68:d9:78:78:80:ac:4c:a8:7f:be:
64:11:99:67:ad:65:09:d7:98:ed:e8:0c:40:0f:2f:
99:4f:f6:41:30:06:cf:52:27:e7:ea:3d:ae:29:c1:
e2:61:72:04:8e:48:b5:59:bb:c0:bb:0c:ef:0a:a6:
31:96:96:80:7f:cf:d6:ed:ef:2c:d2:e3:ab:9e:92:
3c:f9:66:cb:1f:ff:f6:e2:fa:3e:e0:b9:2b:6e:ae:
d6:8e:22:00:c0:9e:90:49:fa:50:b8:93:fb:6b:d6:
24:93:b7:6b:4d:f6:f6:fc:1c:35:1d:1a:45:1e:cb:
db:69:28:1f:e6:2a:bf:9e:fd:ee:cf:b9:4d:ef:e8:
97:5c:2b:cb:6f:4a:85:92:50:87:a4:bb:b5:73:24:
c6:07:e7:64:73:67:61:52:fc:cc:a5:ee:bb:97:1b:
bc:21:a4:70:09:08:64:7d:5c:b7:bd:6a:4c:39:40:
8e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:8C:7D:B6:87:C3:5C:EC:D2:61:20:43:20:E1:2A:A3:55:87:74:6C
X509v3 Authority Key Identifier:
keyid:C3:8C:A1:D4:18:C2:18:E2:6F:79:51:81:A9:E3:BB:7B:79:D4:44:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w4yh1BjCGOJveVGBqeO7e3nURD8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/6fcba8-adb8-411f-9e46-2ef27a1916bd/1/5ox9tofDXOzSYSBDIOEqo1WHdGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/6fcba8-adb8-411f-9e46-2ef27a1916bd/1/w4yh1BjCGOJveVGBqeO7e3nURD8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.207.48.0/21
Signature Algorithm: sha256WithRSAEncryption
dc:6f:63:2f:41:40:7b:cc:e4:4d:81:f9:65:be:61:41:05:a0:
33:c4:8e:42:fc:16:ff:81:a0:17:5a:52:3a:ca:11:cc:9f:ed:
b2:e1:9b:18:42:86:dd:23:b7:c5:ce:e6:64:64:b0:a6:40:2c:
3e:8d:d0:a8:a0:47:78:cc:09:4f:a4:f0:ce:c5:46:7e:e9:51:
e4:a4:50:d7:20:cc:2d:9e:0f:8b:18:19:2d:cc:fa:96:88:db:
3e:4e:28:9d:b6:c1:38:c4:96:2b:7b:08:18:6d:25:53:fa:da:
dc:ab:19:a0:90:e4:6a:eb:87:1c:e2:d9:16:15:90:df:d3:c5:
16:2b:0a:91:6a:be:6e:4e:b4:35:52:6a:a2:50:fd:d4:2b:f4:
b3:4b:a5:0f:fb:b8:ff:9b:ac:a5:22:af:a4:9e:a3:24:61:68:
ed:e7:c9:ea:18:78:7b:65:73:99:63:02:55:a0:7c:4f:ac:a0:
67:49:06:fc:ac:a5:ee:04:9f:93:4a:e8:ba:1d:2c:ce:f6:3d:
2e:6d:ba:4a:38:1f:28:e7:66:ca:e3:11:0d:c2:68:ce:e4:0a:
46:4b:01:6f:a7:82:9f:72:32:11:5d:bb:1d:03:66:79:f2:75:
58:ba:93:51:1a:56:3f:98:99:c5:23:cb:62:1b:03:f5:af:1c:
8e:2c:6a:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:02 2024 by rpki-client on console-ams.rpki-client.org