Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/6fcba8-adb8-411f-9e46-2ef27a1916bd/1/EDyqafSG6R7YTd3YQ9csKE0nP6k.roa
File: EDyqafSG6R7YTd3YQ9csKE0nP6k.roa (raw, json)
Hash identifier: EHajdeg45jBPwQeLnj8HhwonRRzr2rIKvyidxn7UPl4=
Subject key identifier: 10:3C:AA:69:F4:86:E9:1E:D8:4D:DD:D8:43:D7:2C:28:4D:27:3F:A9
Certificate issuer: /CN=c38ca1d418c218e26f795181a9e3bb7b79d4443f
Certificate serial: 018570FBA55159015DA676176E45C6003D50
Authority key identifier: C3:8C:A1:D4:18:C2:18:E2:6F:79:51:81:A9:E3:BB:7B:79:D4:44:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w4yh1BjCGOJveVGBqeO7e3nURD8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/6fcba8-adb8-411f-9e46-2ef27a1916bd/1/EDyqafSG6R7YTd3YQ9csKE0nP6k.roa
Signing time: Mon 02 Jan 2023 05:36:58 +0000
ROA not before: Mon 02 Jan 2023 05:36:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19551
IP address blocks: 89.207.48.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:a5:51:59:01:5d:a6:76:17:6e:45:c6:00:3d:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c38ca1d418c218e26f795181a9e3bb7b79d4443f
Validity
Not Before: Jan 2 05:36:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=103caa69f486e91ed84dddd843d72c284d273fa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:4e:13:6a:78:74:d6:de:50:6c:d8:b8:85:e5:
8e:26:fa:26:c8:f8:fd:50:fa:65:cc:fe:cb:52:93:
bb:df:e8:8c:bd:c0:cf:85:db:a4:f5:80:1d:d7:0b:
8e:46:a1:07:05:8e:c4:0a:43:a9:b5:47:bc:6a:89:
34:7f:6a:d9:16:65:2d:6e:db:a2:2b:2a:32:b5:6a:
4d:8e:86:e2:7e:bd:d6:ba:fe:32:ac:f9:f3:17:30:
95:53:6d:53:2b:48:03:35:95:37:7a:41:0c:51:b5:
ed:1c:92:2b:63:fc:77:d4:0b:f2:0d:66:25:b3:cf:
54:d8:46:21:2a:26:55:50:20:e0:99:9c:5c:e2:e3:
d7:dc:40:e1:eb:da:f6:c8:88:4d:e1:9a:58:0c:56:
29:f4:78:4a:a9:27:6e:93:36:15:54:cf:ae:0d:86:
d9:db:f4:f3:11:ba:83:01:d3:e2:f5:f1:18:a0:8d:
c5:7e:b5:c8:57:96:d6:98:dc:11:c8:a7:23:06:cc:
30:4d:53:c1:fc:32:de:3f:5a:a8:40:7c:c6:68:31:
fe:d1:7a:60:6a:a9:1f:0f:2e:22:65:de:42:a4:fa:
65:69:19:3a:37:e2:a7:78:1e:02:ad:55:a8:65:5d:
de:47:5d:46:5f:c2:82:dd:1f:cc:a4:48:0d:00:be:
c0:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:3C:AA:69:F4:86:E9:1E:D8:4D:DD:D8:43:D7:2C:28:4D:27:3F:A9
X509v3 Authority Key Identifier:
keyid:C3:8C:A1:D4:18:C2:18:E2:6F:79:51:81:A9:E3:BB:7B:79:D4:44:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w4yh1BjCGOJveVGBqeO7e3nURD8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/6fcba8-adb8-411f-9e46-2ef27a1916bd/1/EDyqafSG6R7YTd3YQ9csKE0nP6k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/6fcba8-adb8-411f-9e46-2ef27a1916bd/1/w4yh1BjCGOJveVGBqeO7e3nURD8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.207.48.0/21
Signature Algorithm: sha256WithRSAEncryption
55:3b:34:b5:35:3a:d1:90:a9:18:2a:d3:50:a0:d8:ac:32:16:
e5:e7:04:1c:3b:d6:0f:05:19:2d:f7:fe:74:25:ec:cb:77:b6:
60:bb:27:bc:f8:2f:bf:16:72:dc:fb:fd:02:e0:e2:70:c5:8a:
f7:4f:2a:da:ea:02:fa:45:a2:7c:20:88:ad:ba:4c:8b:ae:29:
b9:37:b3:80:57:e5:aa:6c:23:ac:03:f2:8e:48:f7:b0:1d:ab:
e4:60:c8:28:db:7e:8a:91:5e:72:b9:05:ab:04:8f:e7:ef:8e:
dc:38:08:27:72:fe:c9:2a:89:dd:b2:37:2d:84:02:4d:4c:a8:
fd:bf:2c:98:8b:9b:73:b7:c1:39:fc:15:52:6b:60:fb:d8:a0:
56:93:65:61:71:ae:2c:0d:cc:9a:90:26:73:5d:df:8d:8b:84:
55:aa:3a:43:78:4e:58:e3:8c:9d:7f:a1:fd:18:93:38:93:5d:
79:e3:c8:50:0e:0a:47:47:96:eb:7a:57:26:fc:73:4a:92:d6:
dc:25:4d:d2:4c:a9:82:72:82:05:85:97:0f:b0:b2:2b:c3:d7:
43:0c:34:3a:33:c9:d1:d2:c6:41:2b:69:de:de:9f:31:4c:ea:
63:30:0e:14:86:eb:30:c6:c4:e7:46:96:9e:f3:4c:cb:0d:37:
6c:cb:b5:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:02 2024 by rpki-client on console-ams.rpki-client.org