Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/FtY_vKV3krEUQYLo0Jk4cgXAZ20.roa
File: FtY_vKV3krEUQYLo0Jk4cgXAZ20.roa (raw, json)
Hash identifier: i+yqZVygAqqeCgXIkakcZJN/UhlnVoxyqLfYapF9xeA=
Subject key identifier: 16:D6:3F:BC:A5:77:92:B1:14:41:82:E8:D0:99:38:72:05:C0:67:6D
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 019388571DBD8CAB1B71001F08FD25E20022
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/FtY_vKV3krEUQYLo0Jk4cgXAZ20.roa
Signing time: Mon 02 Dec 2024 17:07:10 +0000
ROA not before: Mon 02 Dec 2024 17:07:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198825
IP address blocks: 89.213.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 09:47:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:88:57:1d:bd:8c:ab:1b:71:00:1f:08:fd:25:e2:00:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Dec 2 17:07:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=16d63fbca57792b1144182e8d099387205c0676d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:8c:79:5f:d7:a0:1a:05:e0:56:1d:4a:ff:e8:
f1:2a:24:14:8b:6c:f2:61:1f:75:02:9b:59:f1:d8:
ff:30:c2:59:d9:c0:4a:3b:a8:6e:dc:4d:17:dd:0a:
30:06:21:d7:26:1e:2b:dc:3b:99:fa:2e:9b:19:1d:
0d:e3:20:25:0a:be:c0:db:64:b2:6f:5b:b8:ff:e8:
d4:d7:b0:24:5b:bb:53:4e:98:cd:d2:1b:58:de:93:
93:95:ba:39:88:85:e8:d9:4c:80:d5:e8:84:02:9a:
c6:63:c8:62:10:05:c5:72:0a:5a:0e:fa:27:08:84:
2d:06:75:7f:cf:4d:8b:c8:03:64:cc:ba:98:19:5d:
1b:1c:34:5c:6f:cc:4a:e6:2d:4a:bf:dc:b2:4b:e0:
87:dc:5e:fd:63:3b:f8:e1:9c:d7:04:ce:40:8e:51:
30:25:b6:23:70:6a:e6:53:4d:eb:ed:75:06:bd:d4:
c2:dc:7a:6a:7c:8a:de:63:b3:4d:5d:97:31:ad:2a:
e8:55:47:dc:b7:0e:28:da:14:f5:72:db:1d:99:35:
61:7c:cc:5e:24:a1:4d:81:28:24:ff:b3:70:98:7b:
32:11:9b:cc:50:bf:d0:ca:27:65:3a:23:1a:2d:a5:
4b:6d:fa:70:c5:b9:4b:3f:23:ea:b3:46:3e:9f:71:
02:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:D6:3F:BC:A5:77:92:B1:14:41:82:E8:D0:99:38:72:05:C0:67:6D
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/FtY_vKV3krEUQYLo0Jk4cgXAZ20.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.213.175.0/24
Signature Algorithm: sha256WithRSAEncryption
58:98:cf:97:bb:4c:63:d5:6c:30:ea:03:e1:6e:92:e5:4e:c9:
31:65:f2:56:85:23:24:47:7a:7c:9e:c5:47:5e:3b:c9:4e:6a:
d0:5d:be:98:74:3b:b9:a9:bd:07:68:8a:fc:69:b5:56:54:c8:
4e:41:0f:88:cd:c8:fa:30:2b:dc:2b:2c:58:4f:6c:50:08:a2:
b6:b3:fd:f3:70:4b:05:1c:0e:df:49:dc:42:64:c5:86:b4:68:
73:60:c9:88:6c:1f:a9:39:3e:e8:7d:9a:1f:2c:0a:b4:6d:57:
83:ec:3a:75:53:c7:25:f3:3b:c1:c9:ec:01:c6:23:40:c9:40:
f8:c1:a4:c9:34:80:4f:4d:fc:3a:a3:45:4e:69:76:c7:7e:ae:
a1:a7:18:3f:23:65:ab:b5:2b:e8:63:de:46:ff:fa:d5:7b:30:
30:9c:15:33:cb:b9:4f:7c:5a:b6:20:1a:aa:79:ba:68:fa:d0:
a1:25:0c:6e:da:2f:38:be:80:e3:3c:46:7d:03:20:ff:a0:d2:
d0:a1:80:ce:7f:4f:8e:5c:8d:a2:04:f3:58:33:dd:09:5f:25:
4c:4c:0c:a1:83:a6:90:96:d9:67:b5:32:1f:28:11:bd:f6:c9:
50:02:92:58:f3:c6:51:a2:05:bb:4a:c4:f1:c3:fb:06:0b:ab:
9a:e1:c1:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:13:20 2025 by rpki-client