Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/9cc333-68d5-4692-9c5b-28a841da0bfd/1/hy7RK3ObOQFyXIawwsl4TqRE-b0.roa
File: hy7RK3ObOQFyXIawwsl4TqRE-b0.roa (raw, json)
Hash identifier: 2zhBvQr6fntt2qfyMYf0UnOwKp+JXwzQp47SPTbvc6A=
Subject key identifier: 87:2E:D1:2B:73:9B:39:01:72:5C:86:B0:C2:C9:78:4E:A4:44:F9:BD
Certificate issuer: /CN=9e459aa4602bffa2d2650ba66818458c89fc4582
Certificate serial: 0191E698F1E22B7F37242873B2E88D0E71B3
Authority key identifier: 9E:45:9A:A4:60:2B:FF:A2:D2:65:0B:A6:68:18:45:8C:89:FC:45:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nkWapGAr_6LSZQumaBhFjIn8RYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/9cc333-68d5-4692-9c5b-28a841da0bfd/1/hy7RK3ObOQFyXIawwsl4TqRE-b0.roa
Signing time: Thu 12 Sep 2024 14:17:48 +0000
ROA not before: Thu 12 Sep 2024 14:17:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 89.149.24.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 13 Sep 2024 06:34:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:e6:98:f1:e2:2b:7f:37:24:28:73:b2:e8:8d:0e:71:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e459aa4602bffa2d2650ba66818458c89fc4582
Validity
Not Before: Sep 12 14:17:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=872ed12b739b3901725c86b0c2c9784ea444f9bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:3b:d3:32:31:90:0e:17:34:31:6a:44:75:45:
76:30:93:2e:82:7d:9f:9f:d3:6c:a8:07:46:b6:0a:
52:33:ab:b9:2e:64:81:20:a4:1e:09:b0:74:58:45:
cc:0f:82:6a:ad:07:8c:df:cc:77:21:4b:49:e2:8b:
3a:e0:da:3f:f7:10:bc:14:77:5c:b2:50:76:fa:86:
1f:be:f0:64:e0:af:31:db:33:a4:48:8c:6d:57:fd:
f6:79:d2:c7:f6:87:a0:55:40:08:7e:c4:5e:8b:fe:
c6:c1:bc:06:7e:e1:24:13:08:49:41:b1:f2:b8:cd:
b2:d6:e3:50:12:58:53:f6:ee:bc:a4:3a:3f:8d:91:
3c:04:37:ac:18:57:5a:be:b8:32:b0:bb:35:d2:34:
93:42:66:b9:40:2a:29:04:0a:5a:4c:7d:45:50:4e:
b9:89:0f:aa:c4:ea:53:2e:1d:f8:af:2d:c6:93:5f:
9a:89:12:62:d0:87:d8:58:01:e9:17:bd:cc:7b:0d:
bc:44:4b:e9:7e:33:fd:6b:dc:94:be:61:e5:b4:b3:
4d:90:08:78:81:e7:7f:b1:87:3b:0e:02:dc:dd:8c:
da:b0:4b:d2:1a:af:68:d4:08:ab:43:80:98:ce:1b:
fe:c7:d2:96:76:c1:cb:7d:3a:3b:38:f8:49:a6:a4:
c5:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:2E:D1:2B:73:9B:39:01:72:5C:86:B0:C2:C9:78:4E:A4:44:F9:BD
X509v3 Authority Key Identifier:
keyid:9E:45:9A:A4:60:2B:FF:A2:D2:65:0B:A6:68:18:45:8C:89:FC:45:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nkWapGAr_6LSZQumaBhFjIn8RYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/9cc333-68d5-4692-9c5b-28a841da0bfd/1/hy7RK3ObOQFyXIawwsl4TqRE-b0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/9cc333-68d5-4692-9c5b-28a841da0bfd/1/nkWapGAr_6LSZQumaBhFjIn8RYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.149.24.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:2a:35:83:a9:c4:49:2e:3a:ce:2b:24:c6:66:cc:ed:52:5e:
1d:02:d1:51:33:16:68:03:6c:bf:e2:dd:2c:0a:d8:da:8c:74:
84:79:b3:d3:5e:a0:c8:cf:7b:c6:32:40:b6:a2:f1:41:c8:08:
03:f1:b7:95:c6:2c:90:9d:73:90:9b:23:ef:b2:73:6f:cb:b5:
49:57:3c:87:1d:92:86:49:7b:bc:e1:d0:dd:cb:29:1f:68:82:
02:92:95:a0:d2:9a:76:44:99:14:35:cb:11:c8:48:a0:24:a2:
30:e8:93:eb:0d:be:59:c9:23:13:33:c3:68:b1:4d:33:94:6f:
e7:eb:35:4d:89:0b:df:b3:f9:b3:58:0a:93:c4:cf:4b:6f:66:
4f:15:0f:ab:5c:d2:07:e9:05:15:f3:fb:e4:bb:56:94:b2:4f:
c5:ca:bf:7b:98:1a:73:06:5a:0b:6a:f7:45:02:f3:8e:90:be:
b5:87:ac:be:c1:aa:49:eb:d4:97:d7:1a:5e:11:a5:6d:dd:f6:
5f:92:73:92:cc:35:78:ab:3c:83:2b:3b:94:46:84:1b:e4:67:
16:1c:39:a3:18:07:d0:d5:2b:f5:d7:59:25:ae:33:cc:e7:0d:
e9:e7:80:29:ac:73:fa:51:5b:2a:04:cd:e2:b6:ca:99:d4:22:
33:ed:51:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 13 07:51:12 2024 by rpki-client on console-ams.rpki-client.org