Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/5ca294-897b-4e49-a9c7-bc48b41f498b/1/IOOZUULsbLSbDz3rvMVum0WnqDg.roa
File: IOOZUULsbLSbDz3rvMVum0WnqDg.roa (raw, json)
Hash identifier: DpkMtU0yYqF0QEZDbWnV/8SM/RqRcnRnBr5w95L8hW0=
Subject key identifier: 20:E3:99:51:42:EC:6C:B4:9B:0F:3D:EB:BC:C5:6E:9B:45:A7:A8:38
Certificate issuer: /CN=4cd47b8b8aa9fbcccff3d507814fc74464a2abf0
Certificate serial: 01856BB7EC54C8ABC1EC2AC11E5858DF9D00
Authority key identifier: 4C:D4:7B:8B:8A:A9:FB:CC:CF:F3:D5:07:81:4F:C7:44:64:A2:AB:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TNR7i4qp-8zP89UHgU_HRGSiq_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/5ca294-897b-4e49-a9c7-bc48b41f498b/1/IOOZUULsbLSbDz3rvMVum0WnqDg.roa
Signing time: Sun 01 Jan 2023 05:04:53 +0000
ROA not before: Sun 01 Jan 2023 05:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60090
IP address blocks: 89.200.243.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:b7:ec:54:c8:ab:c1:ec:2a:c1:1e:58:58:df:9d:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cd47b8b8aa9fbcccff3d507814fc74464a2abf0
Validity
Not Before: Jan 1 05:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=20e3995142ec6cb49b0f3debbcc56e9b45a7a838
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:77:e7:10:17:6c:d1:eb:5d:d5:d7:ea:e3:b2:
7b:2d:06:61:f6:8a:e5:97:c9:bf:9d:0f:b6:30:85:
8b:01:86:8b:e8:38:81:7d:43:2f:94:9f:6b:45:33:
2e:9a:9d:7f:af:f1:02:c9:cb:f1:c6:9f:da:3a:15:
0d:3f:60:39:8e:03:c7:73:9e:fa:cf:2b:11:c9:5c:
3f:48:6b:51:36:ee:33:46:50:c1:65:b5:13:89:da:
e5:cd:6d:ff:32:3d:01:d0:7e:c4:0d:a9:28:63:eb:
2f:a1:24:a4:f8:68:aa:ea:d7:bd:20:68:7e:fa:c6:
39:d3:11:9c:6a:8a:b6:0c:45:4c:f0:99:7f:e0:88:
fc:fd:8e:ad:57:72:13:7e:37:1b:36:78:27:82:f4:
62:e5:87:5f:5d:79:29:33:5b:1f:6f:d5:af:0d:63:
3b:d4:b8:0c:71:69:8b:b7:e8:14:22:eb:fb:93:13:
4a:26:13:bd:a8:70:fa:96:f1:d0:14:de:da:a3:38:
13:4c:01:e7:a9:bf:a8:28:af:f8:3a:48:03:98:88:
84:d6:08:ae:85:a7:39:21:19:89:9f:7d:55:9b:8f:
f0:d0:03:1b:0e:cb:f8:9d:d7:03:67:7c:6c:64:56:
8e:04:32:31:b3:8f:09:81:2d:ab:5d:b5:e6:15:87:
14:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:E3:99:51:42:EC:6C:B4:9B:0F:3D:EB:BC:C5:6E:9B:45:A7:A8:38
X509v3 Authority Key Identifier:
keyid:4C:D4:7B:8B:8A:A9:FB:CC:CF:F3:D5:07:81:4F:C7:44:64:A2:AB:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TNR7i4qp-8zP89UHgU_HRGSiq_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/5ca294-897b-4e49-a9c7-bc48b41f498b/1/IOOZUULsbLSbDz3rvMVum0WnqDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/5ca294-897b-4e49-a9c7-bc48b41f498b/1/TNR7i4qp-8zP89UHgU_HRGSiq_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.200.243.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:eb:c7:5a:a9:e9:d2:57:1b:eb:88:8a:c0:a7:20:01:8f:e3:
e1:ed:49:9f:91:fe:39:39:45:3f:9d:0f:2b:97:cb:1d:12:a4:
6c:cc:ab:9b:63:ba:75:30:0d:8e:bf:a5:43:0d:45:fc:59:c5:
f8:32:7c:84:02:d7:1d:dc:9b:33:ef:27:b8:ed:7c:ac:24:5a:
02:bd:b5:65:f4:66:47:d7:92:c2:ca:fd:58:e1:3c:f2:65:b9:
35:42:a3:f4:c9:ad:87:7e:ed:76:dc:42:e4:d9:9c:b5:ab:6c:
a9:73:84:17:8a:61:ca:27:7f:3b:ad:c9:8e:df:70:b8:93:39:
a3:12:a9:99:cc:22:2b:cc:63:1d:94:50:63:f3:31:02:c9:d5:
20:1e:24:0d:97:d6:41:e1:3a:0c:44:87:d1:f7:4d:9e:10:52:
3d:24:1c:9e:b2:f3:70:76:9f:6e:16:15:5b:da:c7:50:9c:02:
6a:3b:9f:a1:43:f2:d4:fe:33:c9:5a:70:dd:6a:42:0e:df:01:
41:2a:dd:c8:9d:5c:94:ab:a2:bc:03:e4:39:bf:dc:14:e6:29:
09:95:de:df:b3:a6:91:21:84:53:df:71:3d:61:29:37:59:4c:
18:10:c3:c6:c4:7e:30:b5:c5:ec:49:30:4f:0e:38:7d:5f:31:
04:04:6f:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:46 2024 by rpki-client on console-ams.rpki-client.org