Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/rKEppOaQtx7OUy36uuYRqkb5tuI.roa
File: rKEppOaQtx7OUy36uuYRqkb5tuI.roa (raw, json)
Hash identifier: MisSr+NiBBK6TMHOazFgfeprx5Ccvs/z933Mdod3vVc=
Subject key identifier: AC:A1:29:A4:E6:90:B7:1E:CE:53:2D:FA:BA:E6:11:AA:46:F9:B6:E2
Certificate issuer: /CN=b0b5a80a7106e0a4b8545c8150bb72c699fcc9a0
Certificate serial: 01865FACFB147E80B67A9068110E62FDD8BA
Authority key identifier: B0:B5:A8:0A:71:06:E0:A4:B8:54:5C:81:50:BB:72:C6:99:FC:C9:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sLWoCnEG4KS4VFyBULtyxpn8yaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/rKEppOaQtx7OUy36uuYRqkb5tuI.roa
Signing time: Fri 17 Feb 2023 14:00:17 +0000
ROA not before: Fri 17 Feb 2023 14:00:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48678
IP address blocks: 89.35.52.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:5f:ac:fb:14:7e:80:b6:7a:90:68:11:0e:62:fd:d8:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0b5a80a7106e0a4b8545c8150bb72c699fcc9a0
Validity
Not Before: Feb 17 14:00:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aca129a4e690b71ece532dfabae611aa46f9b6e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:65:c2:44:21:86:d7:7d:08:45:90:9b:c8:ab:
0d:62:59:ad:23:ae:69:0d:f5:68:dc:30:b4:c4:fb:
8f:26:3e:49:6c:31:a5:a2:da:6d:d7:4d:22:1f:a1:
3b:8b:c9:ad:d3:01:0f:2c:38:73:10:40:84:ff:83:
01:bd:7d:52:0c:86:f6:01:90:14:75:9b:66:2b:b5:
f5:3f:ed:31:88:f3:e3:92:51:8f:a8:ec:56:95:e8:
cb:fb:ce:9f:5a:23:c1:bc:68:00:9e:48:aa:41:19:
66:49:97:c1:bb:bb:93:c5:7b:8d:ee:1e:0e:49:86:
c6:91:35:65:7d:f8:06:80:5c:90:d1:7b:56:5e:57:
e0:e6:0a:b7:49:6b:29:98:99:f5:8a:a6:c6:bf:a1:
db:64:be:55:95:23:80:4b:85:9e:72:af:ff:44:18:
a3:b6:91:ef:1a:41:e5:44:5d:83:96:13:82:a4:8a:
05:d4:70:98:f1:98:d0:74:57:0f:80:6c:b2:0e:b3:
7e:71:f0:12:f9:20:71:79:03:60:3d:43:17:3f:88:
1e:19:0d:85:c8:0e:ff:3a:f2:3d:a0:68:e1:58:92:
13:80:c4:33:46:97:43:60:b3:fa:92:83:c1:15:ec:
c1:31:a1:48:ed:cd:8c:8f:59:13:06:6b:53:fe:c4:
d6:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:A1:29:A4:E6:90:B7:1E:CE:53:2D:FA:BA:E6:11:AA:46:F9:B6:E2
X509v3 Authority Key Identifier:
keyid:B0:B5:A8:0A:71:06:E0:A4:B8:54:5C:81:50:BB:72:C6:99:FC:C9:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sLWoCnEG4KS4VFyBULtyxpn8yaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/rKEppOaQtx7OUy36uuYRqkb5tuI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/sLWoCnEG4KS4VFyBULtyxpn8yaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.35.52.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:75:bf:f0:dc:50:13:d6:3b:93:4b:dc:cc:62:d4:72:aa:95:
d5:44:71:96:0d:6a:93:ac:ec:3a:23:be:47:a5:ba:6b:8d:d5:
9b:e6:3b:61:68:62:21:73:ce:47:4b:2b:ad:d9:b2:75:84:53:
49:c4:e8:a7:a5:54:3b:1e:0b:bf:97:09:1f:3b:d9:01:ed:33:
86:5b:2a:76:15:ff:55:7c:21:c3:ec:0f:e9:23:31:17:61:a0:
5c:b0:cd:28:77:e9:1b:5b:24:5a:9c:30:14:1d:99:6b:dc:04:
c5:28:e1:b0:df:ba:2d:91:50:2b:9d:66:70:ec:ca:18:0f:12:
2d:b3:38:81:30:e0:21:cb:b4:6e:e0:6e:5d:9c:6d:8f:a8:12:
c7:f6:42:84:10:b2:56:70:22:3a:36:f4:cf:67:f3:df:44:7d:
7e:a1:a5:c0:e7:fc:78:02:90:d8:13:b6:51:cc:01:e7:32:d0:
eb:83:8e:a7:fc:2f:38:31:68:01:aa:bd:e5:97:c3:6d:fa:57:
66:16:dd:da:23:91:c7:08:ed:9e:12:0f:8e:6b:83:1f:c3:32:
4b:e3:27:26:d9:50:db:55:05:e2:21:09:b6:ae:26:93:35:2b:
58:76:d2:1d:08:5f:af:44:d0:0d:16:22:d7:14:fb:74:e1:91:
cf:9b:e4:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:12 2024 by rpki-client on console-ams.rpki-client.org