Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/89ae8e-4674-455d-9f23-ac67a36e4aab/1/7yWecEyunsSgrEA53QXObIsxyTA.roa
File: 7yWecEyunsSgrEA53QXObIsxyTA.roa (raw, json)
Hash identifier: BVIY9WdwX2QmNMQPg5BD4rooUaPknHs8yBZeOqHmONA=
Subject key identifier: EF:25:9E:70:4C:AE:9E:C4:A0:AC:40:39:DD:05:CE:6C:8B:31:C9:30
Certificate issuer: /CN=17c203e3f365923a843d3220317a1c68cf74de0f
Certificate serial: 018572CCA32838EB7D03644163454CD7EBC2
Authority key identifier: 17:C2:03:E3:F3:65:92:3A:84:3D:32:20:31:7A:1C:68:CF:74:DE:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F8ID4_NlkjqEPTIgMXocaM903g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/89ae8e-4674-455d-9f23-ac67a36e4aab/1/7yWecEyunsSgrEA53QXObIsxyTA.roa
Signing time: Mon 02 Jan 2023 14:04:51 +0000
ROA not before: Mon 02 Jan 2023 14:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50409
IP address blocks: 89.111.19.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:cc:a3:28:38:eb:7d:03:64:41:63:45:4c:d7:eb:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17c203e3f365923a843d3220317a1c68cf74de0f
Validity
Not Before: Jan 2 14:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef259e704cae9ec4a0ac4039dd05ce6c8b31c930
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:34:48:ff:5f:aa:e7:df:04:c3:fc:92:a3:a3:
71:6d:c1:a6:08:f8:08:c1:23:52:84:47:ff:ea:c7:
f2:9d:06:99:59:d1:8c:b5:76:71:f1:62:16:10:7f:
b0:ff:cc:c4:d7:4f:79:b8:ca:72:5d:ca:bb:43:4f:
9d:d9:8c:ea:58:5a:93:43:26:5b:77:6c:2a:cb:ea:
7b:fe:b8:8c:4c:2f:14:20:db:c5:e6:2c:af:d5:00:
79:22:09:5e:3b:6a:b3:b9:a0:43:63:00:8b:95:1b:
f7:a9:48:5d:15:a0:a7:e6:14:31:c6:c6:43:d7:71:
69:43:c1:da:ee:5f:de:7f:a9:ab:bc:ab:45:27:9d:
37:ff:e4:16:78:0a:a0:52:d5:91:13:c3:45:d7:93:
6d:4d:43:2c:4a:49:d3:2a:69:33:a3:3f:3d:b8:3c:
2b:c3:6e:d7:7d:23:fb:73:31:3c:79:11:0a:a1:b9:
a7:87:9c:43:f3:29:b0:b3:2c:92:4b:4a:ff:60:19:
12:c9:93:29:36:61:b1:67:b0:c3:24:eb:af:9c:ac:
02:a3:ba:36:e2:09:10:ba:71:a0:be:ec:b2:df:2d:
8f:a4:84:b7:2a:12:e0:01:8f:49:93:98:18:a1:90:
36:2b:45:9d:f8:a1:5d:1f:25:68:9b:d7:0e:47:24:
52:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:25:9E:70:4C:AE:9E:C4:A0:AC:40:39:DD:05:CE:6C:8B:31:C9:30
X509v3 Authority Key Identifier:
keyid:17:C2:03:E3:F3:65:92:3A:84:3D:32:20:31:7A:1C:68:CF:74:DE:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F8ID4_NlkjqEPTIgMXocaM903g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/89ae8e-4674-455d-9f23-ac67a36e4aab/1/7yWecEyunsSgrEA53QXObIsxyTA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/89ae8e-4674-455d-9f23-ac67a36e4aab/1/F8ID4_NlkjqEPTIgMXocaM903g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.111.19.0/24
Signature Algorithm: sha256WithRSAEncryption
85:af:82:a9:b9:b3:2b:7a:15:cb:0f:dc:75:f1:97:df:9f:4e:
75:4a:9c:a4:08:01:2b:29:43:af:99:5e:d7:a8:e8:77:03:5d:
be:49:cd:bd:45:c8:31:7d:16:72:98:de:c3:f5:d8:2c:d7:92:
9f:f3:e0:0e:92:ae:1a:88:ba:18:09:0c:a2:a9:b2:34:ad:e3:
d7:6d:cc:54:6e:32:50:0a:9d:89:e2:46:4d:ba:8e:d5:f3:4a:
59:64:53:4a:5e:80:94:66:9a:07:84:e5:50:07:18:6c:ed:54:
05:8d:f0:e9:c0:b2:4b:1f:b7:47:86:c9:66:54:fc:eb:a7:4c:
18:45:b3:20:34:ec:9d:e4:c5:a7:d6:8d:02:c9:a4:bc:ef:f6:
09:b4:be:8b:78:76:f3:bd:bd:77:43:b8:73:6b:31:e7:79:60:
fe:33:21:97:1b:06:3d:d3:5a:fc:9e:2c:a1:73:4f:39:07:9b:
51:31:9e:56:08:48:d4:c9:96:85:fc:7f:15:c3:c5:a0:84:a7:
df:12:37:06:3f:ac:ca:39:b3:9a:7a:59:81:33:2e:3f:f8:78:
b9:f3:3c:ab:99:05:31:1d:2b:29:a5:e8:4a:83:e2:62:d3:48:
72:13:c7:e3:97:42:7e:e5:20:14:7d:5d:63:90:59:4f:18:ae:
d9:8a:14:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:19:38 2024 by rpki-client on console-ams.rpki-client.org