Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/LyfLvp1qDP4oBy0cEzDfGa3GtcI.roa
File: LyfLvp1qDP4oBy0cEzDfGa3GtcI.roa (raw, json)
Hash identifier: 8t1P9doCZzPPdcV5E206p2jud9tWSlKyJGqMN5taLM8=
Subject key identifier: 2F:27:CB:BE:9D:6A:0C:FE:28:07:2D:1C:13:30:DF:19:AD:C6:B5:C2
Certificate issuer: /CN=b541558181f7863119bf4a1554c75dab1f6c5292
Certificate serial: 019194E37EC17016A4F0EA3EE67D39289933
Authority key identifier: B5:41:55:81:81:F7:86:31:19:BF:4A:15:54:C7:5D:AB:1F:6C:52:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/LyfLvp1qDP4oBy0cEzDfGa3GtcI.roa
Signing time: Tue 27 Aug 2024 17:30:22 +0000
ROA not before: Tue 27 Aug 2024 17:30:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61087
IP address blocks: 89.169.15.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 28 Aug 2024 11:18:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:94:e3:7e:c1:70:16:a4:f0:ea:3e:e6:7d:39:28:99:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b541558181f7863119bf4a1554c75dab1f6c5292
Validity
Not Before: Aug 27 17:30:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2f27cbbe9d6a0cfe28072d1c1330df19adc6b5c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ce:8f:f8:fe:e0:ab:09:df:ee:55:ed:52:d9:
45:d5:0f:a1:f2:3d:3f:05:49:67:22:e8:77:16:78:
c7:b7:e4:38:eb:72:08:05:39:f0:9e:37:45:84:c5:
92:7c:b1:9a:98:ae:08:cc:72:cc:71:26:1e:4f:72:
8f:4d:4f:85:3d:bf:c7:eb:ec:82:36:54:13:43:6c:
4a:4b:ff:c7:57:fc:20:36:aa:57:bf:3e:10:96:71:
ae:49:21:ee:46:e6:c6:96:2c:58:78:f3:d6:ed:a1:
a7:ed:c5:27:a6:d1:fd:4b:2b:65:31:46:5a:94:e5:
56:95:33:00:45:68:58:5f:3a:83:47:f1:db:2b:9c:
95:47:1c:d6:ef:e1:93:51:67:f4:02:7a:99:f9:ed:
9d:14:4a:7b:f1:6c:ae:19:cd:17:aa:f6:18:1d:24:
f4:b1:1e:80:fc:31:1f:d5:7e:f7:bd:c6:91:14:6d:
91:0b:29:23:9a:72:94:49:5d:f6:70:d3:77:a5:de:
0b:a7:05:9e:03:17:ee:b0:1b:18:30:d1:6f:a2:50:
49:37:6b:12:b5:fe:41:93:9b:41:ad:7b:ff:96:3d:
cb:7c:9f:e3:4b:ac:95:78:f0:bd:01:a9:21:e6:4e:
e6:54:ea:67:16:e9:f0:c5:3d:02:12:96:9f:5a:e6:
0a:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:27:CB:BE:9D:6A:0C:FE:28:07:2D:1C:13:30:DF:19:AD:C6:B5:C2
X509v3 Authority Key Identifier:
keyid:B5:41:55:81:81:F7:86:31:19:BF:4A:15:54:C7:5D:AB:1F:6C:52:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/LyfLvp1qDP4oBy0cEzDfGa3GtcI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.169.15.0/24
Signature Algorithm: sha256WithRSAEncryption
85:e0:ce:3a:72:13:7e:19:90:28:18:69:c1:a3:6a:24:db:1d:
52:5d:47:07:7a:c2:7e:f5:55:66:6c:9d:c4:3a:65:d4:7e:dc:
7b:64:e0:2b:34:dc:1d:60:03:7f:a4:78:33:de:ab:2b:18:0e:
af:84:18:65:3e:24:e0:0e:d4:ce:2e:f4:72:35:bd:72:60:10:
71:92:da:5c:27:eb:d5:8b:53:f5:51:17:56:ac:26:ca:16:b6:
74:30:28:b2:2d:3e:e6:58:ca:ce:b0:bd:b2:b9:cd:ab:e1:ab:
bc:1a:c8:a9:7c:0c:4d:d6:1e:b8:60:9d:3f:8d:9e:7b:08:69:
61:a5:e5:d2:97:19:94:8b:25:cf:17:4d:d6:99:e5:ff:3e:f8:
79:2d:e2:3e:ed:8a:3f:52:ad:92:f8:81:62:50:6a:b7:f9:d6:
82:b2:a2:81:3f:e0:41:38:1d:6b:c1:aa:0b:e5:c0:15:e1:13:
dd:ae:71:2e:8c:7a:84:e3:82:72:6a:ea:2b:af:64:85:e1:b8:
5d:0f:9d:8a:85:77:fd:93:9c:0b:dc:24:48:99:89:da:e0:33:
40:ca:da:5f:30:e9:fe:09:20:78:fc:9e:1a:26:9d:db:c5:b3:
82:88:b9:22:63:58:b7:db:cc:61:6f:06:bc:84:7e:c5:29:03:
51:67:75:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 28 14:17:30 2024 by rpki-client on console-ams.rpki-client.org