Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/Yl3Qcf8_AUmDlsNonIHDhPPa7dw.roa
File: Yl3Qcf8_AUmDlsNonIHDhPPa7dw.roa (raw, json)
Hash identifier: RSzoSeIyW/E3ygD1Tn6h6+IiXKpBO9EB38512YStFcg=
Subject key identifier: 62:5D:D0:71:FF:3F:01:49:83:96:C3:68:9C:81:C3:84:F3:DA:ED:DC
Certificate issuer: /CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Certificate serial: 01856C6EF3033C899EB8D026A7B0CB9F343A
Authority key identifier: DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/Yl3Qcf8_AUmDlsNonIHDhPPa7dw.roa
Signing time: Sun 01 Jan 2023 08:24:48 +0000
ROA not before: Sun 01 Jan 2023 08:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8708
IP address blocks: 89.34.100.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6e:f3:03:3c:89:9e:b8:d0:26:a7:b0:cb:9f:34:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Validity
Not Before: Jan 1 08:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=625dd071ff3f01498396c3689c81c384f3daeddc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:2d:a7:e2:36:c8:77:ab:d4:9b:7b:61:28:88:
a6:a4:e7:40:54:a5:6e:6c:e6:04:70:e6:18:be:a3:
5d:25:79:2c:eb:ac:25:95:4d:93:2c:b9:4f:1e:c9:
20:8a:c4:7f:34:03:24:5d:f4:72:6d:2e:b9:dd:04:
ca:3b:fd:d9:94:64:93:24:52:1d:cd:63:5f:ef:a6:
56:31:05:e1:3e:43:90:5e:d0:50:08:fc:6a:e0:32:
05:b0:62:09:a4:1b:0e:0a:6e:40:2f:2f:ca:bb:37:
48:ba:05:6f:81:9b:13:7b:d3:96:6d:21:47:2f:bc:
aa:b2:bb:4d:6c:6b:a2:94:fb:d4:a8:2f:0d:38:88:
a6:d5:7d:14:55:60:1e:6e:35:f3:6d:47:04:1d:e9:
2e:7f:52:d2:b0:72:4e:78:3c:db:cb:1d:43:3e:df:
23:f5:87:c6:7c:ff:41:1b:3e:5e:e7:ad:fe:04:87:
5a:b2:02:4f:cc:42:2c:6f:73:c5:70:30:9d:fd:6b:
5a:07:6d:73:73:90:15:e4:34:d8:12:b4:f7:a3:74:
60:60:51:e8:4a:4d:07:37:64:60:37:3f:11:2c:e4:
c9:51:be:1a:a7:f6:d3:85:36:b1:0a:96:d6:bc:b9:
7f:af:1c:6e:10:6b:ea:97:d8:2b:08:61:71:68:17:
67:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:5D:D0:71:FF:3F:01:49:83:96:C3:68:9C:81:C3:84:F3:DA:ED:DC
X509v3 Authority Key Identifier:
keyid:DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/Yl3Qcf8_AUmDlsNonIHDhPPa7dw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.100.0/24
Signature Algorithm: sha256WithRSAEncryption
57:d1:b4:d9:0f:22:77:0f:47:b1:6f:10:4b:85:a3:d5:f6:ec:
7b:7d:30:ef:60:7f:fe:06:82:6d:d7:ea:87:2f:de:e4:cd:9d:
7d:4b:9c:26:21:95:4e:81:11:13:0a:e0:fa:b0:39:ea:56:5d:
b4:9a:9b:c3:f4:b2:f0:68:9b:be:5c:f3:9e:c3:53:18:16:af:
4a:e2:72:9d:c5:43:f0:bf:b4:e6:eb:37:d4:82:90:d2:00:ef:
8e:8d:4a:e7:8a:06:25:51:a4:2c:a6:12:6f:9d:59:66:c8:50:
4e:0e:9b:e0:78:be:b5:10:c9:35:fb:c8:6b:82:a7:ce:48:a2:
d8:f0:ad:60:e5:16:4d:0a:a8:92:6a:79:6f:42:34:64:d7:98:
a0:fd:7a:5b:69:19:f9:74:1c:fe:71:ce:94:72:de:e4:67:8a:
6d:10:36:96:b0:8c:d0:e0:51:ee:e4:32:78:2e:5c:1d:0f:5c:
c0:c0:55:f5:4e:ef:02:69:a6:21:78:3a:af:ed:dc:10:41:d7:
0b:71:0b:1e:48:58:18:50:ab:aa:84:ea:a6:a2:74:38:8f:f8:
52:8c:77:32:ec:a8:0e:6a:d6:a9:1f:de:c5:c2:b0:fb:59:87:
7d:1c:41:e1:4f:c9:62:bc:ce:f1:8c:94:f9:c1:c1:b5:6b:67:
4f:71:5e:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:54 2023 by rpki-client on console-ams.rpki-client.org