Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/0Pk0F1pDiviBFHzuP1OjNG4lVpM.roa
File: 0Pk0F1pDiviBFHzuP1OjNG4lVpM.roa (raw, json)
Hash identifier: DW2fAnrkQhhxcMiXF+6sjAplyNwsABYmmBDZK3n2wnY=
Subject key identifier: D0:F9:34:17:5A:43:8A:F8:81:14:7C:EE:3F:53:A3:34:6E:25:56:93
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 01897732366849D92A52CA4F1B24778CD28B
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/0Pk0F1pDiviBFHzuP1OjNG4lVpM.roa
Signing time: Fri 21 Jul 2023 06:45:26 +0000
ROA not before: Fri 21 Jul 2023 06:45:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 89.46.0.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sat 22 Jul 2023 07:56:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:77:32:36:68:49:d9:2a:52:ca:4f:1b:24:77:8c:d2:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Jul 21 06:45:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d0f934175a438af881147cee3f53a3346e255693
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:bb:c5:8a:58:b3:40:4d:9a:64:0a:a2:f7:6b:
6a:70:64:24:cb:f5:88:43:ae:62:ef:d0:f3:7c:fd:
da:56:fd:9c:d0:3f:1e:f6:b4:de:09:72:d8:c1:2a:
15:1f:4b:66:93:d4:18:73:05:ca:c3:09:6f:68:23:
d9:3c:2a:8c:c3:bb:5d:8a:71:8b:4d:d2:77:9c:43:
e1:73:8d:99:19:1a:9f:9a:fc:f9:f4:f4:0f:8a:06:
8c:76:ff:5f:99:32:a1:c2:9d:44:73:c6:f9:fa:f5:
e0:f0:c7:8a:ef:7e:04:41:2d:dd:85:94:62:62:48:
ad:6c:97:ae:d5:69:db:68:f3:96:c0:6f:89:e5:ea:
f5:20:1f:a8:a0:34:38:13:00:2f:dd:13:76:38:60:
a3:85:73:b7:38:21:6e:be:93:76:82:92:92:53:77:
e0:06:57:36:4c:df:cb:15:64:fe:fa:cb:47:ee:95:
8a:bf:52:2c:5a:a9:71:bb:1c:60:23:4d:8b:d6:14:
56:fd:06:7e:d5:28:c4:7d:c9:67:1b:4f:bb:dc:e7:
58:d2:b7:11:29:da:52:0c:f2:c5:28:d9:b1:f1:62:
96:e7:7e:5c:dd:df:5f:94:04:3c:f6:22:41:54:b5:
76:e5:25:f3:5d:b5:55:d7:5e:91:46:36:b9:31:4f:
07:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:F9:34:17:5A:43:8A:F8:81:14:7C:EE:3F:53:A3:34:6E:25:56:93
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/0Pk0F1pDiviBFHzuP1OjNG4lVpM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.46.0.0/23
Signature Algorithm: sha256WithRSAEncryption
10:9e:c5:1e:f7:51:fc:76:d1:4f:3d:70:3d:5d:82:d1:81:4e:
f1:0e:b3:90:b3:a5:8a:e5:7a:0e:c6:ac:46:49:c2:c4:c5:78:
5d:1b:23:69:b7:e4:04:9b:d3:3a:39:a0:e7:2b:ca:95:5e:b8:
88:17:ce:f7:c9:50:6b:a0:a5:35:a6:ce:13:37:21:a0:30:64:
23:64:25:7c:29:05:64:33:3a:04:ae:01:e5:1f:5c:f0:8b:6e:
ba:32:2a:46:92:2e:94:5c:99:1b:25:c5:ab:04:b4:5b:70:4c:
48:f5:eb:a7:ca:bf:ae:16:56:b9:f8:8b:9c:8e:7e:cf:8f:c0:
51:d6:fe:3d:2e:ea:1f:a3:68:ce:32:12:a8:1a:0d:f0:94:81:
8b:85:b7:e7:da:a2:62:7f:07:3d:2a:20:56:b1:c2:b2:1b:e6:
8c:6f:3a:5f:62:7a:97:f2:5f:86:d2:ea:39:80:56:a6:48:b3:
53:3e:d2:39:71:07:05:a7:d8:1b:55:27:8d:ed:a1:b7:f9:e9:
77:0b:67:3c:18:ee:f6:bc:14:86:1a:2c:60:12:f4:5a:08:8e:
50:d9:40:47:ee:55:05:2a:75:dc:49:e4:c5:d9:80:2b:33:5e:
53:55:f6:7a:e7:98:95:08:e1:eb:60:3e:5f:06:d0:c0:ee:2d:
ee:c1:b0:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:49 2024 by rpki-client on console-ams.rpki-client.org