Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/7EqgglCdWmM6fZN09EWVIG4Svok.roa
File: 7EqgglCdWmM6fZN09EWVIG4Svok.roa (raw, json)
Hash identifier: 7xAN/1xkYAf1b0Q41WLOqe1CQMwJZpyU0cUwNo4YOlc=
Subject key identifier: EC:4A:A0:82:50:9D:5A:63:3A:7D:93:74:F4:45:95:20:6E:12:BE:89
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018A990A666D645B8D4154B309075A2978D1
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/7EqgglCdWmM6fZN09EWVIG4Svok.roa
Signing time: Fri 15 Sep 2023 13:31:50 +0000
ROA not before: Fri 15 Sep 2023 13:31:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39600
IP address blocks: 89.34.226.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:99:0a:66:6d:64:5b:8d:41:54:b3:09:07:5a:29:78:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Sep 15 13:31:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ec4aa082509d5a633a7d9374f44595206e12be89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:b6:d8:e6:e2:3b:79:a2:ac:51:ff:a5:f0:43:
09:d2:4f:94:b8:55:f4:9e:d7:f6:ac:ed:c0:a8:a6:
55:8e:79:3b:d1:44:71:ff:ca:fc:00:43:2b:f4:4f:
fc:75:83:2c:30:34:05:6f:57:bf:7c:3a:02:cf:68:
42:0c:4a:17:61:ec:10:7f:49:e8:e1:a9:65:92:25:
1d:f9:6a:2a:59:bb:47:27:1e:cc:f1:db:1b:e1:a7:
4f:e0:a8:de:d3:90:f9:40:b6:cb:52:ab:9b:01:0d:
c2:77:f5:cf:7d:85:d9:e8:d1:58:e6:62:47:b8:84:
ca:9c:14:73:66:a5:a3:a9:79:70:1c:0d:53:d4:5f:
32:4a:24:91:a9:7f:79:83:4e:dd:35:89:53:f8:38:
71:50:b3:d3:b2:56:4b:29:50:28:73:a4:b4:41:ab:
f1:10:7c:66:d8:ac:b9:b8:6e:9b:17:99:36:6e:7c:
a2:7c:3e:9f:08:8c:60:d4:e5:04:3d:c9:29:62:ab:
c9:41:2c:b5:fc:aa:61:fe:ee:2d:76:72:3d:bf:a1:
ef:ff:41:6d:d6:b3:d0:77:35:7b:af:db:fa:31:ab:
bd:f6:5d:46:a2:5c:9e:88:2d:c7:1e:a0:67:25:8d:
ba:ef:88:b4:25:88:12:56:62:7c:d9:ff:f4:c3:c4:
70:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:4A:A0:82:50:9D:5A:63:3A:7D:93:74:F4:45:95:20:6E:12:BE:89
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/7EqgglCdWmM6fZN09EWVIG4Svok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.226.0/24
Signature Algorithm: sha256WithRSAEncryption
05:2c:c6:70:2f:3b:f2:4c:0c:25:99:56:41:52:a5:02:a1:38:
0d:f0:40:fc:21:30:d1:30:f0:99:a2:3f:9d:87:6a:ac:29:55:
36:fb:7c:20:44:2a:7a:65:44:80:35:89:58:82:9c:33:1b:0f:
ae:aa:53:91:fa:19:1c:a8:5a:2c:c3:08:33:13:32:8e:2f:26:
3b:6f:24:93:60:ce:aa:aa:43:67:23:38:18:d8:43:8d:ec:e8:
9c:2e:a9:8a:40:97:6b:45:bf:ac:25:e5:b5:4b:fe:f3:84:b9:
a5:73:4e:fe:24:88:a9:72:43:a4:58:54:86:1a:ca:0a:9f:c5:
e5:f2:a7:53:35:0b:e4:1a:6c:72:ec:64:80:b7:19:09:2a:e1:
57:36:af:3b:3c:66:a2:8f:fe:28:03:2f:cf:9f:56:f2:9e:5a:
81:48:1b:ed:68:f9:02:eb:c0:a7:0f:32:6d:15:e0:7c:33:97:
5d:c4:3d:08:08:52:63:d2:34:96:0a:07:96:f8:7a:d1:67:4a:
45:2a:a1:08:a3:cf:26:e6:92:57:45:63:e0:32:d4:63:5f:6d:
65:66:34:91:6e:13:50:98:e9:bd:16:53:17:1b:f1:72:f5:e6:
67:27:70:08:f3:85:ed:f2:4c:c9:6d:7b:a4:ee:84:db:82:cb:
01:2b:26:ed
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYqZCmZtZFuNQVSzCQdaKXjRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYxZDQ2ZTBlM2U4Y2FhYWVkNGE1MjliZDdkNzMwOGJkMWVm
MDFjMWQwHhcNMjMwOTE1MTMzMTUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYzRhYTA4MjUwOWQ1YTYzM2E3ZDkzNzRmNDQ1OTUyMDZlMTJiZTg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA77bY5uI7eaKsUf+l8EMJ0k+UuFX0
ntf2rO3AqKZVjnk70URx/8r8AEMr9E/8dYMsMDQFb1e/fDoCz2hCDEoXYewQf0no
4allkiUd+WoqWbtHJx7M8dsb4adP4Kje05D5QLbLUqubAQ3Cd/XPfYXZ6NFY5mJH
uITKnBRzZqWjqXlwHA1T1F8ySiSRqX95g07dNYlT+DhxULPTslZLKVAoc6S0Qavx
EHxm2Ky5uG6bF5k2bnyifD6fCIxg1OUEPckpYqvJQSy1/Kph/u4tdnI9v6Hv/0Ft
1rPQdzV7r9v6Mau99l1GolyeiC3HHqBnJY2674i0JYgSVmJ82f/0w8RwrwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOxKoIJQnVpjOn2TdPRFlSBuEr6JMB8GA1UdIwQY
MBaAFPHUbg4+jKqu1KUpvX1zCL0e8BwdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOGRSdURqNk1xcTdVcFNtOWZYTUl2Ujd3SEIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi84NGViNDQtYmJkZi00NmMxLWIwNDMt
YjQyZjIzZDgyOGMzLzEvN0VxZ2dsQ2RXbU02ZlpOMDlFV1ZJRzRTdm9rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi84NGViNDQtYmJkZi00NmMxLWIwNDMtYjQyZjIzZDgyOGMz
LzEvOGRSdURqNk1xcTdVcFNtOWZYTUl2Ujd3SEIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWSLiMA0G
CSqGSIb3DQEBCwUAA4IBAQAFLMZwLzvyTAwlmVZBUqUCoTgN8ED8ITDRMPCZoj+d
h2qsKVU2+3wgRCp6ZUSANYlYgpwzGw+uqlOR+hkcqFoswwgzEzKOLyY7bySTYM6q
qkNnIzgY2EON7OicLqmKQJdrRb+sJeW1S/7zhLmlc07+JIipckOkWFSGGsoKn8Xl
8qdTNQvkGmxy7GSAtxkJKuFXNq87PGaij/4oAy/Pn1bynlqBSBvtaPkC68CnDzJt
FeB8M5ddxD0ICFJj0jSWCgeW+HrRZ0pFKqEIo88m5pJXRWPgMtRjX21lZjSRbhNQ
mOm9FlMXG/Fy9eZnJ3AI84Xt8kzJbXuk7oTbgssBKybt
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:18 2024 by rpki-client on console-fra.rpki-client.org