Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/7KrHa4iycaIMm6uS8YG2yLmwz5g.roa
File: 7KrHa4iycaIMm6uS8YG2yLmwz5g.roa (raw, json)
Hash identifier: +EixSXtkna4B4cwUipUIImVfAztCiHf+ps0Db97joV4=
Subject key identifier: EC:AA:C7:6B:88:B2:71:A2:0C:9B:AB:92:F1:81:B6:C8:B9:B0:CF:98
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018BD2222E388BCC38C0D0DCA629F2E286E9
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/7KrHa4iycaIMm6uS8YG2yLmwz5g.roa
Signing time: Wed 15 Nov 2023 08:38:57 +0000
ROA not before: Wed 15 Nov 2023 08:38:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400866
IP address blocks: 185.101.105.0/24 maxlen: 24
89.34.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Dec 2023 08:12:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d2:22:2e:38:8b:cc:38:c0:d0:dc:a6:29:f2:e2:86:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Nov 15 08:38:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ecaac76b88b271a20c9bab92f181b6c8b9b0cf98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:17:ad:59:50:e8:08:5c:5c:bf:8e:09:09:52:
02:57:5f:d0:b4:12:d2:81:f7:5d:e2:80:8e:cc:ee:
bd:57:9e:74:7b:20:b6:3d:d2:92:64:fc:45:4d:15:
62:72:c2:92:65:e2:68:89:96:3b:e1:a6:06:5f:3d:
6e:1a:8e:e5:ac:5b:91:8b:2c:50:57:cb:2c:37:c0:
21:53:6d:de:cc:b4:f0:c9:be:f7:a4:f5:12:03:bd:
33:85:1a:ef:a8:2f:f7:6d:8f:6f:90:a0:69:ad:d9:
3c:81:fa:6a:3a:c2:f0:a4:20:69:fd:20:b9:00:82:
1f:30:a0:4a:ba:a3:b6:62:b2:02:13:f2:46:6f:72:
23:02:30:d3:c9:62:20:c4:54:a9:ad:4a:70:33:d1:
9e:a5:b3:5a:8f:1b:f2:fe:69:f4:56:fd:a2:6c:9b:
40:08:bd:b8:c2:f1:19:7f:01:69:07:8e:61:38:8f:
48:a0:84:6a:49:38:f4:f8:9a:e5:b8:ef:96:aa:12:
0d:7c:4d:8e:91:f9:21:c1:7e:11:12:e3:52:04:ac:
2d:c0:9f:04:b7:b4:08:37:0f:d4:5f:9b:06:e6:18:
90:f1:3f:b9:9f:4a:0d:20:af:48:01:f5:cf:57:83:
3d:c5:a4:aa:e6:04:16:ef:b5:97:08:64:40:b8:d9:
9a:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:AA:C7:6B:88:B2:71:A2:0C:9B:AB:92:F1:81:B6:C8:B9:B0:CF:98
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/7KrHa4iycaIMm6uS8YG2yLmwz5g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.231.0/24
185.101.105.0/24
Signature Algorithm: sha256WithRSAEncryption
30:c4:e8:e7:c7:6e:69:2a:7f:07:ae:d5:48:3f:aa:46:62:f5:
a3:c9:45:63:ec:c0:1b:9d:45:32:83:48:42:fb:51:f6:2c:2f:
6b:99:f9:97:93:1a:96:e9:af:ab:be:f3:f1:df:f8:45:59:21:
58:de:6d:a0:7d:28:c5:d6:5c:1f:08:44:ed:74:51:a7:5c:45:
bc:eb:b8:7c:d5:60:0e:e8:b7:dc:aa:ff:79:1d:55:52:d0:7b:
d6:3c:98:4c:be:36:61:6d:fb:b8:5f:bb:ac:a2:4c:07:66:36:
df:27:37:e0:15:41:c7:0b:b4:69:2b:d1:c3:e3:b6:e9:f2:c7:
c4:1e:c3:b3:ef:f4:32:6c:60:0c:dc:05:93:b1:f9:4e:af:96:
c6:4f:9b:33:6d:8b:0a:f2:2b:e5:56:bb:97:37:44:3f:0f:e3:
1b:a9:fd:4c:c1:a5:47:4e:c7:a3:56:44:ba:31:e6:ac:24:6d:
21:9f:bf:e4:4d:c8:44:d4:5c:54:d9:2e:5f:ca:8e:a1:f3:1d:
34:74:0d:0c:4f:02:b6:59:f8:72:36:12:5c:98:aa:69:3a:75:
74:a2:97:5f:57:ff:84:28:66:4a:36:e6:dc:51:bb:83:8e:b1:
52:8c:d8:3f:7c:59:20:80:77:52:14:8d:55:a8:45:4a:58:e1:
a6:b7:b4:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:49 2024 by rpki-client on console-ams.rpki-client.org