Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/7UbMTyD52ArDkvQtp7uUAsNC4_s.roa
File: 7UbMTyD52ArDkvQtp7uUAsNC4_s.roa (raw, json)
Hash identifier: vPV7mTmXsod1lhPB9ENH7XfePbTYKoUe6yjTr1TibrQ=
Subject key identifier: ED:46:CC:4F:20:F9:D8:0A:C3:92:F4:2D:A7:BB:94:02:C3:42:E3:FB
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018A41C32D4B0BF6644AD6F674EB993182F9
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/7UbMTyD52ArDkvQtp7uUAsNC4_s.roa
Signing time: Tue 29 Aug 2023 14:47:04 +0000
ROA not before: Tue 29 Aug 2023 14:47:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 89.42.82.0/23 maxlen: 23
89.42.80.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:41:c3:2d:4b:0b:f6:64:4a:d6:f6:74:eb:99:31:82:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Aug 29 14:47:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ed46cc4f20f9d80ac392f42da7bb9402c342e3fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:ef:55:5b:e8:cf:87:f8:59:46:9b:b7:7a:1e:
e0:f1:a7:37:6f:eb:5f:6c:ae:f4:e1:7e:fa:ee:6c:
df:e5:03:63:6a:b1:07:87:81:c8:60:ca:9b:9e:54:
80:28:02:22:d0:50:bf:02:05:b5:1a:ab:9c:fe:f6:
13:6f:d4:ee:99:73:d3:f8:28:e4:f0:21:d7:77:62:
3b:33:63:9a:4c:41:81:17:24:da:29:0b:8a:ff:9c:
e7:33:48:7c:ec:5d:b5:ee:fa:90:ef:4c:b8:e4:b2:
9f:11:bb:7e:f1:ed:ad:5e:44:ee:6d:f8:72:20:80:
4b:ba:e2:51:f9:1d:e7:1b:ea:cc:99:7a:78:f2:65:
bf:2e:58:6c:68:b5:c8:84:1f:1d:bb:a4:7d:f8:ab:
01:f6:22:e3:5e:94:bc:99:ca:7d:bd:43:f7:0a:cf:
a3:df:87:01:23:f4:1c:a1:a5:96:99:b0:e8:5b:e9:
2b:67:7c:2c:0e:ab:6e:2f:14:f4:48:c0:e4:c5:15:
3a:25:32:b0:b6:8b:1f:e6:63:37:73:15:01:e2:34:
12:f3:b7:c1:a2:3c:9b:20:70:25:25:47:5d:83:96:
9b:5f:3d:ff:68:c3:29:02:15:fc:f6:a7:3f:98:a3:
8b:fb:99:d1:80:1c:cd:a7:83:78:ef:51:8a:7d:e5:
e0:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:46:CC:4F:20:F9:D8:0A:C3:92:F4:2D:A7:BB:94:02:C3:42:E3:FB
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/7UbMTyD52ArDkvQtp7uUAsNC4_s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.42.80.0/22
Signature Algorithm: sha256WithRSAEncryption
50:92:b8:dc:43:d7:a2:e9:e1:4a:3e:dc:b0:73:8f:4e:f4:12:
c1:f6:dc:30:b5:aa:52:91:1b:da:e1:eb:55:b2:cb:e3:44:02:
5f:25:66:ba:90:71:39:77:db:d8:40:d6:23:97:83:d5:02:5b:
69:42:9f:cb:6d:a3:03:d2:dd:ab:9c:b8:00:ed:1a:5a:ce:b1:
a2:ce:ab:8c:59:c7:df:4c:d9:fc:be:ac:be:07:ad:ce:7c:15:
85:0f:ce:73:39:1f:f8:12:4c:40:c9:b1:ce:4a:c4:87:7c:39:
26:40:19:35:46:29:b8:f2:60:0d:4c:da:16:67:82:29:79:0e:
f7:72:6d:7a:c7:ef:77:36:e4:f3:17:b8:9c:91:c3:2b:e3:08:
0e:7c:21:bc:cd:5e:07:ea:84:9b:22:6d:91:c4:a9:81:52:bc:
23:f2:62:72:42:a2:70:be:5a:43:cc:a2:b5:34:a8:fc:e9:f1:
2a:12:66:ff:86:00:c9:eb:b3:49:a8:b1:03:d8:4d:31:19:32:
15:e5:50:c3:39:46:52:75:b5:a8:48:37:df:3e:6b:94:ae:7d:
93:98:e1:aa:41:4b:3b:17:a4:d6:32:07:ef:e0:5e:90:5f:08:
67:1b:89:91:d9:7a:bd:77:3f:76:f7:db:2e:ea:7b:ad:7e:71:
e4:f3:13:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 31 12:17:25 2023 by rpki-client on console-fra.rpki-client.org