Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8UmvG4jU4fI8ewvTbRJ0iNzwhMM.roa
File: 8UmvG4jU4fI8ewvTbRJ0iNzwhMM.roa (raw, json)
Hash identifier: z6HBW1YgjpgxuCEofb1Y/yb4o3YriL3xP5HoRcITh7c=
Subject key identifier: F1:49:AF:1B:88:D4:E1:F2:3C:7B:0B:D3:6D:12:74:88:DC:F0:84:C3
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018CC26D21A7E7DDB05D0D8A6F8DDE27E4C5
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8UmvG4jU4fI8ewvTbRJ0iNzwhMM.roa
Signing time: Mon 01 Jan 2024 00:29:41 +0000
ROA not before: Mon 01 Jan 2024 00:29:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39345
IP address blocks: 89.34.24.0/23 maxlen: 23
77.81.181.0/24 maxlen: 24
188.214.88.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Apr 2024 09:32:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:21:a7:e7:dd:b0:5d:0d:8a:6f:8d:de:27:e4:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Jan 1 00:29:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f149af1b88d4e1f23c7b0bd36d127488dcf084c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:d9:64:ec:65:55:9d:22:0e:1a:fe:b6:fc:d3:
40:db:03:a4:95:55:91:6c:82:44:b6:fa:c6:c0:24:
c3:e7:20:b8:2a:21:26:b7:e5:57:8f:4f:10:4f:00:
ca:be:39:36:99:1b:4c:9d:6b:b7:e7:00:8a:6a:82:
c7:c2:5a:fb:c2:5e:14:95:ba:2c:ee:e9:e0:22:e1:
b6:54:39:47:f7:fb:0f:40:49:d1:18:d8:3d:55:fd:
1f:2e:5b:e9:cc:ba:6b:b8:46:5d:af:73:c6:a2:ff:
54:9b:f0:4c:e1:fa:7b:d0:88:e6:77:d0:96:2a:fa:
63:07:9d:8f:5a:cb:a9:90:d0:ff:3b:12:d1:df:aa:
21:21:c2:1c:1d:16:1f:a2:be:61:58:ed:36:e9:87:
83:61:11:b7:ed:08:d4:7b:2d:11:39:ae:c5:21:76:
05:a5:35:87:a7:35:57:91:b8:c4:42:b2:2a:a8:5e:
72:29:14:dc:09:c6:cc:a4:09:93:83:50:a3:56:1a:
73:a3:6d:13:e1:dd:0e:69:a8:72:f6:60:14:67:46:
ec:56:6d:bf:a0:c1:fe:39:db:e3:bb:83:51:a7:ff:
75:fe:38:76:ef:d0:84:ad:79:ff:1b:09:b0:de:96:
43:f3:6d:34:dd:bc:7a:7f:bf:59:78:f2:ab:cf:66:
8a:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:49:AF:1B:88:D4:E1:F2:3C:7B:0B:D3:6D:12:74:88:DC:F0:84:C3
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8UmvG4jU4fI8ewvTbRJ0iNzwhMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.181.0/24
89.34.24.0/23
188.214.88.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:45:2c:be:fa:f7:d8:ac:9c:b7:5d:ee:d1:30:d1:14:63:27:
21:35:24:af:60:31:2d:7f:78:4e:bd:d6:a3:42:a5:56:80:dc:
2d:92:1a:99:c0:aa:0a:53:da:16:c0:0c:c4:54:89:bf:66:7d:
80:4e:eb:37:c5:3c:2f:54:4d:41:90:37:a8:c8:2c:3a:b2:55:
31:14:e1:ef:84:5f:12:cd:ae:1b:20:37:fe:9b:ce:f8:f4:c0:
1f:58:e2:da:a8:c2:77:0f:ae:4e:b4:55:99:85:3b:12:9d:50:
62:4b:d9:2a:19:86:2e:30:29:fd:26:f7:98:db:dc:3a:da:8a:
96:00:8b:c9:92:c9:ff:b1:98:0e:7d:91:ba:a5:5f:c0:0c:83:
59:8a:6e:0f:b7:d5:4d:0b:fa:12:33:7f:a3:79:45:b8:42:89:
f5:7f:47:68:bb:2f:b5:8c:a6:df:cf:ac:be:9d:37:e1:84:4a:
9b:7c:ac:8f:8a:35:cf:06:fb:04:81:d3:fd:20:da:bf:cd:ff:
b7:40:f0:85:f6:e9:6a:47:fc:5a:89:b1:0c:39:28:10:ea:0d:
84:a3:6d:d8:ba:0e:0b:b7:b6:8e:19:9f:af:ab:66:43:49:8a:
d7:1e:54:45:a9:4d:95:45:4a:5f:bb:6f:cc:b7:34:b2:fa:5f:
db:6b:f2:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 3 14:38:35 2024 by rpki-client on console-fra.rpki-client.org