Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8d-cVA3-vtm_otgURiAIHlnuC0k.roa
File: 8d-cVA3-vtm_otgURiAIHlnuC0k.roa (raw, json)
Hash identifier: sZ08jcWQNnFnqfuoqlhyBGaBthmwLUS2zPfUlzugGSA=
Subject key identifier: F1:DF:9C:54:0D:FE:BE:D9:BF:A2:D8:14:46:20:08:1E:59:EE:0B:49
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018CC26D1C472FD83EA16E3E2CB4FBD6B7A7
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8d-cVA3-vtm_otgURiAIHlnuC0k.roa
Signing time: Mon 01 Jan 2024 00:29:39 +0000
ROA not before: Mon 01 Jan 2024 00:29:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6939
IP address blocks: 89.42.86.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 20 Jan 2024 08:14:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:1c:47:2f:d8:3e:a1:6e:3e:2c:b4:fb:d6:b7:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Jan 1 00:29:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f1df9c540dfebed9bfa2d8144620081e59ee0b49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:1c:b1:e2:3d:98:a7:58:2b:2e:dd:c6:ce:82:
3d:6c:fc:c4:72:4e:a5:b2:a4:da:6c:ac:8c:fa:5f:
b1:9c:af:a6:61:a8:96:47:65:01:e0:ac:f3:79:81:
f4:12:7b:8f:4b:e9:83:01:99:67:ee:54:b7:6b:89:
5c:a5:d2:0a:4d:53:b8:51:52:ea:7d:4a:9e:8d:04:
41:07:84:e1:1b:8d:01:6b:8d:3a:0c:b2:a1:cb:c4:
6b:ea:f4:96:59:0d:86:e2:a0:06:c9:57:79:c3:65:
08:40:c5:97:50:15:4a:4e:13:66:da:e0:e2:1a:ba:
6b:04:d3:6e:fe:d0:0b:1f:71:3f:e3:78:5b:1c:43:
8e:8c:69:18:e2:b4:ca:5a:1e:ed:a9:14:e0:3a:51:
58:aa:60:70:6b:83:8f:62:6f:91:26:e4:f3:c2:7f:
15:59:70:59:1e:05:f5:56:34:f4:03:84:e6:4c:36:
9e:1a:2f:9d:b1:15:54:11:f2:8a:a2:6c:b2:d8:79:
a4:89:d0:a2:d9:06:20:12:77:35:f3:a4:16:29:40:
25:62:0d:5f:a9:5b:e2:af:11:69:c5:0d:5b:e1:16:
c8:1d:dd:43:c1:27:ca:b3:1b:e0:4c:fe:57:95:8e:
8a:fe:da:86:44:d3:3c:e6:dc:4b:f6:64:aa:61:e0:
48:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:DF:9C:54:0D:FE:BE:D9:BF:A2:D8:14:46:20:08:1E:59:EE:0B:49
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8d-cVA3-vtm_otgURiAIHlnuC0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.42.86.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:80:79:ea:dc:b3:67:27:f9:9c:9c:9e:4d:04:e2:b9:00:6b:
bb:84:f5:ba:1f:18:48:c2:7a:41:f0:a2:3f:80:85:39:b6:43:
83:c6:92:0d:5d:c4:ad:1f:91:b3:c3:31:53:6f:d0:41:d8:ec:
97:a3:f0:83:19:d5:9a:79:ac:c7:6b:00:00:75:28:4c:28:5d:
8c:6d:4d:cc:e0:86:b5:08:66:e6:87:07:65:47:08:99:30:d0:
01:46:12:e7:b1:db:1e:05:2f:0c:6f:ad:a2:d5:2b:f7:c2:aa:
64:50:63:a8:c1:be:d2:1d:17:f9:17:f5:01:a7:d7:7f:6a:e0:
57:f5:af:ba:1e:6d:a3:e5:b9:ba:2f:f0:45:9c:57:a2:d5:7c:
7b:b9:57:5c:c1:06:54:8b:53:1f:03:5e:f9:9e:66:ea:34:e4:
5c:7b:7c:8e:eb:67:49:36:af:c0:27:8c:fe:fa:20:da:80:27:
61:bb:c1:f5:64:16:9d:15:ba:dc:34:70:f2:e1:5b:56:d5:a3:
73:78:52:25:db:fb:f1:c6:18:82:28:49:f2:ec:53:c3:17:16:
f3:94:c5:6b:7c:bd:5b:f7:c8:55:a6:8e:b4:21:b7:17:9e:3f:
18:c5:bb:26:da:ce:cc:0b:9e:97:7b:66:e3:1f:47:f6:fb:c8:
a5:cf:28:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:49 2024 by rpki-client on console-ams.rpki-client.org