Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8ha0p-unyfSeol6V95ld12bDR2s.roa
File: 8ha0p-unyfSeol6V95ld12bDR2s.roa (raw, json)
Hash identifier: jiiJxvXzMm0l5+9jTbLodQ2KwMVeR6EVziwb63iD/ao=
Subject key identifier: F2:16:B4:A7:EB:A7:C9:F4:9E:A2:5E:95:F7:99:5D:D7:66:C3:47:6B
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 01856ECB6E9F00972BAA31EF50AC17C23731
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8ha0p-unyfSeol6V95ld12bDR2s.roa
Signing time: Sun 01 Jan 2023 19:25:03 +0000
ROA not before: Sun 01 Jan 2023 19:25:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21294
IP address blocks: 89.47.121.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 Nov 2023 13:14:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:6e:9f:00:97:2b:aa:31:ef:50:ac:17:c2:37:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Jan 1 19:25:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f216b4a7eba7c9f49ea25e95f7995dd766c3476b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:17:ff:16:b0:df:44:87:f0:a4:48:6a:a5:00:
0f:8d:13:a5:7d:34:ec:27:d0:e0:87:22:93:ed:11:
20:0a:53:95:18:a1:59:87:91:0a:2e:d4:a0:bf:b8:
17:d4:cd:f6:92:8b:3e:9b:3c:5a:c4:80:5f:f3:f9:
61:bc:44:8e:e8:9f:ab:2a:8d:3c:ca:da:2b:96:02:
df:6a:70:62:21:02:24:ae:8f:66:ba:a0:a8:3f:9c:
0f:f7:3a:59:3e:46:b5:1f:aa:e8:61:b1:6a:58:fd:
c4:39:04:03:fa:f1:8a:47:be:95:c0:ec:df:12:fa:
d8:26:86:45:17:1d:15:3c:62:dd:bc:b9:30:08:33:
c1:a2:89:ba:c9:54:01:91:82:e0:52:08:cd:61:38:
cd:e9:7e:6d:fa:d3:fb:b9:81:41:e1:c7:64:b6:00:
fa:e4:45:32:9e:02:40:d9:11:8a:e5:e1:77:d2:d5:
85:07:73:c6:d0:f0:22:65:cf:9b:35:0a:3f:85:d4:
ae:53:af:68:fb:c9:41:be:cc:c0:8b:17:b6:17:c2:
42:60:5d:af:a8:48:f3:49:ba:5c:ab:c5:d6:0c:84:
f6:df:c7:d1:53:65:92:93:c6:2e:70:48:2e:7f:6c:
81:00:10:3e:cc:40:53:34:73:cc:f2:76:1b:46:de:
5c:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:16:B4:A7:EB:A7:C9:F4:9E:A2:5E:95:F7:99:5D:D7:66:C3:47:6B
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8ha0p-unyfSeol6V95ld12bDR2s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.47.121.0/24
Signature Algorithm: sha256WithRSAEncryption
12:22:fa:3d:ee:7c:35:ac:30:f4:ad:2b:36:88:1e:0a:df:a1:
72:dc:0f:30:92:42:cf:de:48:06:cc:fe:fc:d1:ea:1f:5f:39:
31:0c:55:93:f0:50:74:38:b0:f2:4f:66:ea:54:c9:23:ae:f9:
2c:48:88:44:6c:75:a6:af:84:37:fe:8b:fb:07:38:63:e7:61:
c3:58:fb:75:f3:b7:a8:97:c3:c0:23:d2:38:de:9d:c2:6d:ab:
6a:ce:d8:1f:ea:16:ea:ee:56:9d:7c:52:66:e5:0e:7d:ca:5d:
db:e3:5b:48:ee:7d:d7:e5:40:f7:8b:72:83:83:9d:94:5f:46:
8e:4d:44:3d:ab:ac:36:a6:55:6d:b1:fc:fc:f0:e0:f3:d0:80:
21:ac:77:d3:a5:c4:f7:1e:97:7e:14:6e:8a:4e:30:05:31:2c:
25:dc:9f:34:6c:98:b3:8e:e2:ca:1b:25:7b:3e:4f:da:c2:ec:
b6:04:b5:f2:b3:7a:67:37:11:8e:32:b5:a3:46:bd:bb:0a:31:
db:17:77:d9:84:1d:75:7f:b3:2b:9f:fb:c2:c1:75:64:42:98:
0a:da:bf:07:58:01:af:b1:63:42:e2:a0:52:6a:2d:88:fc:3f:
e6:fa:65:d3:65:f1:0b:e7:a4:e7:ca:bf:cf:41:c3:42:79:24:
fd:0c:b3:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:18 2024 by rpki-client on console-fra.rpki-client.org